Privacy Policy

Privacy Policy:

By browsing our site & app, you agree to this policy.

Doifoo Inc. developed the Doifoo app as a freemium service, available at no cost, with the app intended for use as provided. This Privacy Policy aims to inform users about our practices concerning the collection, use, and disclosure of personal information for those who choose to use our services.

By using our services, you consent to the collection and use of your information in accordance with this Privacy Policy. We collect personal information to provide and enhance our services. Your information will only be used or shared as outlined in this Privacy Policy.

Terms used in this Privacy Policy have the same definitions as in our Terms and Conditions, which are accessible on the Doifoo app and website, unless otherwise specified here.

Legal Note:

Doifoo Internet Private Limited, located in Bengaluru, India, manages legal claims, compliance, and hiring aspects on behalf of Doifoo Inc., a Delaware C-Corporation headquartered in San Francisco, USA. Doifoo Internet Private Limited ensures that the Doifoo app adheres to applicable copyright and regulatory requirements under the jurisdiction of the State of Karnataka, India. Doifoo Inc. retains responsibility for overseeing global strategy, app distribution, operations, and governance in compliance with U.S. sanctions and relevant regulations under the jurisdiction of the State of Delaware, USA.

For legal inquiries related to Doifoo, please contact Doifoo Internet Private Limited at legal.in@doifoo.com. These matters will be addressed in accordance with the laws of the State of Karnataka, India. For matters regarding Doifoo app distribution or user data compliance, please contact Doifoo Inc. at compliance.us@doifoo.com, where such issues will be handled pursuant to the laws of the State of Delaware, USA.

Disclaimer:

This transition applies to all Doifoo products and services as of January 2025. Any legacy products, including Doifoo Read, Quicklook, Postcard, Hear, Vertical, and all other products and services discontinued or active through December 2024, will have their legal and compliance matters managed solely by Doifoo Internet Private Limited under the jurisdiction of the State of Karnataka, India.

By default, any physical correspondence related to Doifoo will be received and addressed exclusively at our physical office in India, located at Doifoo Internet Private Limited, WeWork Prestige Central, 36 Infantry Road, Bengaluru, Karnataka, 560001, India. While Doifoo Inc. maintains a mailbox address in the United States, any physical mail sent there will not be processed or acknowledged. Doifoo Inc. and Doifoo Internet Private Limited are not legally responsible for any consequences of disregarding such correspondence, as all official physical correspondence must be directed to our India office. We expressly disclaim any liability for handling physical mail in the U.S. and will not be bound by any documents or notices sent to our U.S. mailbox address.

1. Information Collection and Use

We collect various types of personal data, including, but not limited to, your name, date of birth, contact information, device information, and location data. When you create your free 11-digit Travel ID, we also process the booking, identity, travel-document and preference details you add — whether typed, forwarded by email, or captured by photo or PDF scan — to build your Travel ID, SuperProfile and Apple Wallet / Google Wallet passes. If you choose to use contactless recall (QR, Face or Wave), generate a Magic PIN, or share your ID with people in your Circle, the related identifiers and consent records are processed to deliver those features. This information is collected to enhance our services, provide personalized experiences, and comply with legal obligations. The app does use third party services that may collect information used to identify you. Link to privacy policy of third party service providers used by the Doifoo app are given in next section.

To delete account, send a mail request to hello@doifoo.com with Delete/Exit Doifoo in subject line. We delete your entire data with 30 days from acknowledging the request. We take data privacy seriously.

2. Data Collection and Use of Third-Party SDKs

Our services utilize third-party SDKs (Firebase, Google Analytics, OneSignal, Facebook, Huawei & Amazon SDK) to provide essential functions and improve user experience. These SDKs may collect data, such as device identifiers and network information. Please review their respective privacy policies for more details.

In connection with your use of the Services, we may send you service announcements, administrative messages, and other information. You may opt out of some of those communications. All of our Services are available on mobile devices. Do not use such Services in a way that distracts you and prevents you from obeying traffic or safety laws.

3. Permissions

We request access to certain device permissions to enhance our services, including location, network state, push notifications, camera (to scan QR codes and travel documents and to capture booking details), wallet (to add Apple Wallet and Google Wallet passes), and on-device storage (to keep your ID available offline). These permissions allow us to provide essential functions and optimize the user experience. You may manage these permissions through your device settings.

4. Data Security and Your Rights

We employ reasonable security measures to protect your data, and store it in regional databases aligned to your country so that personal information stays within the appropriate data-residency region wherever possible. However, no method of transmission over the internet is completely secure. Depending on your jurisdiction, you may have rights to access, correct, delete, or restrict the processing of your personal data. You may exercise these rights by contacting us at hello@doifoo.com (for users only).

While, we value your trust in providing us your Personal Information, thus we are striving to use commercially acceptable means of protecting it. But remember that no method of transmission over the internet, or method of electronic storage is 100% secure and reliable, and we cannot guarantee its absolute security & Doifoo Internet Private Limited / Doifoo Inc. does'nt hold liability.

5. Data Retention & logs

We retain your personal information only as long as necessary for the purposes outlined in this policy or as required by law. Once this period expires, your data will be securely deleted or anonymized.

We want to inform you that whenever you use our Service, in a case of an error in the app we collect data and information (through third party products) on your phone called Log Data. This Log Data may include information such as your device Internet Protocol (“IP”) address, device name, operating system version, the configuration of the app when utilizing our Service, the time and date of your use of the Service, and other statistics.

6. Cookies

Cookies are files with a small amount of data that are commonly used as anonymous unique identifiers. These are sent to your browser from the websites that you visit and are stored on your device's internal memory.

This Service does not use these “cookies” explicitly. However, the app may use third party code and libraries that use “cookies” to collect information and improve their services. You have the option to either accept or refuse these cookies and know when a cookie is being sent to your device. If you choose to refuse our cookies, you may not be able to use some portions of this Service.

7. Service Providers

We may employ third-party companies and individuals due to the following reasons:

We want to inform users of this Service that these third parties have access to your Personal Information. The reason is to perform the tasks assigned to them on our behalf. However, they are obligated not to disclose or use the information for any other purpose.

8. Links to OpenAI & Other Sites

SuperAsk, Doifoo's AI travel concierge powered by OpenAI (ChatGPT) technology, leverages Generative AI to provide enhanced user interactions. Conversations with SuperAsk may involve the processing of user inputs, including text-based queries together with your trip, Wallet and Circle context, and responses, to deliver accurate and personalized information. We do not store or use these interactions for any purpose other than improving our service functionality in real-time. By using SuperAsk, you agree to the processing of your inputs in line with this Privacy Policy. For more details on data handling by OpenAI, please refer to OpenAI's Privacy Policy.

Other Doifoo Services may contain links to other sites. If you click on a third-party link, you will be directed to that site. Note that these external sites are not operated by us. Therefore, we strongly advise you to review the Privacy Policy of these websites. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

9. Data Retention

We retain your personal information only as long as necessary for the purposes outlined in this policy or as required by law. Once this period expires, your data will be securely deleted or anonymized. Data deletion will be manual under request to hello@doifoo.com followed by verification in beta products and will be inbuilt in the menu for fully released products/services.

10. iOS App

The Doifoo iOS app utilizes a range of permissions and third-party SDKs, including OneSignal, Google App Measurement, and Firebase Analytics, to enhance functionality. We collect and process user data in accordance with applicable privacy laws such as GDPR, CCPA, LGPD, and VCDPA. Users have rights regarding their personal data, including the rights to request access, deletion, and correction of their data, as well as the right to know if their information is shared or sold and to opt-out of the sale or sharing of personal data where applicable. To opt-out of data sales or targeted advertising, users can contact us at legal.in@doifoo.com.

In accordance with the CCPA, users have the right to know whether their personal data is sold or shared. Doifoo provides transparency regarding any such activities and offers users the ability to opt-out of data sales. For details on how to exercise this right, please contact our support team. Doifoo does not knowingly sell personal data collected from children under the age of 13.

We do not knowingly collect personal data from children under the age of 13. If it is discovered that we have collected personal information from a child without verified parental consent, we will take steps to delete that information promptly. Caregivers have the right to request access to, deletion of, or to stop the collection or use of their child's personal information. Caregivers can exercise these rights by contacting us at legal.in@doifoo.com.

Doifoo ensures compliance with data retention regulations, retaining personal data only as long as necessary for operational purposes, and securely deleting it thereafter. Additionally, under applicable laws such as GDPR and LGPD, users have the right to lodge a complaint with a supervisory authority should they feel their data rights have been infringed upon.

For EU, Brazil, and U.S. residents, we provide information on data protection rights and relevant supervisory authorities. Additionally, users can contact our designated Data Protection Officer (DPO) and data controller, Doifoo Internet Private Limited, at legal.in@doifoo.com for questions regarding data handling. The legal basis for processing data includes user consent, compliance with legal obligations, and legitimate interests in enhancing our app services. By using the Doifoo iOS app, users agree to the data processing terms outlined in this Privacy Policy, which is periodically updated to reflect new endpoints, data retention practices, and compliance with data protection regulations.

11. Android App

The Doifoo Android app integrates various permissions and SDKs, such as Firebase, OneSignal, Facebook, and Amazon App Store SDK, to provide enhanced features and ensure optimal functionality. We collect specific data categories, including device identifiers, precise and approximate location, email addresses, phone numbers, user IDs, and internet activity. This data collection is conducted in compliance with global privacy regulations, including but not limited to GDPR, CCPA, LGPD, and VCDPA. Our Privacy Policy aligns with the Google Play Data Safety Section to ensure transparency in our data practices.

Users have the right to access, delete, and correct their personal data. Additionally, users have the right to know whether their information is shared or sold. Where applicable, users also have the right to opt out of the sale of their personal data, including targeted advertising. These rights can be exercised by contacting our Data Protection Officer (DPO) and data controller at legal.in@doifoo.com.

Our data retention practices are designed to align with regulatory standards, ensuring data is stored only as long as necessary for operational purposes. We regularly update our Privacy Policy to reflect new SDK integrations, endpoints, and compliance practices under applicable privacy laws. This approach maintains alignment between data handling practices disclosed in our Privacy Policy and Google’s Data Safety Section. Users agree to the data processing terms outlined in this Privacy Policy by using the Doifoo Android app. For any inquiries regarding data processing, users can contact our DPO and data controller via legal.in@doifoo.com.

Our Privacy Policy is periodically reviewed and updated to include any new SDKs and endpoints integrated within the app. This ensures that users are informed of all current data processing activities, while also maintaining compliance with Google Play’s Data Safety Section requirements. Any new SDKs and endpoints will automatically fall under the general compliance terms outlined in this policy, thus ensuring all future integrations are covered without necessitating immediate updates. For further clarification on our data practices, users may refer to this Privacy Policy or reach out to us at the above contact.

In addition to the outlined data practices, we conduct regular audits and updates to align our privacy policy with Google Play’s Data Safety Section requirements. We include comprehensive disclosures for all data categories processed by the Doifoo Android app, such as browsing history, files and documents, contacts, calendar events, and media, including photos, videos, and audio recordings. Any discrepancies between data handling practices and the Google Play Data Safety disclosures are promptly addressed to maintain full compliance. By using our app, users acknowledge and consent to these practices, which are periodically updated to reflect new or modified data collection practices, SDKs, or app functionalities. For further information on specific data categories and how they are handled, users may contact our Data Protection Officer (DPO) at legal.in@doifoo.com.

12. Changes to This Privacy Policy

This Privacy Policy may be updated periodically. We will notify users of significant changes. Continued use of our services after updates indicates acceptance of the revised policy.

Legal & Compliance: Doifoo Internet Private Limited, WeWork Prestige Central, 36 Infanty road, Bengaluru - 560001 KA, India.

iOS & Android app: Doifoo Inc., WeWork, 535 Mission street, San Francisco - 94105 CA US.