Privacy Policy

Personal & contact

• Name, title, date of birth, gender, nationality; email, phone, and postal address; account credentials if you register.

Travel & passenger

• Itineraries, dates and trip purpose; details of all passengers; seat, meal, cabin and accessibility preferences; loyalty numbers; and special service requests such as wheelchair or dietary needs you choose to share.

Documents & billing

• Passport, visa and identity documents required to travel; billing name and address, card type and last four digits, transaction references; and, for some international card bookings, a card-authorization instruction, your electronic signature, and a security-check response kept as proof of authorization.

Device, usage & communications

• IP address, device and browser data, pages and searches, approximate location from IP; and your inquiries, chat transcripts, emails, call recordings (where disclosed), and notes in SkyCRM, our in-house customer system.

We and our providers use cookies and similar technologies (pixels, tags, SDKs, local storage) to run the site, remember preferences, measure performance, and deliver relevant advertising. Full detail is in our Cookies Policy.

Your choices. Non-essential cookies are set only with your consent where required, and you can change them anytime in cookie settings. Where required, we honor Global Privacy Control (GPC). See Sections 12 and 13.

• Booking fulfillment: to search, reserve, issue, change and cancel travel, and transmit required details to airlines, hotels and operators.
• Support, payments, fraud prevention and security.
• Marketing where permitted and subject to your choices; service improvement; legal compliance; and business operations.

We collect payment details only to complete your booking. Card payments are handled by secure, PCI-DSS compliant providers (Razorpay, Stripe, PayU), and SkyHawker does not store your full card number or CVV security code on its servers.

For some international card bookings, we may need to confirm your authorization with you and our ticketing partners before the booking is charged. In those cases we collect only what is needed to authorize that specific booking, and we do not keep your CVV after the payment is authorized.

We share information only as needed to provide our services. We do not sell your personal information for monetary consideration. Recipients include airlines (via airline and global distribution systems), hotels and operators; payment processors; technology, analytics, marketing and fraud-prevention providers under contract; legal authorities where required; and advisors/counterparties in a corporate transaction under confidentiality.

Some U.S. state laws define "sale" and "sharing" broadly to include disclosing identifiers to advertising partners for cross-context behavioral advertising. To the extent our advertising cookies do this, you can opt out anytime (Section 12).

We operate across the US, Canada and India and work with global suppliers, so your information may be processed in countries other than your own, including the destination of your travel and the country of the airline, hotel or operator. Where required, we use safeguards such as Standard Contractual Clauses, adequacy decisions, or other lawful mechanisms.

We use encryption in transit, access controls and role-based permissions, PCI-DSS compliant payment processors, monitoring, vendor due diligence, and staff confidentiality and training. No system is completely secure, but if a breach affects you we will notify you and the relevant authorities where required, including under the GDPR/UK GDPR and India's DPDP framework.

Depending on where you live, you may access, correct, delete or port your information, restrict or object to certain processing (including direct marketing), and withdraw consent. Email privacy@skyhawker.com; we verify your identity, respond within the time the law allows, and will not discriminate against you. You may also complain to your local data-protection authority.

California (CCPA / CPRA)

Know, access, delete and correct your information; opt out of the "sale" or "sharing" of personal information (including cross-context behavioral advertising); and limit use of sensitive personal information, without discrimination. We honor GPC. Use the "Do Not Sell or Share My Personal Information" link or email us; an authorized agent may submit requests.

Other U.S. states

States such as Virginia, Colorado, Connecticut, Utah, Texas, Oregon and others give rights to access, correct, delete and port data, opt out of targeted advertising, sale and certain profiling, and appeal a denial. We honor GPC where required.

Canada (PIPEDA)

We collect, use and disclose with appropriate consent and for identified purposes, and give you access and the ability to challenge accuracy. Contact us, or complain to the Office of the Privacy Commissioner of Canada.

India (DPDP Act 2023)

As a Data Fiduciary, we process your data on consent or another lawful ground after clear notice, let you access, correct, update, erase and nominate, and seek grievance redressal. We obtain verifiable consent from a parent or guardian before processing a child's data and do not track or target advertising at users we know to be children. Raise grievances with our Grievance Officer at grievance@skyhawker.com before approaching the Data Protection Board of India.

EEA / UK

Your controlling entity is SkyHawker Global Inc. You have the GDPR rights above and may complain to your local supervisory authority (in the UK, the ICO). We have not appointed a separate Data Protection Officer; privacy matters are handled by our Grievance Officer at grievance@skyhawker.com or privacy@skyhawker.com.

We send marketing only where permitted and, where required, with consent. Every marketing email has an unsubscribe link, and you can opt out anytime via that link or by emailing privacy@skyhawker.com. Opting out does not stop service messages such as booking confirmations and receipts. SMS and call-based marketing follow separate consent and telemarketing rules.

Apart from essential cookies, we set cookies only after you consent where required. Manage or withdraw consent anytime through cookie settings; we honor Global Privacy Control as an opt-out of sale/sharing and targeted advertising. Full detail is in our Cookies Policy.

Our services are for adults. We do not knowingly collect information from children for their own use without appropriate consent. Where a booking includes a child as a passenger, we process that child's details solely to fulfill the travel arrangement, as provided by a booking adult. We do not use analytics or advertising to track or target users we know to be children, and we obtain verifiable parental or guardian consent where the law requires it.

Our site links to third parties such as airlines, hotels, operators, payment pages and advertisers. We are not responsible for their privacy practices. When you leave our site or provide information directly to a third party, their privacy policy governs.

We may update this policy to reflect changes in our practices, technology or the law. When changes are material, we update the "Last updated" date and, where required, provide additional notice. Please review this page periodically.

• Privacy: privacy@skyhawker.com · Support: support@skyhawker.com · Grievance: grievance@skyhawker.com

The SkyHawker entity that controls your personal information, and its registered office, depends on your region:

Because our entities share certain systems, including a single SkyHawker account, our in-house SkyCRM, and any loyalty programme, they act as joint controllers for those shared functions. You can exercise your rights against any one of them and we will coordinate internally to honor your request.