Privacy Notice

Privacy Notice

Vista America is committed to respecting your privacy and protecting your personal data.

Vista America is a brand which is comprised of Part 135 direct air carriers, such as Western Air Charter Inc, Red Wing Airplane LLC, Jet Select LLC, XOJET Aviation LLC. In this Privacy Notice (this “Notice”), “Vista America”, “we”, “us” or “our” means the Vista America brand and its air carriers; “you” or “your” means you, the person who provides us with personal data; and “personal data” shall have the meaning assigned to it as expressed in the GDPR (EU 2016/679), the UK GDPR and the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA).

All personal data are obtained, held, and processed by Vista America, in compliance with, this Notice, any and all data protection-related laws and regulations that may be applicable to Vista America (including without limitation, Regulation (EU) 2016/679 of the European Parliament and of the Council (“GDPR”), the UK GDPR and the UK Data Protection Act of 2018, the California Consumer Privacy Act, and any data protection related terms in any agreement or contract that may be in force between you and Vista America.

When we ask you to provide certain personal data, you can be assured that it will only be used in accordance with this Notice. This Notice applies to personal data about you that we collect, use and otherwise process in connection with your relationship with us as a client or potential client, including when you use our services, use our websites or mobile apps, service agents or call centers and book to use our services through third parties (such as agents and brokers).

This Notice applies to you whether you use our services or products on a casual basis, or have registered to use any of our services or products, or have entered into a contract with us in relation to the supply by us to you of services and/or products, or have entered into any other transaction with us, whether financing, M&A, corporate or commercial in nature. Any products and/or services acquired by you from us will be subject to their own terms and conditions which you must also read and accept or as otherwise as agreed between us. In the event of any conflict between this Notice on the one hand, and the terms and conditions of any such products or services or the terms and conditions of any contract or transaction agreed between us on the other hand, then the terms and conditions of those products or services or the terms and conditions of that contract or transaction shall prevail.

This Notice is effective as of the “Last Updated and Effective Date” which appears at the bottom of this Notice. We reserve the right, at our sole and absolute discretion, to change or modify this Notice at any time. Any such changes or modifications will become effective when posted on this page. Please check this page periodically to ensure that you are happy with any such changes or modifications. It is in your own interest to access this page regularly to view the latest version of this Notice. If we make a substantial change or modification to this Notice, we may, where appropriate and where possible in our sole discretion, alert you with a notice on our website or with any other means of notification we deem fit. Your continued access to or use of any of our services or products or your continuing dealings with us or your purchase of any of our products or services or your continued provision of personal data to us following any change or modification to this Notice shall be deemed your acceptance to be bound by any such changes or modifications.

Your access to or use of any our services or products, your dealings with us, and your purchase of any of our products or services through Vista America is entirely voluntary. Please read this Notice carefully, as your access to or use of any our services or products, your dealings with us, and your purchase of any of our products or services constitutes your acceptance of all of the terms and practices described in this Notice, including without limitation, the collection, use, processing, and disclosure of your personal data as described in this Notice. Please do not access or use any of our services or products, or deal with us, or purchase any of our services or products if you disagree with any part of this Notice. Failure to provide the personal data requested may prevent us from providing you with the Services you have requested from us. If you have any questions or concerns about this Notice or its implementation, you are invited to contact us at privacy@vistaglobal.com or alternatively at XOJET Aviation, 100 Southeast Third Avenue, Suite 2500, Fort Lauderdale, Florida 33394.

WHAT TYPES OF PERSONAL DATA DO WE COLLECT?

We may from time to time, collect personal data about you either directly or through any one of our subsidiaries or affiliates under common control. These subsidiaries and affiliates may have their own privacy policies, and any data that we receive will be in adherence and in accordance with their policies and this Notice. As a holding company, we may collect your personal data in a number of ways, for example:

  • From the information that you provide to us;
  • From information about you provided to us by your company or an intermediary, including financial institutions;
  • When you communicate with us by telephone, fax, email or other forms of electronic communication;
  • From information gathered by any one of our subsidiaries or affiliates;
  • From information provided to us by one of our advisors;
  • From information provided to us by one of your advisors;
  • Publicly available sources;
  • Information about your use of our websites, call centres and mobile applications, including information about which pages you view;
  • Information about interactions you have with us and our staff;
  • Your financial and credit card information (including such information as received from third-party banks and other credit institutions and credit rating institutions) which are necessary for us to provide you with the requested product or service; and,
  • Other information that may be required by us, to carry out obligations arising from any contracts entered between you and us, and/or to carry out client surveys and/or offers.

These personal data may include information that you provide to us directly or through companies or agents we work with, as well as information which we collect when we enter into any kind of transaction with you.

To provide our services, and for the purpose of preventing illegitimate use of Our services, we may carry out profiling of our customers and their activities using automated processes. If this occurs, We will always ensure that final decisions based on these profiles and information are taken by natural persons.

WHEN, AND WHY, DO WE COLLECT ‘SENSITIVE PERSONAL DATA’?

Certain categories of personal data, such as that about race, ethnicity, religion or health, are considered “sensitive personal data” in terms of applicable law. Sensitive personal data will only be processed where when and as needed to undertake a transaction with you or as may be required by applicable law.

By providing any personal data that is, or could be considered to be “sensitive personal data”, you explicitly agree that we may collect, use, share with third parties and transfer such data, within and outside of the European Economic Area, the United Kingdom, and California in accordance with this Notice.

WHAT DO WE USE YOUR PERSONAL DATA FOR?

We store, handle, send and generally process personal data to provide you with the best service or to fulfil any commitment to you, and in particular for the following reasons:

  • Performance of a contract with you;
  • Administration and management of our business;
  • Third parties whom we engage to assist in delivering services or engaging in business transactions with you;
  • Dealing with professional advisors where it is necessary for us to obtain their advice or assistance, including lawyers, accountants, IT or public relations/marketing advisors;
  • To deal with the general enquiries you raise from time to time on our services;
  • For the purposes of accounting and billing;
  • To ensure that you are not the subject or target of any economic or trade sanction law or regulation;
  • To carry out obligations and/or enforce rights arising from any contracts or transactions entered between you and us;
  • For internal record keeping and the general administration of your records by us which may include for example, accounting and billing, auditing, credit or other payment card verification, anti-fraud screening (including the use of credit reference agency searches and payment card validation checks), safety, security, health, and administrative and legal purposes;
  • For security purposes to protect your personal data held and/or processed by us;
  • For training our employees in respect of providing our services and products to you;
  • For statistical analysis;
  • To improve our products and services;
  • For our general marketing purposes where you have notified us that you consent to receive information about us and our services, products and offers;
  • From time to time, we may also use your personal data to contact you for feedback on our services or the services of any of our subsidiaries or affiliates or third-party supplier services so as to assist us in their improvement and development, and to provide services tailored to your requirements and treat you more personally, for example:
    • To deliver messages and information that we think is relevant and may be of interest to you;
    • To our data storage providers.

We shall keep your personal data for the above purposes in accordance with those retention periods set by applicable law and our internal policies.

WHO DO WE SHARE YOUR PERSONAL DATA WITH?

We may disclose your personal data (and any third-party personal data provided by you to us) to:

  • companies which are part of the group of companies which we may be part of from time to time, to our branch offices, and to our affiliates;
  • our authorised representatives; and
  • third parties:
    1. in the event that we sell our entire business or assets (in which event disclosure shall be to a prospective purchaser and their professional advisers only) or in the event of a due diligence exercise carried out on Vista America by a potential investor or partner (in which event disclosure shall be to the potential investor or partner and his professional advisers, shall be limited to the extent required, and shall be subject to confidentiality protections to the extent practicable);
    2. if we are under a duty to disclose such personal data in order to comply with any legal or regulatory obligation or request (whether in the United Kingdom, the United States of America, the EU, or elsewhere);
    3. in order to give effect to and/or enforce the terms and conditions of any contract entered into between you and us;
    4. so as to protect our rights, property and safety and the rights, property and safety of our clients, or others (including by way of exchange of information with third parties for the purposes of fraud protection and credit risk reduction);
    5. to carry out due diligence or other background checks on you (through sanction and enforcement list data) to protect our rights, interests property and safety and the interests, rights, property and safety of our clients, or others;
    6. to facilitate your travel arrangements, including carriers and airport operators, customs and immigration authorities, agents or brokers involved in making your travel arrangements, and global distribution systems service providers; and,
    7. who deliver services either to you or to us.

WHEN DO WE COLLECT PERSONAL DATA ABOUT YOU?

We collect personal data about you when you use our services or products (whether directly provided by us or by another company or agent), when you enter into any contract or transaction with us, and when you use our website, call centres or mobile applications. In addition, we may receive personal data about you from third parties, such as, companies contracted by us to provide services to you.

HOW WE USE COOKIES

Cookies are a small amount of data sent from the server, which is then stored on your computer’s hard disc drive. We may collect information about your computer, including where available your IP address, operating system and browser type, for system administration. This is statistical data about our users’ browsing actions and patterns, and does not identify any individual. For the same reason, we may obtain information about your general internet usage by using a cookie file which is stored on the hard drive of your computer. Cookies help us to improve our services and to deliver a better and more personalised service.

You can delete all cookies that are already on your computer, and you may refuse to accept cookies by activating the setting on your browser which allows you to refuse the setting of cookies. However, if you select this setting, you may be unable to access certain parts of our services. Unless you have adjusted your browser setting so that it will refuse cookies, our system will issue cookies when you log on to our services, unless the cookies to be issued require your informed consent. Please read our Cookie Notice for further information on the type of cookies we collect.

WHEN WILL WE SEND YOU MARKETING COMMUNICATIONS?

You may receive marketing communications from us, of from our subsidiaries or affiliates, or from third parties used by us to send marketing communication on our behalf if you have opted in to receive such material. Our marketing communications will always include the option for you to unsubscribe from receiving any further marketing communications.

If you have previously agreed to us using your information for direct marketing purposes, you may change your mind at any time by writing to us at privacy@vistaglobal.com.

SECURITY, STORAGE, AND TRANSFER

We are committed to ensuring that your personal data are secure at all times. We have in place suitable physical, electronic and managerial procedures to safeguard and secure the personal data we collect online.

All of our employees and suppliers with access to your personal data and/or who are associated with the processing of that data are contractually obliged to respect the confidentiality of your personal data. As an example, if you are a passenger on a flight operated by us you can be assured that none of our crews, will take a photo of you whilst you are on our aircraft and then upload the photo on social media, or disclose to any person the fact that you are flying on our aircraft, or disclose any of your confidential information that they may become privy to during your flight (in each case, unless disclosure is required for any reason set out in this Notice).

Your personal data will be stored on and processed by our systems and may also be stored on and processed by systems of a third-party data processor(s)/service provider(s) appointed by us. The personal data that we collect from you may be transferred to, and stored at, a destination outside the European Economic Area (“EEA”) or the United Kingdom, which destination has not deemed to have an adequate level of privacy legislation. It may also be processed by employees operating outside the EEA who work for us or for one of our suppliers. Such employees may be engaged in, amongst other things, the provision of support services. We will take all steps reasonably necessary to ensure that your personal data are treated securely and in accordance with this Notice, the GDPR, and any data protection related laws that are applicable to Vista America, and we will ensure that adequate measures are in place such as the use of EU Commission’s standard contractual clauses (Commission Decision (EU) 2021/914 of 4 June 2021) in accordance with Art. 46 of the GPDR, or any contractual mechanism issued by the UK ICO, and any additional measures as may be required according to the jurisdiction we are transferring personal data to, or based on your explicit consent. If you wish to receive more information, you can do so by contacting us at privacy@vistaglobal.com.

OUR RETENTION OF YOUR DATA

We will only retain your information for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of providing Services to you, and for satisfying any legal, regulatory, tax, accounting or reporting requirements.

We will retain the information that we collect about you while you are utilizing our services and accessing the application and, unless we are required to keep your information for longer to comply with any legal, regulatory, tax, accounting or reporting requirements, We will delete it in accordance with applicable law and regulations. If you wish to receive more information on how long we keep your data, please contact us at privacy@vistaglobal.com.

In certain circumstances you have the right to ask us to delete your data sooner (see the section “Your Rights” below). Following receipt of such a request, we will delete all the information that we are not required to retain.

If you have any questions or queries about the retention period for certain information, you can simply contact us.

WITHDRAWAL OF CONSENT

If you withdraw your consent to the processing of your personal data at any time, it may mean we will not be able to provide all or parts of the products or services you have requested from us. Please be aware that in these circumstances you will not be able to obtain a refund of any fees or monies you would have paid.

On the other hand, if for example, you withdraw your consent to us sending you marketing communications, then such withdrawal should not have any effects.

TRANSMISSION OF INFORMATION OVER THE INTERNET

Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our Services; any transmission is at your own risk. Once we have received your personal data, we will use strict procedures and security features to try to prevent unauthorised access.

LINKS TO THIRD PARTY WEBSITES

Our websites, online services and mobile applications may, from time to time, contain links to and from websites of our partner networks, advertisers, subsidiaries and affiliates. If you follow a link to any of these websites, please note that these websites and any services that may be accessible through them have their own privacy policies and that we do not accept any responsibility or liability for these policies or for any personal data that may be collected through these websites or services. You are advised to please check these policies before submitting any personal data to these websites or using these services.

TELEPHONE CALLS

We may monitor or record telephone conversations to enhance your security and ours, to enable us to handle complaints efficiently, improve our client service and for staff training purposes. If your telephone conversation with us will be recorded, then you will receive a message to this effect before the start of your conversation with us.

PROVIDING INFORMATION ABOUT SOMEONE ELSE

If you are providing personal data to us about someone else you confirm that they have appointed you to act for them, to consent to the processing of their personal data, and that you have informed them of our identity, of this Notice, and of the purposes (as set out in this Notice) for which their personal data will be processed.

YOUR RIGHTS

Some jurisdictions give you rights with respect to your personal information under certain circumstances. We will make your personal data available to you for review pursuant to a simple request from you. If you tell us that the personal data which we hold about you is incorrect or is used inappropriately, we will correct, update or delete such person data as appropriate. You also have other rights such as the right to request from us erasure of personal data or restriction of processing or to object to processing and the right to data portability. For information about how to get access to your personal data and for exercising your rights, please contact us at privacy@vistaglobal.com.

You may also have the right to lodge a complaint with the California Privacy Protection Agency or with the UK Information Commissioner’s Office or with a supervisory authority established within the EEA. List of contact details of supervisory authorities within the EEA is available here.

If any portion of this Notice is held to be invalid or unenforceable for any reason by a court or governmental authority of competent jurisdiction or by a supervisory authority, then such portion will be deemed to be stricken and the remainder of this Notice shall continue in full force and effect.

FURTHER DETAILS

Further details about your rights under the CCPA can be accessed here; details about your rights under the GDPR and the UK GDPR can be accessed  here and here respectively.

APPLICABLE LAW, JURISDICTION AND SEVERABILITY

Any dispute arising from or related to the acceptance, interpretation or observance of this Notice shall be submitted to the exclusive jurisdiction of the competent Court of Florida.

ADDITIONAL INFORMATION FOR CALIFORNIA RESIDENTS

California law requires us to disclose the following additional information related to our privacy practices. If you are a California consumer, the following privacy disclosures apply to you in addition to the rest of the Privacy Notice.

California Shine the Light. If you are a California resident, you have the right to request certain information regarding our disclosure of your Information to third parties for direct marketing purposes pursuant to Section 1798.83 of California Civil Code. If you would like more information concerning the categories of personal information (if any) we share with third parties or affiliates for those parties to use for direct marketing, please submit a written request to us using the information in the “General information” section above. If you or your authorized agent wish to opt-out of the sale of your personal information, or of targeted advertising, please raise a request using this form.

“Do Not Track” Disclosure. We do not currently recognize the “Do Not Track” signal.

California Notice of Financial Incentive. We may offer programs that provide certain perks, such as discounts and exclusive offers (the “Loyalty Programs”). When you sign up for a Loyalty Program, we will ask you to provide your name, email address, and in some cases your telephone number. Under California law, our Loyalty Programs might be interpreted as “financial incentive” programs as they involve the collection of personal information. We do not assign a monetary value to the information we collect. Based on our reasonable estimate, the value of your personal information to us is related to the value of the free or discounted products or services that you obtain. This value is based on the expense related to offering those free or discounted products or services. You may withdraw from participating in the Loyalty Programs at any time by contacting us at the address described in the program terms and conditions. If you wish to receive more information, please contact us using the details in the section “General Information” above. 

California Information Disclosure. The table below describes the categories of personal information collected, disclosed for a business purpose, “sold” and/or “shared” in the past 12 months (as those terms are defined by California law). We do not knowingly sell the information of minors less than 16 years of age without affirmative authorization. Please note, that in addition to the recipients identified below, we may disclose any of the categories of personal information we collect with government entities, as may be needed to comply with law or prevent illegal activity. For details regarding how we use personal information, please see the “What types of personal data do we collect?” section of this Notice. For information regarding how long we retain personal information, please refer to the “Our Retention of Your Data” section of this Notice.

Category of Personal Information Disclosures for a Business Purpose
Identifiers – this may include real name, alias, postal address, unique personal identifier, online identifier, email address, account name, or other similar identifiers.
  • Affiliates or subsidiaries  
  • Business partners  
  • Data analytics providers  
  • Internet service providers  
  • Joint marketing partners  
  • Operating systems and platforms  
  • Other Service Providers  
  • Payment processors and financial institutions  
  • Professional services organizations, this may include auditors and law firms  
Government Issued Identification – this may include social security number, driver’s license number, or state issued identification number, passport number.
  • Affiliates or subsidiaries  
  • Business partners  
  • Payment processors and financial institutions  
  • Professional services organizations, this may include auditors and law firms
Financial Information – this may include bank account number, credit card number, debit card number, and other financial information.
  • Affiliates or subsidiaries  
  • Business partners  
  • Payment processors and financial institutions  
  • Professional services organizations, this may include auditors and law firms
Health Related Information – this may include medical information, mental or physical condition or treatment, or health insurance information.
  • Affiliates or subsidiaries  
  • Business partners  
  • Other Service Providers  
  • Professional services organizations, this may include auditors and law firms
Characteristics of protected classifications – this may include age, sex, race, ethnicity, physical, or mental handicap, etc.
  • Affiliates or subsidiaries  
  • Business partners  
  • Other Service Providers  
  • Professional services organizations, this may include auditors and law firms
Commercial information – this may include information about products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.
  • Affiliates or subsidiaries  
  • Business partners  
  • Payment processors and financial institutions  
  • Professional services organizations, this may include auditors and law firms
Internet or other electronic network activity information – this may include browsing history, search history, and information regarding an individual’s interaction with an internet website, application, or advertisement.
  • Affiliates or subsidiaries  
  • Business partners  
  • Data analytics providers  
  • Internet service providers  
  • Other Service Providers  
  • Professional services organizations, this may include auditors and law firms  
Geolocation data
  • Affiliates or subsidiaries  
  • Business partners  
  • Internet service providers  
  • Professional services organizations, this may include auditors and law firms  
Inferences drawn from any of the information listed above
  • Affiliates or subsidiaries  
  • Business partners  
  • Data analytics providers  
  • Internet service providers  
  • Joint marketing partners  
  • Other Service Providers  
  • Payment processors and financial institutions  
  • Professional services organizations, this may include auditors and law firms  

California Sensitive Information Disclosure. We collect the following categories of sensitive personal information (as defined under California law): driver’s license, passport information, state identification card, social security number, precise geolocation, account log-in, debit card or credit card number in combination with any required security to access code, password, and health information. This information is collected in order to process transactions, comply with laws, manage our business, or provide you with services.  Note that we do not use such information for any purposes that are not identified within the California Privacy Rights Act Section 1798.121. We do not “sell” or “share” sensitive personal information for purposes of cross-context behavioral advertising.

Version 2.0 Last Updated and Effective Date:  February, 14 2024.

The Vista America brand is comprised of FAA-licensed and DOT registered US direct air carriers XOJET Aviation LLC, Red Wing Aeroplane, LLC, Western Air Charter Inc., and Jet Select, LLC, each with the right to the trade name of, and doing business as, “Vista America”. The Vista America carriers are United States citizens affiliated with Vista Global Holding Limited (“Vista Global”). The Vista America carriers do not own aircraft, but rather manage leased aircraft for third parties, including for Vista Global subsidiaries. Each Vista America carrier exclusively operates the aircraft under that carrier’s operational control.
Privacy notice Your rights Legal
vista america