When a traveler submits their data to us, we store only necessary data for the purposes of providing the services and to serve our business or legal purposes.
Personally Identifiable Information (“PII”) from traveler’s digital health credentials are captured in encrypted form on our secure cloud servers. We store this data for only as long as reasonably required to provide our services.
Other non-PII data attributes of digital health credentials like status codes, certificate issuer names, are also stored in encrypted form on the same secure servers. We store this data for as long as reasonably required for our legitimate business or legal purposes.
To secure data from unauthorized access, our data warehouse and cloud storage servers employ security measures such as access management, encryption of data in transit, and support both server-side and client-side encryption.
If traveler’s data is submitted to us for the purposes of customer support, it will be stored in the databases of our third-party customer support service provider and protected by their security and organizational measures. For details on how their processes manage traveler’s data, please refer to their privacy and data protection clauses.