Privacy Policy

Privacy Policy for Airportica

Last updated: 29 November 2025

This Privacy Policy explains how Airportica (“Airportica”, “we”, “us”, or “our”) collects, uses, shares and protects your information when you use the Airportica landing experience and submit forms hosted at https://discover.airportica.com. It is designed to meet the privacy disclosure requirements of the Apple App Store and Google Play Store, including the App Privacy Details and Data Safety sections. However, this document is not legal advice. By using the site, you agree to the collection and use of information in accordance with this Privacy Policy.

We operate under EU GDPR and UK GDPR / Data Protection Act 2018. Where laws differ, we apply the rule that gives you the strongest protection.

1. Who we are and how to contact us

Controller:

Wowzaaa S.R.L., a company registered in Romania, with its registered office at Str. Alexandru Cel Bun 17, Brasov, Romania.

Email: privacy@airportica.com

If you have questions about this policy or how we handle your data, you can contact us at the email above. If you are in the UK or EU, you also have the right to complain to your local data protection authority.

2. What this policy covers

This Privacy Policy applies when you:

  • Submit the early access / waitlist form on this site.
  • Submit the account-deletion request form.
  • Interact with us via email in relation to Airportica.

It does not apply to third-party services you access via Airportica (for example, external retailers or payment providers) – their privacy policies apply to those services.

3. Data we collect

3.1 Information you provide to us

Waitlist / early access form

  • Email address (required to join the list).
  • Preferred language (captured from your selection at submission time).

Account-deletion request form

  • Full name.
  • Email address and confirmation of that email.
  • Whether you can still access the Airportica app on your device.
  • Optional reason for deleting your account.
  • Your acknowledgement that deletion is permanent and removes AIRPOINTS and in-app data.

If we add other forms or product features that collect additional data, we will update this policy and ask for consent where required before launching them.

3.2 Information we collect automatically

Technical logs

When you submit the account-deletion form we log your IP address and browser user agent so we can detect abusive submissions, fulfil regulatory obligations and answer follow-up questions from authorities.

Cookies and tracking pixels

We use cookies and similar technologies to understand how visitors use the landing site and to measure the performance of our ads. The main tools are Google Analytics, Google Ads, Meta (Facebook) Pixel and TikTok Pixel. These services place cookies or tags in your browser that collect device identifiers, IP address, approximate location, the pages you view, how you interact with buttons or forms, referral URLs and information about the ads you interacted with. Google Analytics data is de-identified and aggregated, while the advertising pixels allow us to build audiences for campaigns (subject to each platform’s policies).

Local preference storage

We store your chosen language in your browser’s localStorage so the site loads in that language next time. This value never leaves your device.

3.3 Data from third parties and partners

The analytics and advertising platforms listed above provide us with aggregated reports (e.g. page views, campaign attribution, conversion rates) and, where configured, hashed identifiers for retargeting. Our email provider Brevo (Sendinblue) receives waitlist emails and account-deletion request details so that we can send confirmations and privacy notifications.

4. Why we use your data (purposes + legal bases)

Run the waitlist and launch communications

  • Store your email and language so we can send early-access updates.
  • Send confirmation or information emails through Brevo.

Legal basis: contract performance; legitimate interests.

Honor privacy / account-deletion requests

  • Collect the details needed to verify you and action the request.
  • Maintain audit logs (IP address, user agent, timestamps).

Legal basis: legal obligation; legitimate interests.

Communicate with you

  • Send transactional emails (waitlist confirmation, deletion updates).
  • Respond to inbound privacy/email requests.

Legal basis: contract performance; legitimate interests.

Improve and protect Airportica

  • Monitor infrastructure logs for abuse.
  • Plan product improvements based on aggregate interest.

Legal basis: legitimate interests; legal obligations when regulators require documentation.

Measure analytics and marketing campaigns

  • Use Google Analytics to understand aggregate traffic trends.
  • Use Google Ads, Meta Pixel and TikTok Pixel to evaluate campaign effectiveness and audiences.

Legal basis: consent for non-essential cookies; legitimate interests where we rely on aggregated reports.

5. How we share your data

Brevo (Sendinblue)

Processes waitlist emails and account-deletion notifications on our behalf within the EU.

Cloudflare

Hosts and serves the site globally, providing TLS, caching and network security.

Analytics and advertising platforms

Google Analytics, Google Ads, Meta (Facebook) Pixel and TikTok Pixel receive pseudonymous identifiers, cookie IDs, IP address, device data and page interaction data for measurement and audience creation. Each provider processes that data under its own privacy policy and subject to the consents you give us via the cookie banner.

Legal disclosures

We may share limited data with authorities or advisors if required to protect our rights or comply with law.

6. International transfers

Cloudflare operates a global edge network, so form submissions may pass through servers outside your country before reaching us. Brevo hosts data in the EU but may rely on approved sub-processors. We rely on Standard Contractual Clauses (SCCs) or equivalent safeguards with each provider.

Google, Meta and TikTok may process cookie/pixel data in the United States or other jurisdictions. Where required, we implement SCCs approved by the European Commission or the UK Information Commissioner’s Office (ICO) International Data Transfer Addendum.

7. How long we keep your data

  • Waitlist emails – kept while you remain subscribed and up to 24 months after launch if inactive.
  • Account-deletion logs – retained until the request is completed and for up to 3 years for legal audit.
  • Cookie/analytics data – stored by Google, Meta and TikTok per their own retention schedules (typically 13–26 months).

If we no longer need personal data for the purposes above, we delete or anonymise it.

8. Your rights (UK/EU and similar jurisdictions)

If you are in the UK or EEA (and in some other jurisdictions), you have the following rights, subject to conditions:

  • Access – to obtain a copy of your personal data.
  • Rectification – to correct inaccurate or incomplete data.
  • Erasure – to request deletion of your data in certain circumstances.
  • Restriction – to limit how we process your data.
  • Portability – to receive your data in a structured, commonly used format.
  • Objection – to object to processing based on legitimate interests or direct marketing.
  • Withdraw consent – where processing is based on consent (e.g. certain marketing), you can withdraw it at any time.

To exercise these rights, contact us at privacy@airportica.com. We may need to verify your identity before responding. You also have the right to lodge a complaint with your local data protection authority.

In Romania/EU you can contact ANSPDCP (dataprotection.ro). In the United Kingdom you can contact the Information Commissioner’s Office (ICO) at ico.org.uk/make-a-complaint.

9. Children’s privacy

Airportica is not intended for children under 16 (or a higher age where required by local law). We do not knowingly collect personal data from children under this age. If you believe a child has provided us with personal data, please contact us and we will delete it where required by law.

10. Security

We take appropriate technical and organisational measures to protect your data, including encryption in transit, access controls and regular reviews.

11. Third-party services, SDKs and links

Our landing site currently includes only the Brevo integration mentioned above. If we add other SDKs or partner integrations we will update this section and our store disclosures.

12. App Store and Google Play disclosures

We mirror the data categories described here in the App Privacy Details (Apple) and Data Safety form (Google Play). If there is any conflict, we apply the more protective interpretation and update the other disclosure promptly.

13. Changes to this policy

We may update this Privacy Policy from time to time. When we do, we change the “Last updated” date above and, where appropriate, notify you via email, in-app message or a notice on the Site.

14. How to contact us

If you have any questions, concerns or requests regarding this Privacy Policy or your personal data, you can contact us at privacy@airportica.com.