Privacy Policy
The privacy policy of Travel XS outlines how the company collects, uses, stores, and protects the personal information of its customers and website visitors.
Information Collection: The company specifies the types of personal information it collects, such as names, contact details, payment information, passport details, and preferences. It may collect this information directly from customers when they book a tour or indirectly through website cookies and analytics.
Purpose of Information: The company explains the purposes for which it collects and uses personal information, such as, to process bookings, provide customer service, customize tour experiences, and communicate with customers about their bookings.
Data Security: The company describes the measures it takes to ensure the security and confidentiality of personal information, such as encryption, firewalls, secure payment gateways, and access controls. It may also mention compliance with industry standards and regulations regarding data security.
Data Sharing: The company discloses whether it shares personal information with third parties, such as hotels, transportation providers, tour guides, and travel insurance companies. It explains the purposes for which information is shared and may require third parties to adhere to similar privacy standards.
Data Retention: The company outlines how long it retains personal information and the criteria used to determine retention periods. It may specify legal obligations, contractual requirements, and business needs for retaining certain types of data.
User Rights: The company informs customers about their rights regarding their personal information, such as the right to access, rectify, delete, or restrict the processing of their data. It provides contact information for inquiries and requests related to privacy rights.
Marketing Communications: The company explains how it obtains consent for sending marketing communications to customers and provides options for opting out of such communications. It may also describe the types of marketing communications customers can expect to receive.
Updates to Policy: The company states that it may update the privacy policy periodically to reflect changes in data processing practices, legal requirements, or business operations. It advises customers to review the policy periodically for updates.
Contact Information: The company provides contact information for its data protection officer or privacy team to address inquiries, concerns, or complaints related to privacy and data protection.
Legal Basis for Processing: The company identifies the legal basis for processing personal information, such as consent, contractual necessity, legal obligations, or legitimate interests pursued by the company.