Compliance at Acai Travel

Acai Travel’s commitment to data privacy and security is embedded in every part of our business. This page outlines the high-level details for several of the frameworks, regulations, and certifications that apply to our company and its products.

‍

GDPR and CCPA

The European Union’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA) each creates a standard privacy framework to which all compliant businesses must adhere, creating clarity and transparency for individuals.

In compliance with GDPR and CCPA, Acai Travel offers a Data Processing Addendum (DPA) for our business customers who are the data controllers that, among other things, specifies our obligations and restrictions around our processing activities and provides the legal basis for our processing under the GDPR and CCPA and also for cross-border data transfers from the EU.

More information on GDPR and CCPA is available here

‍

SOC II

Acai Travel aims to be compliant with AICPA’s SOC for Service Organizations Trust Services Criteria, commonly known as SOC 2.

‍