Privacy Policy

Last Updated: December 29, 2025

1. Introduction

At LuggaGenius™, a trademark of Nestetics, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services. Please read this policy carefully.

2. Information We Collect

2.1 Personal Information

We may collect personal information that you voluntarily provide to us, including:

  • Contact Information: Name and email address (when you contact us or subscribe to updates)
  • Admin Login Data: Email addresses for authorized administrative access

2.2 Automatically Collected Information

When you access our website, we automatically collect certain technical information:

  • Device Information: IP address, browser type and version, operating system, device type (mobile, tablet, desktop)
  • Connection Data: Internet service provider, referring/exit pages, date/time stamps
  • User Agent: Browser and device identifiers

2.3 Behavioral & Analytics Data (via PostHog)

We use PostHog, a third-party analytics platform, to understand how users interact with our service. This includes:

  • Navigation Data: Pages visited, time spent on pages, click patterns, scroll depth
  • User Actions: Searches performed, airlines selected, filters applied, buttons clicked
  • Session Information: Session duration, frequency of visits, user flows through the site
  • Feature Usage: Which features are most/least used, conversion funnels
  • Performance Data: Page load times, error messages

PostHog data is pseudonymized and does not directly identify you unless you choose to identify yourself.

2.4 Security & Audit Logs

For security and operational purposes, we maintain detailed audit logs of administrative access, including:

  • Admin Activity: Login/logout events, dashboard views, filter changes, data exports
  • Access Details: IP addresses, session IDs, timestamps, user agents
  • Security Events: Failed login attempts, rate limit triggers, suspicious activity

2.5 Cookies & Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience and collect information. Our cookies fall into these categories:

🍪 Essential Cookies (Always Active)

Required for website functionality, security, and session management. Cannot be disabled.

📊 Analytics Cookies (Optional)

Help us understand how visitors use our site through PostHog analytics. You can opt out via our Cookie Preferences.

🎯 Marketing Cookies (Optional)

Used to deliver relevant content and track campaign effectiveness. You can opt out via our Cookie Preferences.

You can manage your cookie preferences at any time using our tool.

3. How We Use Your Information

We use the collected information for the following purposes:

  • Service Provision: To provide, maintain, and improve our baggage allowance information service
  • Personalization: To tailor content and user experience based on preferences and usage patterns
  • Analytics & Research: To understand usage trends, optimize features, and make data-driven decisions
  • Security: To prevent fraud, unauthorized access, brute force attacks, and other security threats
  • Operational Auditing: To monitor admin access, maintain accountability, and ensure proper system usage
  • Communication: To respond to inquiries, provide support, and send important service updates
  • Legal Compliance: To comply with applicable laws, regulations, and legal processes

4. How We Share Your Information

We do not sell your personal information. We may share information in the following circumstances:

  • Service Providers: With Base44 (our platform provider) and PostHog (analytics) who process data on our behalf
  • Legal Requirements: When required by law, subpoena, or legal process
  • Business Transfers: In connection with a merger, acquisition, or sale of assets
  • Protection: To protect our rights, property, safety, or that of our users

5. Your Data Protection Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your personal data
  • Objection: Object to processing of your data for certain purposes
  • Portability: Request transfer of your data to another service
  • Withdraw Consent: Withdraw consent for cookies and tracking via our Cookie Preferences tool

To exercise these rights, please contact us.

6. Data Security

We implement appropriate technical and organizational measures to protect your information, including:

  • Encryption of data in transit and at rest
  • Regular security audits and vulnerability assessments
  • Access controls and authentication mechanisms
  • Rate limiting and brute force protection
  • Comprehensive audit logging

However, no method of transmission over the internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

7. Data Retention

We retain your information only as long as necessary for the purposes outlined in this policy, or as required by law. Analytics data is typically retained for up to 90 days. Audit logs may be retained longer for security and compliance purposes.

8. Children's Privacy

Our service is not directed to children under 13. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last Updated" date. We encourage you to review this policy periodically.

10. Contact Us

For questions about this Privacy Policy or our data practices, please visit our Contact page.