Trisept Solutions, LLC is a leisure travel technology services company located in Milwaukee, WI, United States of America. Trisept develops, delivers and supports travel reservation technology that allows its clients to service reservations from an online booking engine, through travel agents and, when appropriate, through call centers. Trisept processes customer travel data from its data centers in the USA. Trisept is not responsible for the content of the information it processes or responsible for the way its clients treat personal information that they collect or control.
Accordingly, Trisept does not directly interface with the traveling public and does not collect Personally Identifiable Information (“PII” under the General Data Protection Regulation (GDPR) of the European Union) or Personal Information (“PI” under the California Consumer Protection Act (CCPA)) from consumers. However, limited PII/PI is collected from representatives of its clients such as Travel Agents or Travel Merchandisers. This policy describes what information is collected directly as well as protections that are incorporated in the products and services Trisept provides to its clients that protect the information of their customers.
In no case is PII/PI sold by Trisept. However, Trisept may disclose your personal information as required by law, such as to comply with a subpoena, or similar legal process, when it believes in good faith that disclosure is necessary to protect Trisept rights, protect individuals safety or the safety of others, investigate fraud, or respond to a government request. We will only share your personal information with third parties only in the ways that are described in this policy.
Trisept participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework. Trisept is committed to subjecting all personal data received from European Union (EU) member countries and Switzerland, respectively, in reliance on the Privacy Shield Framework, to the Framework’s applicable Principles. To learn more about the Privacy Shield Framework, and to view our certification, visit the U.S. Department of Commerce’s Privacy Shield List at https://www.privacyshield.gov/list
Trisept is responsible for the processing of personal data it receives, under the Privacy Shield Frameworks, and subsequently transfers to a third party acting as an agent on its behalf. Trisept complies with the Privacy Shield Principles for all onward transfers of personal data from the EU and Switzerland, including the onward transfer liability provisions.
With respect to personal data received or transferred pursuant to the Privacy Shield Frameworks, Trisept is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, Trisept may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request
Under certain conditions, more fully described on the Privacy Shield website https://www.privacyshield.gov/article?id=How-to-Submit-a-Complaint, you may be entitled to invoke binding arbitration when other dispute resolution procedures have been exhausted.
Clients using the Trisept Solutions are purchasing the secure services provided by the platforms. Trisept processes and maintains financial information as a validated platform for Payment Card Industry (PCI) compliance. PII/PI, including financial information, is collected directly by the agent or merchandiser using the Trisept tools to process it. Trisept is a processor under the GDPR definitions meaning it processes data collected by the controller (the organization collecting the data such as a Travel Agent or Merchandiser) following specific instructions from the controller. As stated, Trisept is not involved in or responsible for the actual PII/PI collected by its clients.
Trisept may collect information from direct visitors to its sites however does not collect personal information without the visitor’s knowledge.
If someone wishes to sign up for Trisept services, contact us or apply for a job through the website, certain, limited, personal information will be collected. The information that may be collected includes name, email address, address, phone number, and a resume. This information is used to contact you regarding your inquiries and the services you have expressed interests in as well as to determine whether or not you are qualified for the position for which you have applied.
Trisept certifies its compliance to the seven (7) principles of privacy protection as proscribed by its participation in the Privacy Shield. These principles and how they are demonstrated are:
This principle states that any person for whom PII/PI is collected must be able to choose whether to continue receiving information from Trisept once the initial selection has been made. Subscribers to newsletters or mailings regarding travel specials or similar marketing materials may choose to stop receiving these emailed notices at any time by using the “unsubscribe” tab on the website where you subscribed to the marketing list. Alternatively you may send an email to email@example.com with the request to be unsubscribed.
Subscribers to any of Trisept’s clients marketing messages must go to those websites directly and request to unsubscribe or follow the instructions provided on the website in order to choose to change status regarding receiving marketing emails.
On rare occasions, Trisept may need to communicate service related announcements via email, in which case, such communication will be made to the registered email address on the client account.
In some cases Trisept uses third parties to assist in the provision of its services. Third parties may be service providers such as banks that process payments, firms that provide analytics of aggregated information that report on types of services and purchases made to assist in making the platforms more efficient or effective in supplying services and the like. Any third party to Trisept is required by contract or similar written agreement to have in place a firm commitment to the security and privacy of any data it handles under the direction of Trisept. Further it must have, and provide evidence upon request, suitable security solutions in place to ensure the safety and security of any PII/PI it processes or manages on behalf of Trisept. In the event a third party determines it is no longer able to meet the requirements or Trisept determines a third party is not meeting the requirements for protecting the PII/PI per the contract, Trisept will notify its impacted clients of this fact and the steps taken to remediate the situation.
Trisept takes reasonable precautions to ensure the security and safety of data including loss, misuse, unauthorized access, disclosure, alteration and destruction of any PII/PI it collects directly or processes on behalf of a controller or other responsible party. Please note that transmitting any information involves the inherent risk of theft and unauthorized use. No method of transmission over the Internet, or method of electronic storage, is 100% secure, therefore, Trisept cannot guarantee its absolute security. Using the Hosting Platform for the transmission of customer information is encrypted using secure socket layer technology (SSL).
It is critical to note that Trisept is NOT responsible for data collected and onward submitted for processing to Trisept by its clients and their customers that are the actual purchasers of the travel services. Trisept takes reasonable steps to ensure its services are provided with the proper and sufficient protections to meet the Privacy Shield principles for processing PII/PI.
Persons from whom Trisept collects PII/PI have the right to access that information and may submit a request to see or have that data to firstname.lastname@example.org at any time. Upon request, Trisept will provide you with information about whether we hold any of your personal information. A request may be made to review the information in order to make a correction or a change to the information held. Requests will be responded to within 45 days of receipt of the request.
Please note, information will be maintained/retained for as long as an account is active or as needed to provide the services and per the Trisept information retention policy. Data must be maintained and used to comply with legal obligations, resolve disputes and enforce agreements. A request to delete an account and/or any information held is subject to these circumstances.
Trisept partners with a third party to either display advertising on the website or to manage advertising on other sites. The third party partner may use technologies such as cookies to gather information about your activities on this site and other sites in order to provide advertising based upon your browsing activities and interests. If you wish to opt out of interest-based advertising click here [or if located in the European Union click here]. Please note this does not opt you out of being served ads. You will continue to receive generic ads.
As is true of most web sites, Trisept gathers certain information automatically and stores it in log files. This information may include internet protocol (IP) addresses, browser type, internet service provider (ISP), referring/exit pages, operating system, date/time stamp, and/or clickstream data. This automatically collected data is not linked to other information we collect about you.
Trisept acknowledges that persons have the right to access their personal information. For the most part, Trisept has no direct relationship with the individuals whose personal data processed (the only persons for whom we have access are our employees and the PII/PI of travel agents or authorized representatives of our clients). An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data should direct his/her query to the specific client (the data controller) that collected it. If the client requests us to remove the data, we will respond to that request within legal timeframes.