Privacy Policy
This Privacy Policy describes how BrikTok Inc., operating the SPLIYT platform ("SPLIYT," "we," "us," or "our"), collects, uses, discloses, and protects your personal information when you use our website at spliyt.com and our web and mobile applications (collectively, the "Platform"). By using the Platform, you agree to this Privacy Policy.
1.1 Information You Provide Directly
When you create an account, use the Platform, or contact us, we may collect:
-
Identity information: Full name, date of birth, government-issued ID (for KYC/compliance verification), profile photo
-
Contact information: Email address, phone number, mailing address
-
Financial information: Bank account details (ACH), payment card information (processed by our payment processor and not stored on our servers), billing address
-
Asset information: Documents related to assets you manage through the Platform, including titles, registration documents, insurance certificates, and maintenance records
-
Co-ownership information: Co-ownership agreements, ownership share percentages, and transaction histories
-
Communications: Messages you send through the Platform, support requests, and feedback
1.2 Information Collected Automatically
When you use the Platform, we automatically collect:
-
Usage data: Pages viewed, features used, access schedules created, and interactions with the Platform
-
Device information: Device type, operating system, browser type and version, IP address, unique device identifiers
-
Location data: General geographic location derived from IP address (we do not collect precise GPS location without your explicit consent)
-
Log data: Server logs including timestamps, error reports, and performance data
-
Cookies and similar technologies: See Section 7 (Cookies) below
1.3 Information from Third Parties
We may receive information about you from:
-
Identity verification providers: For KYC/compliance checks required for co-ownership transactions
-
Payment processors: Transaction confirmation and fraud prevention signals
-
Integrated third-party services: If you connect third-party accounts (e.g., calendar apps, aviation management software) to the Platform
-
Other co-owners: Information provided by other members of your co-ownership group when setting up shared assets
We use your personal information to:
-
Create, manage your account, and verify identity
-
Provide, operate, and improve the Platform features
-
Process payments, billing, and fraud prevention
-
Generate and secure co-ownership legal documents
-
Facilitate communication, voting, and schedules
-
Send crucial transactional alerts & reminders
-
Deliver product updates (opt-out available)
-
Enforce terms and comply with legal requirements
Our AI Pledge: We will not sell your personal information to third parties. We do not use your personal data to train AI models without your explicit consent.
3.1 With Your Co-Owners
Certain information is shared with other members of your co-ownership group as necessary to operate the Platform — including your name, ownership share, access bookings, cost contributions, and governance votes. You can review exactly what is visible to co-owners in your account privacy settings.
3.2 With Service Providers
We share information with trusted third-party vendors who process it on our behalf, including: payment processors (e.g., Stripe), cloud infrastructure providers (e.g., AWS), identity verification services, email delivery providers, customer support tools, and analytics platforms. These vendors are contractually bound to process your data only as instructed by us and in accordance with applicable privacy laws.
3.3 With On-Demand Service Vendors
If you request on-demand asset services through the Platform (e.g., pre-flight detailing, provisioning), your name, contact details, and service requirements will be shared with the assigned vendor to fulfill your request.
3.4 For Legal Compliance
We may disclose your information to law enforcement, regulators, or other third parties when required by applicable law, court order, or legal process; to protect the rights, property, or safety of SPLIYT, our users, or the public; or in connection with investigations of suspected fraud or illegal activity.
3.5 Business Transfers
In the event of a merger, acquisition, financing, or sale of all or a portion of our assets, your information may be transferred as part of the transaction. We will notify you via email and/or a prominent notice on the Platform of any change in ownership and your choices regarding your information.
We retain your personal information for as long as your account is active or as needed to provide the Platform's services. Upon account termination, we retain your data for 90 days to allow data export, after which we delete or anonymize it — except where we are required to retain it for legal, regulatory, tax, or compliance purposes (which may extend up to 7 years for financial records). Co-ownership agreements and asset transaction records may be retained longer to comply with applicable law.
We implement industry-standard security measures to protect your information, including:
✓
AES-256 Encryption
All data is fully encrypted at rest using enterprise protocols.
✓
TLS 1.2+ In Transit
Robust encryption protecting data during transit over network pathways.
✓
Multi-Factor Auth (MFA)
Required credentials setup for administrative and key asset changes.
✓
SOC 2 Type II
Formal system audits and active compliance certification process in progress.
Despite these measures, no transmission over the internet or electronic storage system is 100% secure. We cannot guarantee absolute security of your information.
Depending on your location, you may have the following rights regarding your personal information:
Data Access
Data Correction
Data Deletion
Data Portability
Limit Processing
Withdraw Consent
To exercise any of these rights, please contact us at privacy@spliyt.com. We will respond to verifiable requests within 30 days. We may need to verify your identity before processing your request.
We use cookies and similar tracking technologies to operate and improve the Platform:
-
Essential cookies: Required for the Platform to function (authentication, session management). Cannot be disabled.
-
Analytics cookies: Help us understand how users interact with the Platform (e.g., Google Analytics). You can opt out via your browser settings or our cookie preference center.
-
Preference cookies: Remember your settings and preferences across sessions.
-
Marketing cookies: Used to deliver relevant advertising on third-party platforms. You can opt out via the AdChoices program or our cookie preference center.
The Platform is not directed to individuals under the age of 18. We do not knowingly collect personal information from anyone under 18. If we become aware that we have collected personal information from a child under 18, we will delete it promptly. If you believe we have inadvertently collected information from a minor, please contact us at privacy@spliyt.com.
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), including the right to know, delete, correct, and opt out of the sale or sharing of your personal information. We do not sell personal information. To submit a verifiable consumer request or to designate an authorized agent, contact us at privacy@spliyt.com or call our toll-free number available on our Contact page. We will not discriminate against you for exercising your CCPA rights.
SPLIYT is operated in the United States. If you access the Platform from outside the United States, your information will be transferred to, stored, and processed in the United States. By using the Platform, you consent to the transfer of your information to the United States, which may have different data protection laws than your country of residence.
The Platform may contain links to third-party websites or services. We are not responsible for the privacy practices of those third parties. We encourage you to review the privacy policies of any third-party sites you visit.
We may update this Privacy Policy from time to time. We will notify you of material changes via email or a prominent notice on the Platform at least 14 days before the changes take effect. The "Last updated" date at the top of this page reflects the most recent revision. Your continued use of the Platform after the effective date constitutes acceptance of the updated Privacy Policy.