Back to Home

Privacy Policy

Last updated: January 7, 2026

1. Introduction

Welcome to TrippBit. We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how vibeIT labs ltd ("we", "us", "our") collects, uses, shares, and protects your personal data when you use our TrippBit travel booking service.

TrippBit is an AI-powered travel companion that operates through Telegram, allowing you to book flights, hotels, translate languages, and plan trips. By using our services, you agree to the collection and use of information in accordance with this policy.

2. Data Controller

The data controller responsible for your personal data is:

vibeIT labs ltd

128 City Road

London, EC1V 2NX

United Kingdom

Email: support@trippbit.com

3. Information We Collect

We collect the following types of personal information:

3.1 Telegram Account Data

  • Telegram user ID
  • Username (if provided)
  • Chat history with our bot (for service delivery and support)

3.2 Booking Information

  • Full name (as it appears on travel documents)
  • Email address
  • Phone number
  • Date of birth (when required by airlines/hotels)
  • Passport or ID details (for international travel)
  • Travel preferences and special requests

3.3 Booking History

  • Flight and hotel reservations
  • Booking confirmations and reference numbers
  • Cancellation and refund records

3.4 Payment Information

Important: We do NOT store your payment card details. All payment processing is handled securely by our third-party payment providers. For cryptocurrency payments, transaction IDs may be retained for record-keeping purposes.

3.5 Website Analytics

We use Vercel Analytics on our website, which collects anonymous, aggregated data about page views and site usage. This service does not use cookies or collect personally identifiable information.

4. How We Use Your Information

We use your personal information for the following purposes:

  • Service Delivery: To process and manage your flight and hotel bookings
  • Communication: To send booking confirmations, updates, and support responses via Telegram and email
  • Customer Support: To assist you with inquiries, changes, and cancellations
  • Legal Compliance: To comply with applicable laws, regulations, and legal processes
  • Service Improvement: To improve our AI assistant and overall service quality
  • Fraud Prevention: To detect and prevent fraudulent transactions

6. Third-Party Service Providers

To provide our services, we share your personal information with the following third-party providers:

Flight Bookings - Duffel

We use Duffel.com as our flight booking provider. Your passenger information is shared with Duffel and subsequently with airlines to complete your booking.

Duffel Privacy Policy →

Hotel Bookings - LiteAPI

We use LiteAPI.travel for hotel reservations. Your guest information is shared with LiteAPI and the respective hotels.

LiteAPI Privacy Policy →

Payment Processing

We use secure third-party payment processors for card and cryptocurrency transactions. These providers are PCI-DSS compliant and handle your payment data directly.

Website Analytics - Vercel

We use Vercel Analytics for anonymous website usage statistics. No personally identifiable information is collected.

Vercel Privacy Policy →

7. Data Retention

We retain your personal data for the following periods:

  • Booking Records: 7 years (as required for tax and accounting purposes under UK law)
  • Chat History: 2 years from last interaction, or until you request deletion
  • Account Data: Until you request account deletion
  • Payment Records: 7 years (legal requirement)

8. Your Rights (GDPR)

Under the UK GDPR, you have the following rights regarding your personal data:

  • Right of Access: Request a copy of the personal data we hold about you
  • Right to Rectification: Request correction of inaccurate or incomplete data
  • Right to Erasure: Request deletion of your personal data ("right to be forgotten")
  • Right to Restrict Processing: Request limitation of how we use your data
  • Right to Data Portability: Receive your data in a structured, machine-readable format
  • Right to Object: Object to processing based on legitimate interests

To exercise any of these rights, please contact us at support@trippbit.com. We will respond to your request within 30 days.

You also have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) at ico.org.uk.

9. International Data Transfers

Your personal data may be transferred to and processed in countries outside the UK and European Economic Area (EEA), particularly when booking with international airlines and hotels. Where such transfers occur, we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the UK ICO or adequacy decisions.

10. Data Security

We implement appropriate technical and organisational measures to protect your personal data, including:

  • Encryption of data in transit and at rest
  • Secure, access-controlled infrastructure
  • Regular security assessments and updates
  • Staff training on data protection

11. Children's Privacy

TrippBit is not intended for use by children under 18 years of age. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal data, please contact us immediately.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated "Last updated" date. For significant changes, we will notify you via Telegram or email. We encourage you to review this policy periodically.

13. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Email: support@trippbit.com

Telegram: @trippbit_bot

Post: vibeIT labs ltd, 128 City Road, London, EC1V 2NX, United Kingdom