Back to home

Privacy Policy

Last updated: April 2, 2026

1. Introduction

Traviq ("Service"), operated by Drumworks ("Company," "we," "us," or "our"), is committed to protecting the privacy of our users. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our corporate travel booking platform. Please read this policy carefully. By using the Service, you consent to the practices described herein.

2. Information We Collect

We collect the following categories of information:

2.1 Account Information

  • Full name and email address
  • Company name and role
  • Phone number (optional)

2.2 Booking and Travel Data

  • Flight search queries and booking details
  • Passenger names and travel document information
  • Travel preferences (seat, meal, airline preferences)
  • Booking history and itinerary data

2.3 Company Data

  • Corporate travel policies and budget limits
  • Approval workflows and organizational hierarchy
  • Employee rosters added to the platform

2.4 Payment Information

Payment processing is handled by our third-party partners (Razorpay and Stripe). We do not store credit card numbers, bank account details, or other sensitive payment credentials on our servers. We only retain transaction identifiers and billing records necessary for invoicing and support.

2.5 Usage Data

  • Log data (IP address, browser type, access times)
  • Feature usage and interaction patterns
  • AI chat conversation logs for service improvement

3. How We Use Your Information

We use the information we collect for the following purposes:

  • Provide the Service: Process flight searches, bookings, and manage travel itineraries.
  • Enforce Travel Policy:Apply your organization's travel policies, budget limits, and approval workflows.
  • Analytics and Reporting: Generate travel spend reports, usage analytics, and cost optimization insights for your organization.
  • Communication: Send booking confirmations, itinerary updates, approval notifications, and service announcements.
  • Improve the Service: Analyze usage patterns to enhance features, fix issues, and develop new functionality.
  • AI Assistance: Power our AI travel assistant with your preferences and policies to provide personalized recommendations.

4. Third-Party Services

We share data with the following third-party providers to operate the Service:

  • Clerk— Authentication and user session management.
  • TravClan— Flight and hotel search, booking, and airline connectivity.
  • Anthropic (Claude)— AI-powered travel assistant and chat functionality.
  • Resend— Transactional email delivery (confirmations, notifications).
  • Razorpay / Stripe— Payment processing.

Each third-party provider operates under its own privacy policy. We only share the minimum data necessary for them to provide their respective services.

5. Data Retention

We retain your personal data for as long as your account remains active and for an additional twelve (12) months after account closure for record-keeping, legal compliance, and dispute resolution purposes. Booking records may be retained longer where required by applicable tax, accounting, or aviation regulations. You may request earlier deletion by contacting us (see Section 10).

6. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your personal data, subject to legal retention requirements.
  • Export: Request a machine-readable export of your data (data portability).
  • Restriction: Request restriction of processing in certain circumstances.
  • Objection: Object to processing based on legitimate interests.

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

7. Cookies

We use essential cookies only, required for the Service to function correctly. These include session cookies managed by Clerk for authentication purposes. We do not use advertising, tracking, or analytics cookies. No third-party cookie consent banner is necessary as we only deploy strictly necessary cookies.

8. Security

We implement industry-standard security measures to protect your data, including:

  • Encryption in transit (TLS 1.2+) and at rest (AES-256).
  • Role-based access controls limiting data access to authorized personnel only.
  • Regular security audits and vulnerability assessments.
  • Secure hosting infrastructure with network isolation.

While we strive to protect your data, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

9. Children

The Service is a business-to-business platform and is not intended for individuals under the age of 18. We do not knowingly collect personal data from anyone under 18. If we become aware that we have collected data from a minor, we will take steps to delete such information promptly.

10. GDPR Compliance

For users in the European Economic Area (EEA) and the United Kingdom, we process personal data under the following legal bases:

  • Contractual necessity: Processing required to fulfill our service agreement with you (bookings, account management).
  • Legitimate interest: Analytics, service improvement, and fraud prevention.
  • Consent: Where specifically requested, such as marketing communications.

You have the right to lodge a complaint with your local data protection authority if you believe your rights have been infringed.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email to the address associated with your account. Your continued use of the Service after notification constitutes acceptance of the updated policy.

12. Contact

If you have any questions about this Privacy Policy or wish to exercise your data rights, please contact us at:

Traviq (operated by Drumworks)
Email: [email protected]