Privacy is important to you. It's important to us. We know the content in PlanitEasy is and must always be completely private.

Last updated: May 23, 2018


Jinee, Inc. DBA PlanitEasy ("PlanitEasy," "we" or "us") know how important it is to safeguard all the personal and business information stored in the PlanitEasy Service. In this Privacy Policy, we'd like to explain what information is collected, how it is handled and what we may use it for. As used in this policy "Service" means the features and services we make available, including through our website at PlanitEasy.com and any other PlanitEasy branded websites (including international and mobile versions) and related services, plugins, apps and APIs. This Privacy Policy does not apply to the use or disclosure of information that is collected or obtained by us through means other than the PlanitEasy Service.

When you sign up for PlanitEasy you need to enter a first name and last name and a valid email address. We'll use this email address to send you system information and other alerts (you can configure the options). You also use this email address to sign in. If you want other members of your organization or family to use PlanitEasy, you need to share their first and last name (or nickname and last name) and email address with us too. In addition to users of your account, you can add profiles to your account like clients, friends, and suppliers. Some of these profiles are NOT users of PlanitEasy. You can add any profile you want and NOT put an email address for that profile and you can still keep track of information about that profile and they will never have to use PlanitEasy.

A PlanitEasy user can share content with other users, including clients, and suppliers. We designed PlanitEasy partially for this specific purpose, secure sharing and messaging. We also allow users to connect with other users. If you share content with other users, you can easily block or remove them from specific content or later remove connections altogether.

The only personal information we always encourage you to share with other users as you build your Planit is your full name, and a recent avatar (not mandatory, but very helpful). Your full name and avatar give other users a quick way to know who is asking to connect with them.

PlanitEasy will have the ability to integrate with other Internet services, but you'll be in complete control of who sees that information too (for example personal information, or travel details from a booking). The content you create might be very fun and social, like photos from a trip or the list of places to visit. Each master account, company account and each user can decide with whom to share content. Master admins can always modify content that they can see, including roles, capabilities and permissions. This is easy to do and it's very clear how to do it in the About profile section and of each post or chat. If you disagree, let us know and we'll put it as Priority 1 to fix.

If you've added an internal user you no longer want to be part of your PlanitEasy account, you can remove that person. If you want to remove a connection to another user (in your Planit) you can easily do that too. If you want to disconnect from PlanitEasy and delete all your content that's also easy.

Changes to this Policy

As PlanitEasy evolves, we reserve the right to update this policy, or any other policy or practice, at any time, with reasonable notice to users of the Services. We will, however, always maintain our commitment to respect your privacy. Any changes or updates will be effective immediately upon such notice. Please note that your continuation of using PlanitEasy after any change means that you agree with, and consent to be bound by, the new Privacy Policy. If you disagree with any changes in this Policy and do not wish your information to be subject to the revised Policy, you will need to delete your family account.

Email and Text Alerts

This is a digital product (obviously). If you want to reset your (strong) password we'll send you an email for security purposes. If you're invited to connect to another Planit or Trip we'll send you an email. If you don't want to receive the other useful email or text alerts you can turn them off. If you don't want to receive our product announcements (which may be awesome, who knows) or interesting facts about the company, you can turn those alerts off too. Like you, we use a lot of Internet products and we're sensitive to how busy everyone is and how much people hate spam.

Data Mining and Advertising

We don't sell (or rent) your personally identifiable information to advertisers. We don't read your content. We don't sell names and email addresses either.

Automated Data Collection

To make our Service more useful to you, PlanitEasy collects industry standard tracking data from everyone who visits our Sites. This includes log data that automatically records information about your visit, such as your browser type, operating system, phone type, the URL of the page that referred you, the different actions you performed, and the IP address you used to access pages on the Site. We may also use Cookies (as defined below) and navigational data like Uniform Resource Locators (URL) to gather information regarding the date and time of your visit and the information for which you viewed. Like most Internet services, we automatically gather this Data and store it in log files each time you visit our website or access your account on our network.

This data is stored separately and not assigned to any identifiable person when being used for Analytics. PlanitEasy also uses Google Analytics and Mixpanel to help with collecting and analyzing this data.

For protecting you in the event of a security breach, some data is securely logged and associated with the logged in user so we can accurately report back to you exactly what happened.

Data Entered by Users

You can only use PlanitEasy by registering for a User Account (or have a Master Admin of a company account register a User Account for you). To do this, you must enter your full name, email address and select a password. We require these data points in order to guarantee that you are able to make full use of our entire offer. We need these and possibly other data not least in order to respond to your questions. You can also provide other personal information to fill out your profile as well as to store personal and family data. You can use explicit permissions to control the sharing of your information. All data entered will be integrated into a database or reside on secure file servers. The purpose of this database is to allow you to use PlanitEasy with various devices or via an Internet browser and call up your data anywhere and at any time. Data is transmitted to the respective device using SSL encryption so that your data is transmitted securely.

In some cases we may also request additional information from you for security reasons to provide specific services such as financial integration and fitness integration. We collect personally identifiable and transactional information when you: (1) purchase products or services via the Service, (2) request to receive additional information regarding products or services, or (3) send us a question. If you choose not to give information we request, you can still use most of the Service, but you may be unable to access certain options, offers, and services.

Besides the minimal required account setup data, any additional data stored in PlanitEasy is entirely voluntary.

  • Third party credentials: You may also enter in certain passwords, usernames, account numbers, and other account information for third party sites and Internet services ("Third Party Sites").
  • Information from Third Party Sites: In order to display information to you through a Service, we may collect, on your behalf, your account and other personal information from Third Party Sites that you register under your account via the Service. For example, if you register your Bank of America account with us, we will aggregate your Bank of America information via our Site in order to present it to you. If you choose to access bills online through our Services, we may store a PDF or HTML representation of your bills on our servers. We also integrate with a number of travel suppliers.

Security and Audits

PlanitEasy is committed to protecting your content and making secure as reasonably possible. The PlanitEasy Service is hosted in the Amazon Web Services ("AWS") Cloud Infrastructure. We are using many enhanced security features - such as the Amazon Virtual Private Cloud "VPC" (for a secure networking), AWS Key Management Service "KMS" (Secure Key Management) and Amazon Simple Storage Service "S3" (for secure file storage). We use industry standard encryption to protect content in transit. (Our mobile app uses securely signed HTTPS requests according to the IETF HTTP Signatures specification)

We have retained an independent third party to conduct audits on a regular basis. They perform penetration tests, make recommendations, and update us on the latest news on security and privacy.

If PlanitEasy learns of a security system breach, we may attempt to notify you and provide information on steps to take through the email address for your user account. We recommend that you take all appropriate steps to secure all devices that you use with PlanitEasy.

Tracking Information

Cookies

A cookie is a small file stored on your computer or device to give you a unique ID. We use cookies to track new users of the Service and to recognize past users so that we may customize and personalize content and make the Service easier to use. Cookies used by the Service do not contain any personally identifiable information. If for any reason you don't want to take advantage of cookies, you may have your browser not accept them, although this may disable or render unusable some of the features of the Service. We do not combine or associate any web usage information from cookies with personal information.

Web Beacons

Web beacons (sometimes called a web bug or clear gif) are typically very small graphic images (generally 1-by-1 pixel) that are invisible to the user, however any electronic image viewed as part of a web page or e-mail message, including an advertisement or HTML content, can act as a web beacon. Web beacons are designed to allow us (or a third party) to collect certain statistical information and monitor user activity on our Service. Collected information can include the IP address of the computer that the web beacon is sent to, the URL of the page the web user comes from, and the time the web beacon is activated (such as when you view the web page or e-mail that contains the web beacon). We may use web beacons for site administration purposes in connection with messages, content or e-mail messages you receive via the Service.

Questions or Complaints

Questions or complaints concerning the collection or use of personal information by the Service or about this Privacy Policy should be directed to info@PlanitEasy.com.

General Data Protection Regulation (GDPR) Information

PlanitEasy is committed to compliance with the General Data Protection Regulation (GDPR). This regulation was designed to give EU citizens more protection and control over their data. It also seeks to simplify current privacy and security laws by unifying them under one comprehensive law.

Your privacy and protection is our priority. This updated privacy policy will inform you as to how we protect your personal data when you use our platform and tell you about your privacy rights and how the law protects you.

Controller

PlanitEasy is the controller responsible for your personal data..

We have appointed a data protection officer (“DPO”) who is responsible for answering any questions in relation to this privacy policy. If you have any questions about this privacy policy, including any requests to exercise your legal rights, please contact the DPO using the details set out below.

Contact information

Full name of legal entity: Jinee, Inc. DBA PlanitEasy

Data Protection Officer (“DPO”): Jakob Bay, Co-founder.

Email address: jakob@planiteasy.com

Address: Jinee, Inc., 304 Spring Street, #8, New York, NY 10013

Data Collection

Personal data means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).

If you become a PlanitEasy user we may collect, use, store and transfer different kinds of personal data about you. In addition, if you are the client of a PlanitEasy user who uses our platform to plan and manage trips, that user may add specific personal data about you to PlanitEasy. This type of data includes: identification data such as first name, last name, date of birth, passport and visa information, company name, job title, travel related preferences and special conditions, website URL and photograph and other demographic data as well as billing address, email and telephone numbers. Financial data may also be collected such as bank account and payment card details. Additionally, payment transaction data and technical data: IP address, login data, time zone setting and location, and browser type, may also be collected. Your username and password and profile preferences will also be stored.

We also collect, use, and may share aggregated data such as statistical or demographic data for any purpose. Aggregated Data may be collected from your personal data but is not considered personal data in law as your identity remains anonymous.

In addition, you have the right to your personal data if requested.

Data Protection

We’ve built a robust security framework, achieving International Compliance standards and reviewing our internal access design to ensure the right people have access to the right level of customer data.

In addition, we limit access to yours and your clients personal data to employees, agents, and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

You have the right to request from PlanitEasy access to and correction or erasure of your personal data, to object to or request restriction of processing concerning the data, or to the right to data portability. In each case such a request must be made to our Data Protection Officer (contact info above).

Cookies

A cookie is a small file which asks permission to be placed on your computer's hard drive. Once you agree, the file is added and the cookie helps analyse web traffic or lets you know when you visit a particular site. Cookies allow web applications to respond to you as an individual. The web application can tailor its operations to your needs, likes and dislikes by gathering and remembering information about your preferences.

We use traffic log cookies to identify which pages are being used. This helps us analyse data about web page traffic and improve our platform in order to tailor it to customer needs. We only use this information for statistical analysis purposes and then the data is removed from the system.

Overall, cookies help us provide you with a better platform experience, by enabling us to monitor which pages you find useful and which you do not. A cookie in no way gives us access to your computer or any information about you, other than the data you choose to share with us. You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can modify your browser setting to decline cookies if you prefer. However, this may prevent you from taking full advantage of the website.

Data Retention

If you delete any data related to an employee, client or trip, that data will be permanently removed from our servers in accordance with GDPR guidelines. If you decide to delete your account you can request your personal data and will will provide it to you within 30 days.

Sharing with third parties

We share information with third parties that help us operate, provide, improve, integrate, customize, support and market our Services.

We work with third-party service providers who provide a number of services including, website and application development, hosting, maintenance, backup, storage, virtual infrastructure, payment processing, and analysis. As a result, we may require them to access or use information about you. If a service provider needs to access information about you, they do so under instruction from us and while abiding by policies and procedures designed to protect your information.

We may also include links that direct you to other websites or services whose privacy practices may differ from ours. Your use of and any information you submit to any of those third-party sites is governed by their privacy policies, not ours.

To fulfil the travel arrangements for a user or a user’s clients, it will often be necessary to process personal data via a third party (these may include but are not limited to airlines, hotels, car hire companies, and Visa or Passport companies). Personal Data shall only be transferred to, or processed by, third party companies where such companies are necessary for the fulfilment of the travel arrangements.

Personal Data shall not be transferred to a country or territory outside the European Economic Area (EEA) unless the transfer is made to a country or territory recognised by the EU as having an adequate level of Data Security, or is made with the consent of the user, or is made to satisfy the Legitimate Interest of PlanitEasy in regard to its contractual arrangements with its clients.

Appendix – Definitions of certain terms referred to above

Personal Data

(Article 4 of the GDPR): ‘personal data’ means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Processing

(Article 4 of the GDPR): means any operation or set of operations which is performed upon personal data or sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, erasure or destruction.

Legal Basis for Processing

(Article 6 of the GDPR): At least one of these must apply whenever personal data is processed

  • Consent: the individual has given clear consent for the processing of their personal data for a specific purpose.
  • Contract: the processing is necessary for compliance with a contract.
  • Legal obligation: the processing is necessary to comply with the law (not including contractual obligations).
  • Vital interests: the processing is necessary to protect someone’s life.
  • Public task: the processing is necessary to perform a task in the public interest, and the task or function has a clear basis in law.
  • Legitimate interests: the processing is necessary for the legitimate interests of the Data Controller unless there is a good reason to protect the individual’s personal data which overrides those legitimate interests.

Data Controller

(Article 4 of the GDPR): the person or company that determines the purposes and the means of processing personal data.

Data Processor

(Article 4 of the GDPR): a natural or legal person, public authority, agency or any other body which processes personal data on behalf of the controller.

Your Rights

  • Right to be informed; This means anyone processing your personal data must make clear what they are processing, why, and who else the data may be passed to.
  • Right of access; this is your right to see what data is held about you by a Data Controller.
  • Right to rectification; the right to have your data corrected or amended if what is held is incorrect in some way.
  • Right of erasure; under certain circumstances you can ask for your personal data to be deleted. This is also called ‘the Right to be Forgotten’. This would apply if the personal data is no longer required for the purposes it was collected for, or your consent for the processing of that data has been withdrawn, or the personal data has been unlawfully processed.
  • Right of restriction; this gives the Data Subject the right to ask for a temporary halt to processing of personal data, such as in the case where a dispute or legal case has to be concluded, or the data is being corrected.
  • Right to data portability; a Data Subject has the right to ask for any data supplied directly to the Data Controller by him or her, to be provided in a structured, commonly used, and machine-readable format.
  • Right to object; the Data Subject has the right to object to further processing of their data which is inconsistent with the primary purpose for which it was collected, including profiling, automation, and direct marketing.
  • Rights in relation to automated decision making and profiling; Data Subjects have the right not to be subject to a decision based solely on automated processing.

Stay updated on PlanitEasy

 
Help!