TRIFORCECRITICAL CARE · ANYWHERE
TRIFORCEAIR AMBULANCE
Home

Privacy

Privacy Policy

Effective May 10, 2026

This policy explains what personal information Triforce ("we", "us") collects, why we collect it, how it is shared, and the controls you have. It applies to the Triforce marketing site, the request and booking flow, the client portal, the operator console, and the iOS, iPadOS, and Android apps that wrap them.

1. Summary

  • We collect only the personal information needed to operate your account and fulfil missions.
  • We never sell personal information.
  • We use a passwordless magic-link sign-in — we never store your password because we don’t use one.
  • You can delete your account in-app at any time from Account → Delete my account.
  • For protected health information (PHI), we minimise collection and exchange detailed records out-of-band over an encrypted channel.

2. Data we collect

Account data. Email address, optional display name, role (member or admin), sign-in timestamps, IP address and user agent of the device that requested a magic link.

Request and mission data. Origin, destination, urgency, requester contact details, organisation, and a free-text patient or itinerary summary you submit through the request flow.

Communications. Inbound and outbound email, SMS, hotline call metadata, and portal messages, linked to the matching request.

Device and diagnostic data. Crash reports, performance metrics, and aggregate analytics. We do not use third-party advertising SDKs and we do not track you across other apps or websites.

Cookies. A single first-party session cookie (triforce_session) holding your signed sign-in token. No advertising cookies.

3. Health information (PHI)

For air-ambulance requests we deliberately limit what we collect at intake: age band (not date of birth), mobility, ICU and isolation flags, and a short free-text condition summary you choose to share. Detailed medical records are exchanged with our medical director out-of-band over an encrypted channel.

Where PHI is held inside our systems, the relevant column is encrypted at rest and access is logged in our audit log. Vendor BAAs are tracked in our internal compliance register.

4. How we use your data

  • To dispatch and operate your mission and communicate status updates.
  • To authenticate you and prevent fraud or abuse.
  • To meet legal, regulatory, aviation-safety, and accounting obligations.
  • To improve the product through aggregated, de-identified analytics.

We do not use your data to train third-party AI models.

5. Service providers we share data with

We rely on a small set of vetted vendors. Each receives the minimum data necessary for the function listed:

  • Vercel — application hosting and edge delivery.
  • Neon — Postgres database (account, request, mission records).
  • Resend — transactional email (magic links, mission updates).
  • Twilio — hotline routing and SMS to dispatch and clients.
  • Stripe — charter payments and invoices (no PHI).
  • Cloudflare R2 — secure document and image storage.
  • Mapbox — airport autocomplete and route preview (no PHI).
  • Sentry — error and crash reporting.

We do not sell or rent personal information. We do not share data with advertising networks.

6. Retention

Account data is kept for the life of the account. Request and mission records are retained for seven years after completion to satisfy aviation, medical, and accounting recordkeeping obligations, then deleted or de-identified. Magic-link tokens expire after 15 minutes. Sign-in sessions expire after 30 days of inactivity.

7. Your rights

You may at any time:

  • Access the data we hold about you by emailing dispatch@triforce.flights.
  • Correct inaccurate information from your account page or by email.
  • Delete your account in-app from Account → Delete my account. We will purge personal records, retaining only what we are legally required to keep.
  • Export a copy of your records by emailing the address above.
  • Withdraw consent for non-essential processing.

California, UK, and EEA residents have additional rights under the CCPA, UK GDPR, and EU GDPR respectively, including the right to lodge a complaint with your supervisory authority.

8. Security

Data in transit is encrypted with TLS 1.2 or higher. Data at rest is encrypted at the database and object-store layers. Sensitive PHI columns have an additional application-layer envelope encryption. Internal access is role-based and logged.

9. International transfers

Our infrastructure is hosted in the United States and the European Union. We rely on Standard Contractual Clauses for transfers out of the EEA / UK where applicable.

10. Children

Triforce is intended for adults arranging air-medical or charter transport on behalf of themselves, their family, their patients, or their organisation. The service is not directed to children under 13 and we do not knowingly collect personal information from them. Patients transported are inherently of any age, and clinical data about them is handled per the PHI section above.

11. Changes to this policy

When we make material changes we will update the effective date above and, for active accounts, notify you by email. The current version is always available at /privacy.

12. Contact

Privacy questions, deletion requests, and supervisory-authority enquiries:
dispatch@triforce.flights
Triforce Mission Control — 00 800 TRI FORCE

TRIFORCEAIR AMBULANCE

World-class air ambulance and private charter — trusted by hospitals, chosen by families. Mission control around the clock, every day of the year.

Services
Account & Legal
Worldwide Hotline
00 800 TRI FORCE
874 367 23
All regional numbers →
In a life-threatening emergency, call 911 (US), 112 (EU), or your local emergency number first. Triforce coordinates air-medical and charter transport — we are not an emergency dispatch service. Read the full disclaimer.
© 2026 Triforce. All rights reserved.v0.1.0Trusted by Hospitals. Chosen by Families.