Last Updated: December 17, 2025
Effective Date: December 17, 2025
Version: 2.0
Key points about your privacy:
🔒 We collect only information necessary to provide travel services
🔒 Your data is shared only with service providers (airlines, hotels, embassies)
🔒 We never sell your personal information to third parties
🔒 Your data is protected with industry-standard security
🔒 You have rights to access, correct, and delete your data
🔒 Questions? Contact us at support@goflybd.com
At goFLY Limited, accessible from https://goflybd.com, protecting your privacy is one of our highest priorities. We are committed to being transparent about how we collect, use, store, and protect your personal information. This Privacy Policy explains:
This Privacy Policy applies to:
This Privacy Policy does not apply to:
Please read this policy carefully. By using our website or services, you acknowledge that you have read and understood this Privacy Policy. This Privacy Policy should be read together with our:
By using our website or services, you hereby consent to this Privacy Policy and agree to its terms.
You may withdraw your consent at any time by:
Note: Withdrawing consent may affect our ability to provide certain services to you.
If you are under 18 years of age, you must have consent from a parent or guardian to use our services and share personal information with us.
We collect different types of information depending on how you interact with us:
| Category | Data Types | Purpose |
|---|---|---|
| Identity Data | Full name, date of birth, gender, nationality, passport details, national ID | Booking flights, visa applications, tour packages |
| Contact Data | Email address, phone number, postal address, WhatsApp number | Communication, booking confirmations, updates |
| Financial Data | Payment card details, bank account information, billing address | Processing payments |
| Travel Data | Travel history, passport copies, visa copies, frequent flyer numbers, travel preferences | Providing travel services, visa applications |
| Booking Data | Booking references, itineraries, service preferences, special requests | Managing your bookings |
| Category | Data Types | Purpose |
|---|---|---|
| Device Data | IP address, browser type and version, operating system, device type | Website functionality, security |
| Usage Data | Pages visited, time spent, click patterns, referring website | Website improvement, analytics |
| Location Data | General geographic location (from IP address) | Content localization, fraud prevention |
| Category | Data Types | Purpose |
|---|---|---|
| Correspondence | Emails, chat logs, phone call notes, WhatsApp messages | Customer support, record keeping |
| Feedback | Reviews, survey responses, complaints | Service improvement |
For visa applications and certain travel services, we may collect sensitive information such as:
⚠️ Important: We collect sensitive information only when necessary for the specific service requested, and with your explicit consent.
We collect information through the following methods:
| Source | Examples |
|---|---|
| Website forms | Booking forms, contact forms, inquiry forms |
| Account registration | When you create an account on our website |
| Direct communication | Phone calls, emails, WhatsApp messages, office visits |
| Document submission | Passport copies, bank statements, photos for visa applications |
| Surveys and feedback | Voluntary responses to our surveys |
| Source | Examples |
|---|---|
| Website usage | Pages visited, links clicked, time spent |
| Cookies | Preferences, session information |
| Log files | IP address, browser type, access times |
| Analytics tools | Aggregated usage statistics |
| Source | Examples |
|---|---|
| Partner airlines | Booking confirmations, schedule changes |
| Payment processors | Transaction confirmations |
| Embassies/visa centers | Visa status updates |
| Social media | If you connect via social login |
We use your information for the following purposes:
| Purpose | Description |
|---|---|
| Booking processing | To complete flight, hotel, tour, and visa bookings |
| Visa applications | To submit and manage visa applications on your behalf |
| Travel documentation | To issue tickets, vouchers, and confirmations |
| Customer support | To respond to inquiries and resolve issues |
| Special requests | To accommodate dietary, mobility, or other needs |
| Purpose | Description |
|---|---|
| Transactional messages | Booking confirmations, payment receipts, itineraries |
| Service updates | Schedule changes, visa status, important notices |
| Customer support | Responses to your questions and requests |
| Marketing | Promotional offers, newsletters (with your consent) |
| Purpose | Description |
|---|---|
| Website maintenance | To operate, maintain, and improve our website |
| Analytics | To understand how users interact with our services |
| Product development | To develop new features and services |
| Quality assurance | To monitor and improve service quality |
| Purpose | Description |
|---|---|
| Fraud prevention | To detect and prevent fraudulent activities |
| Legal compliance | To comply with laws and regulations |
| Dispute resolution | To resolve complaints and disputes |
| Record keeping | To maintain records for legal and tax purposes |
To provide our services, we must share your information with:
| Partner Type | Information Shared | Purpose |
|---|---|---|
| Airlines | Name, passport details, contact info, frequent flyer numbers | Flight bookings, ticketing |
| Hotels | Name, contact info, arrival/departure dates, special requests | Reservations |
| Embassies/Visa Centers | Full visa application data including passport, photos, financials | Visa processing |
| Tour operators | Name, contact info, dietary/mobility requirements | Tour arrangements |
| Insurance providers | Name, DOB, passport details, travel dates | Travel insurance |
| Ground transport | Name, contact info, flight details | Airport transfers |
| Payment processors | Payment details, billing address | Transaction processing |
⚠️ goFLY Limited does NOT sell, rent, or trade your personal information to any third party for marketing or advertising purposes.
We may disclose your information in the following circumstances:
| Circumstance | Details |
|---|---|
| Legal requirements | When required by law, court order, or government request |
| Safety concerns | To protect life, safety, or security of individuals |
| Fraud prevention | To investigate or prevent illegal activities |
| Business transfers | In case of merger, acquisition, or asset sale (with notice) |
| With your consent | When you explicitly authorize sharing |
Your personal information is stored:
We implement industry-standard security measures to protect your data:
| Security Layer | Measures |
|---|---|
| Technical | SSL/TLS encryption, firewalls, intrusion detection, secure payment processing (PCI-DSS compliant) |
| Administrative | Access controls, employee training, confidentiality agreements, regular security audits |
| Physical | Secure office premises, locked storage for physical documents |
While we take reasonable precautions, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security of your data.
In the event of a data breach that may affect your personal information:
| Data Type | Retention Period | Reason |
|---|---|---|
| Booking records | 7 years | Legal, tax, and audit requirements |
| Visa application documents | 3 years after application | Reference for future applications, disputes |
| Payment records | 7 years | Financial regulations |
| Communication records | 3 years | Customer service, dispute resolution |
| Marketing preferences | Until you opt out | To respect your preferences |
| Website analytics | 26 months | Standard analytics retention |
| Account data | Until account deletion requested | Account management |
After the retention period expires, we will:
You may request deletion of your data before the retention period ends. However, we may retain certain data if:
See Your Privacy Rights for how to request deletion.
Cookies are small text files stored on your device when you visit our website. They help us provide a better user experience.
| Cookie Type | Purpose | Duration |
|---|---|---|
| Essential Cookies | Website functionality, security, login sessions | Session / Short-term |
| Preference Cookies | Remember your settings (language, currency) | 1 year |
| Analytics Cookies | Understand how visitors use our website | 26 months |
| Marketing Cookies | Deliver relevant content (if enabled in future) | Variable |
| Cookie Name | Provider | Purpose |
|---|---|---|
| Session ID | goFLY | Maintain your session while browsing |
| Language preference | goFLY | Remember your language choice |
| Currency preference | goFLY | Remember your currency selection |
| Google Analytics (_ga, _gid) | Website analytics |
Currently, goFLY Limited does NOT use:
If we introduce third-party advertising in the future, we will update this policy and seek your consent.
You can control cookies through your browser settings:
| Browser | Instructions Link |
|---|---|
| Chrome | Chrome Cookie Settings |
| Firefox | Firefox Cookie Settings |
| Safari | Safari Cookie Settings |
| Edge | Edge Cookie Settings |
⚠️ Note: Disabling cookies may affect website functionality.
Our website currently does not respond to “Do Not Track” browser signals. However, you can use browser settings to limit tracking.
| Service | Provider | Purpose | Privacy Policy |
|---|---|---|---|
| Payment Processing | SSLCOMMERZ | Secure payments | SSLCOMMERZ Privacy |
| Analytics | Google Analytics | Website statistics | Google Privacy |
| Email Service | (Provider name) | Email communications | N/A |
| Hosting | (Provider name) | Website hosting | N/A |
Our website may contain links to third-party websites, including:
⚠️ Important: We are not responsible for the privacy practices of third-party websites. We encourage you to read their privacy policies before providing any personal information.
If you interact with us through social media platforms:
Your interactions are also subject to those platforms’ privacy policies.
Regardless of your location, you have the following rights regarding your personal data:
| Right | Description |
|---|---|
| Right to Access | Request a copy of your personal data we hold |
| Right to Rectification | Request correction of inaccurate or incomplete data |
| Right to Erasure | Request deletion of your data (subject to legal requirements) |
| Right to Restrict Processing | Request limitation of how we use your data |
| Right to Object | Object to certain types of processing (e.g., marketing) |
| Right to Data Portability | Request transfer of your data in a machine-readable format |
| Right to Withdraw Consent | Withdraw consent for processing based on consent |
| Right to Complain | Lodge a complaint with a supervisory authority |
To exercise any of these rights:
To protect your privacy, we may ask you to verify your identity before processing requests. This may include:
We will respond to your request within 30 days. If we need more time, we will inform you of the reason and extension period.
Most requests are processed free of charge. However, we may charge a reasonable fee for:
If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR).
| Processing Activity | Legal Basis |
|---|---|
| Service delivery | Contract performance |
| Visa applications | Contract performance, legal obligation |
| Marketing communications | Consent |
| Website analytics | Legitimate interest |
| Fraud prevention | Legitimate interest, legal obligation |
| Legal compliance | Legal obligation |
In addition to the general rights above, GDPR provides:
| Right | Description |
|---|---|
| Right to Access | Request copies of your personal data. A small fee may apply. |
| Right to Rectification | Request correction of inaccurate information. |
| Right to Erasure (“Right to be Forgotten”) | Request deletion under certain conditions. |
| Right to Restrict Processing | Request limitation of processing under certain conditions. |
| Right to Object | Object to processing based on legitimate interests. |
| Right to Data Portability | Request transfer of data to another controller. |
| Rights Related to Automated Decision-Making | Not to be subject to purely automated decisions with legal effects. |
If you are unsatisfied with our response, you have the right to lodge a complaint with your local data protection authority.
When we transfer your data outside the EEA, we ensure appropriate safeguards are in place (see Section 14).
If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA).
| Right | Description |
|---|---|
| Right to Know | Request disclosure of categories and specific pieces of personal data collected about you |
| Right to Delete | Request deletion of personal data collected from you |
| Right to Opt-Out | Opt out of the sale of personal data |
| Right to Non-Discrimination | Not be discriminated against for exercising your rights |
goFLY Limited does NOT sell personal information. We do not sell, rent, or trade your personal data to third parties for monetary or other valuable consideration.
In the past 12 months, we have collected the following categories:
| Category | Examples | Collected? |
|---|---|---|
| Identifiers | Name, email, phone, passport | ✅ Yes |
| Personal Information (CA Civil Code) | Name, address, payment info | ✅ Yes |
| Commercial Information | Booking history, transaction records | ✅ Yes |
| Internet/Network Activity | Browsing history, search history on our site | ✅ Yes |
| Geolocation Data | General location from IP | ✅ Yes |
| Professional/Employment Info | Employment details for visa applications | ✅ Yes (when provided) |
| Sensitive Personal Information | Passport, financial data | ✅ Yes (for services) |
To exercise your CCPA rights:
We will respond within 45 days (extendable to 90 days if needed).
You may designate an authorized agent to make requests on your behalf. The agent must provide written authorization from you.
goFLY Limited services are intended for users 18 years of age and older. We do not knowingly collect personal information from children under:
When booking travel for minors (under 18), the parent or legal guardian is responsible for:
Parents or guardians may:
If you believe we have inadvertently collected information from a child under 13, please contact us immediately at support@goflybd.com. We will take prompt action to delete such information.
To provide our services, your data may be transferred to:
| Destination | Purpose |
|---|---|
| Airlines | Flight bookings (data centers globally) |
| Hotels | Reservations (destination countries) |
| Embassies | Visa applications (destination countries) |
| Payment processors | Transaction processing |
| Cloud providers | Data storage and processing |
When transferring data internationally, we ensure protection through:
For transfers from the EEA to countries without adequate data protection laws, we rely on:
We may update this Privacy Policy from time to time to reflect:
When we make changes:
| Version | Date | Summary |
|---|---|---|
| 1.0 | January 2017 | Initial release |
| 2.0 | December 17, 2025 | Comprehensive update: GDPR, CCPA, expanded rights |
You may request previous versions of this policy by contacting us.
If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:
Data Protection Contact:
goFLY Limited
1 Shukrabad Road Motiur Nibash
Beside New Model Degree College
Opposite of Metro Shopping Mall
Dhaka – 1207, Bangladesh
| Channel | Details | Best For |
|---|---|---|
| support@goflybd.com | Privacy requests, formal inquiries | |
| Hotline | +880 9639-203090 | General inquiries |
| +880 1713-289178 | Quick questions | |
| Website | goflybd.com/contact-us | Contact form |
| Day | Hours |
|---|---|
| Sunday – Thursday | 10:00 AM – 6:00 PM (BST) |
| Saturday | 10:00 AM – 6:00 PM (BST) |
| Friday | Closed |
Email Subject Format: “Privacy Request – [Type] – [Your Name]” Types:
Your privacy matters to us. At goFLY Limited, we are committed to protecting your personal information and being transparent about our data practices. If you have any questions or concerns, please don’t hesitate to contact us.
goFLY Limited
IATA Certified • ATAB Member • Civil Aviation Licensed
Serving 10,000+ Happy Travelers Since 2017
🌐 www.goflybd.com
📞 +880 9639-203090
📧 support@goflybd.com
© 2017-2025 goFLY Limited. All Rights Reserved.
IATA: 42337956
ATAB: 4298
Civil Aviation: 0007726
Support