Privacy Policy

Last updated: 8 June 2026

This Privacy Policy explains how Adrinom processes your personal data when you use adrinom.com, in line with the EU General Data Protection Regulation (GDPR) and the Austrian Data Protection Act (DSG).

1. Controller

The controller responsible for data processing on this site is:
Max Mustermann e.U., Teststraße 1, 1010 Wien, hello@adrinom.com. See our Impressum for full details.

2. What data we process

• Account data — when you sign up, our authentication provider (Clerk) processes your name, email address, and profile image.
• Saved trips & searches — the trips you save and trip parameters you enter, stored against your account.
• Booking-link clicks — when you click a “Book” link we log the provider, route, and price for affiliate attribution.
• Technical data — server and hosting logs (e.g. IP address, browser type) processed to deliver and secure the service.

3. Purposes & legal bases

• Providing your account and saving trips — performance of a contract (Art. 6(1)(b) GDPR).
• Security, fraud prevention, and affiliate attribution — legitimate interests (Art. 6(1)(f) GDPR).
• Any future analytics or marketing cookies — your consent (Art. 6(1)(a) GDPR), which you can withdraw at any time. See our Cookie Policy.

4. Processors & third parties

We use the following providers to operate the service:

• Clerk — authentication & account management
• Supabase — database hosting (saved trips, account records)
• Vercel — website hosting
• Upstash — caching & rate limiting
• SerpApi — flight search data (your search parameters are sent to retrieve fares)
• Cloudflare — DNS
• Booking partners (Skyscanner, Kayak, Kiwi) — only when you click a “Book” link

Some of these providers may process data outside the EU/EEA (e.g. in the USA). Where that happens, transfers are safeguarded by appropriate measures such as the EU Standard Contractual Clauses.

5. Retention

We keep account and saved-trip data for as long as your account exists. When you delete a saved trip or your account, the associated data is deleted. Log data is kept only as long as needed for security and operation.

6. Your rights

Under the GDPR you have the right to:

• access your data, and request a copy (portability);
• rectify inaccurate data;
• erase your data (“right to be forgotten”);
• restrict or object to processing;
• withdraw consent at any time;
• lodge a complaint with a supervisory authority — in Austria, the Datenschutzbehörde (dsb.gv.at).

To exercise any of these rights, contact us at hello@adrinom.com.

7. Cookies

Details of the cookies we use are in our Cookie Policy.

8. Changes

We may update this policy as the service evolves. The “last updated” date above reflects the latest revision.

This page is a general-information template, not legal advice. Please have it reviewed for your jurisdiction before launch.