Privacy Policy

Privacy Policy


Effective Date: Last amended February 3, 2017.

Rail Europe, Inc. (“Rail Europe,” “we,” “us” and “our”) respects your privacy and we want you to understand the ways in which we collect, use and disclose your information.

Please review this Privacy Policy carefully. This Privacy Policy is incorporated into and forms part of our Terms and Conditions, which outline the terms and conditions you agree to when accessing and using RailEurope.ca and/or the m.raileurope.ca Canada mobile site, Facebook: Twitter: Instagram: YouTube: Google+: LinkedIn: Pinterest  or otherwise providing information to Rail Europe employees and its agents (collectively, the “Site”). 

Please return to the Site and review this Privacy Policy from time to time as it may be amended without notice to you. Any changes to this Privacy Policy will be effective immediately upon the posting of the revised Privacy Policy on the Site. If you do not agree to (or cannot comply with) the Privacy Policy, as amended, your only remedy is to stop using the Site. You will be deemed to have accepted the Privacy Policy as amended, if you continue to use the Site after any amendments are posted.

Please note, this Privacy Policy does not apply to information that our affiliates may collect, or for our websites outside of the jurisdiction noted in our Terms and Conditions. Please visit any such other site, as applicable, in order to review those policies and manage your communication preferences.

COLLECTION, USE AND DISCLOSURE OF INFORMATION

“Personal Information”, as used in this Privacy Policy, means information about an identifiable individual, as defined in applicable Canadian privacy laws. Personal Information may include your name, home address, home telephone number, home e-mail address, age, credit card records, preferences and opinions, but does not include the name, title or business address or telephone number of an employee of an organization.

Some of the personal information we collect may be stored or processed on computers located outside your jurisdiction of residence, including in the United States, whose data protection laws may differ from the jurisdiction in which you live. As a result, this information may be subject to access requests from governments, courts, or law enforcement officials and national security authorities in those jurisdictions according to laws in those jurisdictions. Subject to applicable laws in such other jurisdictions, we will ensure that appropriate protections are in place to require the data processor in that country to maintain protections on the personal information that are equivalent to those that apply in the country in which you live.

Information Collection

Whether you make a purchase, register for an account, or are just a visitor, we are very careful with what we do with your information. Collection of information is usually grouped into two categories:

  • Personal Information: means information about an identifiable individual, as defined in applicable privacy laws.  Personal Information may include your name, home address, home telephone number, home e-mail address, age, credit card records, preferences and opinions, but does not include the name, title or business address or telephone number of an employee of an organization.
  • Non-Personably Identifiable Information: means general demographic information (gender, age, postal code), as well as Site-wide usage information (route and destination popularity, pages visited, promotion participation levels) that does not identify any one individual.

We collect non-personally identifiable information when it is affirmatively provided or through online activity such as “cookies” and other tracking technologies, which are discussed in greater detail below. We may use non-personally identifiable information for any purpose or disclose it to anyone. Where the two categories of information are combined, the resulting information is treated as personal information in accordance with the terms of this Privacy Policy.

In many cases, you can view the Site without telling us who you are or revealing any personal information. However, if you wish to purchase a rail pass or other ticket, you will be required to provide the following personal information: your full name, a valid Canadian shipping address, your email address, as well as the names of anyone traveling with you, as applicable. In addition, if you select an age-specific ticket or pass, such as “youth” or “senior,” you must also provide your age group and that of anyone traveling with you, as applicable. Further, you must also provide us with your valid payment information, including credit card numbers and expirations dates (all such foregoing information, collectively hereinafter referred to as “Data”).

Since Rail Europe is only the distributor of products and services provided by third parties (“Suppliers”), we also are collecting your Data on behalf of those Suppliers. For example, these Suppliers will need each traveler’s name and age group for identification purposes and to verify that each pass or other ticket is being used in accordance with that Supplier’s terms and conditions. Our collection of and disclosure to our Suppliers of your Data is a required part of your transaction, and you agree by engaging in such transactions on the Site to such collection and disclosure.

If you make purchases with us often, you may want to set up an account with us by registering on the Site. This will make it easier for you to complete your purchases quickly. As a registered Site user, you also may elect to receive newsletters and similar emails from us with travel news and information. Registered users of the Site should be mindful of password-entry requirements and not disclose account numbers or passwords to others. Please read the Terms and Conditions for further information about your rights and responsibilities in maintaining an account with us.

Apart from purchases and registration, we also will collect personally identifiable information when you choose to participate in sweepstakes or other promotions, fill out surveys, complete polls, or send questions or comments to us via email or text message. Please read below for more information on how we use information collected through these means.

We do not knowingly collect personal information from children under the age of 13, and require that those making purchases on the Site be over the age of legal majority in the jurisdiction in which they reside. Should a child whom we know to be under the age of 13 send personal information to us, we will use that information only to respond directly to that child to inform him or her that we must have the consent of his/her parent/legal guardian before receiving his/her personal information. If a child has already provided us with personal information, then his/her parent/legal guardian may contact us for the purpose of deleting this information. Each travel product or service may be subject to age restrictions, and we reserve the right to impose further restrictions on those or similar purchases. 

Data Use for Transactional and Promotional Purposes by Rail Europe

We and our service providers who assist us in connection with Site operations may retain and use Data and other personally identifiable information, as well as non-personally identifiable information, in providing the Site to you, which uses may include, without limitation, the following:

  • to facilitate your purchases of rail, car and travel passes and other ticketed travel products and services that we distribute;
  • to complete your travel-product purchase transactions by disclosing your Data to our Suppliers
  • to administer such purchases and provide reminders and follow-up information regarding your purchases and travel plans;
  • to send you emails and newsletters, at a registered Site user’s election, about Rail Europe and the many exciting destinations to which we offer travel;
  • to allow participation in our various promotional programs, including sweepstakes and contests, that we may offer from time to time;
  • to inform you of other types of services, at a registered Site user’s election, that we or our Suppliers offer;
  • to respond to your inquiries or requests, including your customer service needs;
  • to improve our Site, including after research and analysis, for future marketing and/or promotional use about us or the products, services and features we may offer;
  • to provide you with unsolicited travel-related tips and information that we think may interest you;
  • to survey you about various topics, including your views on travel, destination preferences, recent customer experiences provided by us or our third party Suppliers and what further travel information we might provide; and,
  • for any other purpose disclosed to you at the time you are asked to submit your personally identifiable information.

Information Uses Involving Third Parties

As noted above, Rail Europe is a distributor of our Suppliers’ products and services, and, as a required part of travel, these Suppliers must have access to the names and age groups of each traveler for whom a pass or other ticket is purchased for that Supplier’s product or service. We do not provide this information to our Suppliers for their direct marketing purposes, and to the best of our knowledge and belief, our Suppliers do not use the personal information we provide to them for reasons other than completing your travel-related transaction.

If you enter our Site from the site of one of our marketing or referral partners, our system may recognize the path you have taken. Once you have left a partner’s site and/or begin the purchase transaction on our Site, those partners do not have access to the personal information you provide. Such information is treated as Data in accordance with this Privacy Policy. We also may track the path you have taken, combined with what purchases you may make, to gauge the success of our online marketing and promotional campaigns.

You may have an opportunity to provide information directly to these partners, whether through the Site or on a partner’s website, or to third parties who merely maintain links on the Site. These third parties may maintain separate privacy policies governing the collection, use and disclosure of your personal information, which you should review for more information. Once you leave our Site, use of any information you provide will be governed by the privacy policy of that site’s operator. We, our parent companies, affiliates and subsidiaries are not responsible for the collection, use and disclosure practices with respect to personal and other information of third parties.

As noted, from time to time, we may survey you for your opinion, offer participation in promotions, and conduct reviews to enhance our Site. We also send you newsletters to which you have subscribed. For each of these, we may rely on service providers to help us collect and analyze research, administer the promotions, and provide technical support in sending the newsletters and other similar emails. We do not disclose any Data included in this information for such providers’ direct marketing purposes, nor so they may pass it on to others for the same reasons.

Information Use for Site Operations, Corporate and Legal Compliance

We may use or disclose your personally identifiable information as is permitted by this Privacy Policy, or according to the Terms and Conditions. That includes:

  • performing standard business operations, such transaction, payment processing, billing, collections, and accounting
  • protecting our and our content providers’ business interests, including ensuring Site operation and adherence to the Terms and Conditions and Usage Rules;
  • investigating or helping to prevent unlawful activity or activity that may threaten our visitors, users, employees, or property; and,
  • in cooperating with law-enforcement investigations, or as required by law or by, subpoena, warrant, or other order of the court or governmental agency;

To help us perform these functions, we may retain third parties to whom we disclose personal information. These third parties include our customer-service providers, who handle your inquiries and store your Data; credit-card, debit-card and similar transaction processors; technical-service providers or similar entities that maintain the Site operations; lawyers; accountants; auditors; and authorized government entities or other lawfully authorized parties. We may also disclose your personal and other information to our parent companies, affiliates or subsidiaries; content providers; and to third parties in conjunction with the reorganization or sale of our stock or assets, or if we are involved in bankruptcy proceedings. We will do so only after taking steps to ensure that your privacy rights continue to be protected. Any third party to which we transfer or sell our assets will have the right to continue to use the personal and other information that you provide to us in accordance with this Privacy Policy.

Access to Your Personal Information

If you have registered on our Site, you may view and update your account information at any time, as well as manage your account and communication preferences. Please visit “My Account” or click here. If you have not registered with the Site, and/or need to update your Data for a pending trip, please contact us using the Contact Us page. If you have completed travel, and are not a registered user, you most likely need not update your Data unless and until you enter into a new purchase transaction with us. For questions about this or other questions about your information, please email myaccount@raileurope.com.

Online Technology and Security

Cookie Use and Tracking Technologies

A browser cookie is a small text file that is sent to an end-user’s browser and is used to remember you when you return to the Site or browse through our Site.  When you browse our Site, you will also be sent “3rd party cookies” which are cookies used by entities that provide us with analytics, advertising or other functions.  These 3rd party cookies may be re-transmitted to 3rd parties as you browse the Internet.  They do not transmit personal information other than as described below from your browsing session on our website, but may be used to target advertising directed at you as you browse other parts of the web.  Most browsers allow you to control cookies, including whether or not to accept them and how to remove them. You can set most browsers to notify you if you receive a cookie, or you may choose to block cookies with your browser. However, please be aware that some features of our Site may not function properly if you refuse cookies. 

Our cookies are typically session-oriented, or we use them to store info you’ve placed in a shopping cart when you visit our Site during a select period of time. We may use cookies to see what pages have been accessed and how frequently. Our tracking technologies may record information such as Internet domain and host names,Internet protocol (IP) addresses, click stream patterns, and dates and times that our Site is accessed.

We currently do use one cookie on the content pages of our Site that collects customer information, namely a customer’s email address and name, so that we can display this information when a customer signs in to our Site.  This information will be protected in accordance with our Privacy Policy.

Rail Europe uses various ad networks to show online advertising on third party websites to users that have visited our Site. When you visit the Site, these ad networks such as Google will set a cookie identifying your browser software as having visited our Site. When you visit another website that is also part of an ad network to whom Rail Europe subscribes to, you may see advertising targeted to your browser, based on actions you have taken while visiting the Site.

Information on your activity on the Rail Europe website used by third parties to show personalized ads is stored on a cookie on your computer.  This cookie doesn’t contain any personal information such as your name or email address and use randomly generated alphanumerical identifiers to identify you. Rail Europe doesn’t have access to those cookies and cannot use the information it contains.

If you do not wish to see those customized ads served by Google, you can update your preferences by visiting https://www.google.com/ads/preferences/

If you do not wish to view any type of personalized ads from any ad network participating in the Network Advertising Initiative, you may opt out at http://www.networkadvertising.org/managing/opt_out.asp

Rail Europe also uses a technology known as Dynamic Ad Serving which enables us to customize the content of certain online ads based on the activity you have taken on our Site. This technology uses the Teracent Cookie. If you do not wish to see such ads, you can opt out by visiting http://www.teracent.com/about-us/opt-out

Rail Europe also uses DoubleClick technology, owned by Google Inc., allowing us to serve ads on other sites to users that have previously visited our website. If you do not wish to see those ads, please visit DoubleClick’s opt-out page or the Network Advertising Initiative opt-out page.

Rail Europe may also use other third parties and technologies, other than those listed on this website, for advertising, analytics, and to deliver content.  Some of these technologies may use local shared objects or “flash cookies,” or other technologies that cannot be managed by changing browser settings.  .

We may occasionally assist you with technical issues in connection with your access and/or use of the Site via third party provider screen sharing technology solutions.  The use of such technologies will allow us to remotely view and access your computer screen, in all cases with your prior approval so we may assist you in resolving such issues.   Any such remote access will be discontinued immediately upon the resolution of any such issue.  We disclaim any liability in connection with any problems that may result from such assistance and the use of any such technology solutions.


Sometimes we or our advertising, analytics or content partners use web beacons and other similar devices on this website to enhance functionality and navigation for our visitors. Information tracked through these mechanisms includes, but is not limited to: (i) your IP address; (ii) the type of web browser and operating system being used; (iii) the pages of the website a user visits; and (iv) other websites a user visited before visiting this website.  Internet tags, graphic tags and similar web beacon type functions allow us to count the number of users who have visited a particular web page or to access certain cookies. We may use web beacons on this website to count users and to recognize users by accessing our cookies. Being able to access our cookies allows us to personalize this website and improve your experience at this website. We may also include web beacons in HTML-formatted e-mail messages that we send to determine which e-mail messages were opened. Like cookies, web beacons do not collect or contain your personal information.

Security for Personal Information

Wherever your Data may be held by us or on our behalf, we intend to take reasonable and appropriate steps to protect it from unauthorized access or disclosure. Your Data is encrypted as it is transmitted over the Internet from your desktop computer or portable device to our servers. If you have registered with us, your personal information is stored behind a “firewall” (a combination of computer hardware and software that helps keep unauthorized visitors from accessing information within our computer network), and your financial information, such as your credit card number, is encrypted as well. Unfortunately, no database or data transmission over the Internet can be guaranteed to be 100% secure. As a result, while we strive to protect your personal information and privacy, we cannot guarantee or warrant the security of any information you disclose or transmit to us online and cannot be responsible for the theft, destruction or inadvertent disclosure of your personal information.  Consequently, Rail Europe, its affiliates and any directors, officers, employees, agents, contractors, subcontractors or agents of the foregoing do not represent, warrant or guarantee that your personal information will be protected against misuse, loss or modification, nor do such parties accept liability for the security of a user’s personal information submitted on or in connection with the Site.

Some of the personal information we collect may be stored or processed on computers located outside your jurisdiction of residence, including in the United States, whose data protection laws may differ from the jurisdiction in which you live. As a result, this information may be subject to access requests from governments, courts, or law enforcement officials and national security authorities in those jurisdictions according to laws in those jurisdictions.  Subject to applicable laws in such other jurisdictions, we will ensure that appropriate protections are in place to require the data processor in that country to maintain protections on the personal information that are equivalent to those that apply in the country in which you live.

When you register for a Site account, you agree that you will not allow others to use your account or Data, and, except as expressly stated in this Privacy Policy, you are solely and entirely responsible for maintaining the confidentiality and security of both. Furthermore, you are solely and entirely responsible for any and all activities that occur under your account and you agree to immediately notify us of any unauthorized use of your account or any other breach of security. Please refer to the Terms and Conditions for more information on your responsibilities in maintaining and protecting your Data.

Retention

Rail Europe has established a retention policy for all personal information collected. We and our Service Providers and our Suppliers will only keep your personal information on our records so long as it is needed for its identified purposes, or as required by law.  Please note that if you use our U.S. based call centers (if you call us for assistance , for example, or if we return your call), we will record the telephone conversation for quality assurance purposes and to enable better customer service.  Rail Europe will retain this recording for a period of up to one (1) year from the initial date of the recording, after which such recording will be destroyed in accordance with our document retention policies.

Electronic Communications

As part of signing up on our Site to purchase products and services, you consented to receive email from us.  You may have also opted in to receive future promotional communications from us. If you opted-in to receive such communications, we may use the information to: communicate with you regarding our products, services and promotions; provide you with other information that you request; and/or improve our product and service offerings. You will always have the opportunity to "unsubscribe" from receiving any of our e-mail or other communications at any time. We provide an on-going opportunity to unsubscribe or opt-out of contact by us by (i) accessing our Site and changing your profile information; (ii) calling us at (914) 682-2999 or by e-mail to unsubscribe@raileurope.ca.

If you decide to unsubscribe, we will only contact you (i) for the purposes allowed under applicable law; (ii) to send you notices of changes to our Privacy Policy; or (iii) to receive transactional messages relating to products or services that you have purchased from Rail Europe or its Suppliers.

Contacting Us

You may delete, edit or modify any personal information you have submitted to us at any time.  If you do not wish to receive further e-mail or other mail from us, please e-mail us at: explorer@raileurope.com.

If you have any comments or questions regarding our Privacy Policy, please contact us at legal@raileurope.com, or at Attn: Legal Rail Europe, Inc., 333 Westchester Avenue, Suite W-2200, White Plains, NY 10604.  While we cannot guarantee privacy perfection, we will address any issue to the best of our abilities as soon as possible.