The protection of your personal data is of particular concern to us at RoyalRawFlights. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.

1. Responsible

The entity responsible for data processing on this website is:
RoyalRawFlights
Owner: Dev Kumar
Kegelbahn 30
65931 Frankfurt am Main
Germany

E-Mail: info@royalrawflights.com
Telefon: +49 1521 0395611
Website: www.royalrawflights.com/

2. Collection and storage of personal data

2.1 When visiting the website

When you visit our website, your browser automatically transmits data to our server. This information is temporarily stored in log files. The following data is collected without your intervention:

• IP address of the requesting computer
• Date and time of access
• Name and URL of the file accessed
• Website from which access is made (referrer URL)
• Browser used and, if applicable, the operating system of your computer
• Name of your access provider
• This data is evaluated exclusively for the purpose of ensuring a trouble-free connection, system security, technical administration, and statistical purposes. This data is not merged with other data sources.

2.2 When using our booking portal

When you book a flight or register via our website, we collect the following data:

• Title, first name, last name
• Email address
• Phone number (optional)
• Address (if necessary)
• Payment details (e.g., credit card or PayPal information, via secure payment service providers)
• Flight details (departure location, destination, travel dates, passenger details)

This data is collected

• to identify you as our customer,
• to process your booking,
• to correspond with you,
• for invoicing and payment processing,
• to process any liability claims and assert any claims against you.

3. Legal basis for processing

Your personal data is processed in accordance with Art. 6 (1) (b) GDPR (for the performance of a contract) and, where necessary, on the basis of our legitimate interest in accordance with Art. 6 (1) (f) GDPR (e.g. for the security of the IT system).

4. Data sharing

We will only disclose your personal data to third parties if:

• You have expressly consented to this (Art. 6 (1) (a) GDPR),

• this is necessary for the performance of contractual relationships with you (Art. 6 (1) (b) GDPR),

• there is a legal obligation (Art. 6 (1) (c) GDPR),

• the transfer is permissible on the basis of our legitimate interest (Art. 6 (1) (f) GDPR).

Recipients may include:

• Airlines and travel providers to complete your booking

• Payment service providers (Stripe, PayPal)

• Technical service providers who support us in operating the website

• Our IT service providers and hosting providers

5. Payment service provider

When you pay via Stripe or PayPal, your payment details are forwarded directly to the respective provider. We do not store any complete payment information such as credit card numbers.

For more information, please refer to the privacy policies of the payment providers:

• Apple Pay
• Google Pay

• PayPal

6. Cookies and tracking technologies

Our website uses cookies and similar technologies. Cookies are small text files that are stored on your device and enable certain functions. They serve to make our website more user-friendly, effective, and secure.

You can manage your cookie settings at any time via our cookie banner or in your browser. The legal basis for the use of technically necessary cookies is Art. 6 (1) lit. f GDPR. For all other cookies, we obtain your consent in accordance with Art. 6 (1) lit. a GDPR.

7. Web analytics tools

If we use analysis tools (e.g., Google Analytics), we do so on the basis of your consent. Pseudonymized usage profiles are created in order to analyze and optimize the use of our website. Details can be found in our cookie policy.

8. SSL encryption

For security reasons and to protect the transmission of confidential content, such as booking data, our website uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://”.

9. Your rights

You have the right to:

• pursuant to Art. 15 GDPR, to request information about your personal data processed by us.

• pursuant to Art. 16 GDPR, to request the immediate correction of inaccurate data or the completion of your data stored by us.

• pursuant to Art. 17 GDPR, to request the deletion of your data stored by us, provided that there are no legal retention obligations to the contrary.

• to request the restriction of processing in accordance with Art. 18 GDPR.

• in accordance with Art. 20 GDPR, to receive your personal data in a structured, commonly used, and machine-readable format or to request its transfer to another controller.

• in accordance with Art. 21 GDPR, to object to the processing of your data.

• pursuant to Art. 77 GDPR, to lodge a complaint with a supervisory authority if you believe that the processing of your data violates the GDPR.

10. Storage period

We only store your personal data for as long as is necessary to achieve the purposes stated here or as required by law. Once the purpose no longer applies or the statutory retention periods have expired, the data will be deleted.

11. Changes to this privacy policy

We reserve the right to amend this privacy policy as necessary to adapt it to changes in the legal situation or changes to our services. The current version can always be found on our website.

Stand: Juli, 2025