Mareatour d.o.o., located at Bernardinska reber 3b, 6320 Portorož, Slovenia, is committed to protecting your personal data in compliance with the General Data Protection Regulation (GDPR) (EU 2016/679) and Slovenian legislation.
1. DATA CONTROLLER
The data controller is Mareatour d.o.o., a travel agency specializing in organizing tours, wellness packages, and cycling trips. Personal data processing is strictly limited to fulfilling our contractual obligations and enhancing customer experience.
2. TYPES OF PERSONAL DATA COLLECTED
Mareatour d.o.o. collects the following data:
- Full name, date of birth, gender, contact details (email, phone, address), and identification document information.
- Data related to travel bookings, including accommodation, transport details, and payment information.
- Preferences for travel, wellness packages, and special requests.
We do not process sensitive data such as health conditions, ethnicity, or criminal records.
3. PURPOSES OF DATA PROCESSING
We process your personal data to:
- Execute travel bookings and deliver contracted services.
- Communicate important travel information, itineraries, and payment updates.
- Provide customer support and respond to inquiries.
- Conduct marketing and promotional activities, including newsletters (only with your consent).
- Ensure legal and administrative compliance.
4. DATA RETENTION PERIOD
Your personal data will be stored:
- Indefinitely for booking and travel history unless consent is withdrawn.
- 10 years for invoices, in compliance with VAT laws.
- Until consent is revoked for marketing purposes (e.g., newsletters).
Upon withdrawal of consent, all personal data will be safely deleted.
5. DATA SHARING
We may share your personal data only with trusted third parties, including:
- Hotels, airlines, transport providers, and travel insurance companies to fulfill your booking.
- Service providers (e.g., IT support, payment processors) who ensure smooth operation of our services.
- Authorities, if legally required for compliance or safety purposes.
Your data will never be sold or shared with unauthorized parties.
6. DATA SECURITY
We implement appropriate technical and organizational measures to protect personal data from unauthorized access, loss, or destruction. Our systems comply with the highest GDPR standards for data encryption, access control, and data monitoring.
7. YOUR RIGHTS UNDER GDPR
You have the following rights regarding your personal data:
- Access: Request a copy of your personal data.
- Rectification: Correct inaccurate or incomplete data.
- Erasure: Request deletion of your data.
- Restriction: Limit how we process your data.
- Portability: Receive your data in a machine-readable format.
- Objection: Withdraw consent for direct marketing or data processing.
To exercise these rights, contact us at:
Email:
Mail: Mareatour d.o.o., Bernardinska reber 3b, 6320 Portorož, Slovenia
8. CHANGES TO THIS POLICY
Mareatour reserves the right to update this privacy policy to reflect changes in data processing practices or legislation. We encourage you to review this page regularly for updates.