Privacy Policy

Privacy Policy for Pacific Flight Academy LLC

Effective Date: October 6, 2025 Last Updated: October 6, 2025

At Pacific Flight Academy LLC ("PFA," "we," "us," or "our"), we are committed to protecting your privacy and handling your personal information responsibly. This Privacy Policy explains how we collect, use, disclose, and safeguard personal data when you visit our website, use our services (including flight training bookings, discovery flights, and FAA testing), or interact with us as a student, visitor, or customer. This policy applies to data collected through our website, forms, emails, and related platforms.

We comply with applicable U.S. data protection laws, including the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA), and where relevant, international standards like the General Data Protection Regulation (GDPR) for EU/UK residents or others whose data we process. If you are a California resident, you have specific rights under CCPA/CPRA, detailed below.

By using our website or services, you consent to the practices described herein. If you do not agree, please do not provide your data or use our site.

Information We Collect

We collect personal information only when necessary to provide services, such as flight training enrollment, bookings, or FAA testing. Types include:

  • Contact Data: Name, email, phone number, address (e.g., from contact forms or bookings).

  • Identification Data: Government ID (e.g., passport, driver's license) for TSA compliance in flight training, especially for non-U.S. citizens.

  • Payment Data: Billing details for deposits, tuition, or services (processed securely via third-party providers like Stripe or PayPal).

  • Usage Data: IP address, browser type, pages visited, and device info (via cookies or analytics tools like Google Analytics).

  • Sensitive Data: For aviation training, we may collect health/medical info for FAA medical certifications or training suitability, handled with extra care.

We collect this via forms, emails, phone calls, or automatically through cookies/tracking technologies. We inform you at collection why data is needed and obtain consent where required (e.g., for marketing).

How We Use Your Information

We use personal data to:

  • Provide services: Process bookings, manage training (e.g., scheduling discovery flights), and administer FAA PSI testing.

  • Communicate: Send confirmations, updates, or safety info; respond to inquiries.

  • Improve operations: Analyze usage for site enhancements or training programs.

  • Legal compliance: Verify identity for TSA/FAA requirements, prevent fraud, or respond to subpoenas.

  • Marketing: With consent, send newsletters or promotions (opt-out anytime).

Data is processed on servers in the U.S.; international transfers (e.g., EU data) use safeguards like Standard Contractual Clauses for GDPR compliance.

Cookies and Tracking Technologies

Our site uses cookies for functionality (e.g., session management), analytics (e.g., Google Analytics), and preferences. Third-party tools may track behavior. You can manage cookies via browser settings; disabling may limit site features. We do not sell data via cookies but may share anonymized analytics.

Data Sharing and Disclosure

We do not sell or share personal data for marketing without consent. Disclosure occurs only:

  • To service providers (e.g., payment processors, FAA/PSI for testing, hosting like AWS) under strict contracts.

  • For business transfers (e.g., mergers).

  • As required by law (e.g., FAA/TSA regulations, subpoenas).

  • With affiliates (e.g., Horizon Air for PDP) for training purposes.

Under CCPA, "sharing" for cross-context behavioral advertising requires opt-out notices.

Data Retention and Security

We retain data only as long as needed for services, legal obligations, or disputes (e.g., training records for FAA audits: 5+ years). Upon request or purpose end, we securely delete or anonymize it.

Security measures include encryption (e.g., HTTPS, SSL for forms), access controls, firewalls, and regular audits. While no system is breach-proof, we use commercially reasonable efforts to protect data. Report suspected breaches to us immediately.

Your Rights and Choices

  • Access/Correction: Request details or corrections of your data.

  • Deletion: Ask to delete data (subject to legal retention).

  • Opt-Out: From marketing emails (unsubscribe links); CCPA opt-out of sales/sharing via "Do Not Sell My Personal Information" link (if applicable).

  • GDPR Rights: For EU/UK users, rights to object, restrict processing, data portability; contact us for DPO.

California residents: Exercise CCPA rights via fly@pacificflightacademy.com; verify identity required. No discrimination for exercising rights.

To exercise rights or withdraw consent: Email fly@pacificflightacademy.com. We respond within 45 days (extendable).

Children's Privacy

Our services are not for children under 13 (or 16 for GDPR sensitive data). We do not knowingly collect minors' data; parents/guardians can request deletion.

Third-Party Links and Services

Links to external sites (e.g., FAA, PSI, YouTube) are not controlled by us; review their policies. Third-party services (e.g., Google Analytics) have their own privacy terms.

Changes to This Policy

We may update this policy; changes post on our site with effective date. Continued use constitutes acceptance. Major changes notify via email or site notice.

Contact Us

For questions, rights requests, or complaints: Privacy Officer Pacific Flight Academy LLC 14 Lagoon Dr., Honolulu, HI 96819 Email: fly@pacificflightacademy.com Phone: (808) 398-4013

EU/UK residents: Refer to supervisory authority (e.g., ICO). CCPA: California Privacy Protection Agency.

This policy complies with current laws as of October 6, 2025