Privacy Policy

Last updated: June 2026

Who we are

Voyageo provides a SaaS platform for travel agencies. This policy explains how we handle personal data — as a controller for user accounts, and as a processor for the client data agencies enter.

Data we collect

Account data (name, email, hashed password), agency data (bookings, invoices, payments), and the client data agencies enter (contact details, passport numbers, nationality). Minimal technical data (access logs).

How we use it

To provide the service, secure accounts, bill the subscription and answer support. We never sell your data or your clients' data.

Legal basis

Performance of the contract (providing the service), legitimate interest (security, improvement) and legal obligations (accounting).

Security

Hashed passwords, sensitive data (passports) encrypted at rest (AES-256-GCM), isolated and audited tenant access, encrypted transport (HTTPS).

Sub-processors

Database and object-storage hosting, transactional email and, when enabled, social-platform APIs. Subscription billing is self-hosted (Kill Bill): billing data never leaves our infrastructure. Each sub-processor handles data on our behalf under data-processing agreements.

Your rights (GDPR)

Access, rectification, erasure, portability and objection. The platform has built-in per-client data export and erasure. Contact us to exercise your rights.

Retention

Data is kept while the account is active, then deleted or anonymized within a reasonable period, unless legally required (e.g. accounting).

Contact

For any privacy question: privacy@voyageo.com.