Last updated: [Insert Date]

At [Your Company Name], your privacy is important to us. This Privacy Policy explains what personal information we collect, how we use it, and how we protect it in accordance with the General Data Protection Regulation (GDPR).

1. Who We Are

This website is operated by [Your Company Name], a tour company offering safari and travel experiences across Tanzania.

2. What Personal Data We Collect

We may collect the following types of data:

  • Contact information: Full name, email, phone number (from booking or inquiry forms)

  • Booking details: Travel preferences, dates, group size

  • Browser and device data: IP address, browser type, and visit behavior (via cookies and analytics)

  • Consent choices: For cookies or marketing preferences

3. How We Collect Your Data

We collect your data in the following ways:

  • When you fill out a form (booking, contact, or subscription)

  • When you use or browse our website (through cookies)

  • When you contact us directly by phone or email

4. Why We Collect Your Data

We only collect data for specific, legitimate purposes:

  • To respond to your inquiries or booking requests

  • To manage and confirm your travel bookings

  • To send confirmations, updates, or customer support

  • To improve our website and services (via analytics)

  • To comply with legal obligations

We do not sell or rent your personal information to any third parties.

5. Legal Basis for Processing

Under the GDPR, we rely on the following legal bases to process your data:

  • Consent (when you opt in via forms or cookie banners)

  • Contract (when we need your data to fulfill a booking)

  • Legal obligation (e.g., for accounting or tax reasons)

  • Legitimate interests (e.g., to improve our services)

6. How Long We Keep Your Data

We only keep your personal data for as long as necessary:

  • For inquiries: up to 6 months

  • For bookings: up to 5 years (for legal and financial records)

  • For analytics: anonymized or aggregated after 26 months

You may request deletion of your data at any time (see section 10).

7. Cookies and Tracking Technologies

We use cookies to:

  • Remember your preferences

  • Analyze website traffic (via Google Analytics or similar)

  • Improve your browsing experience

You can manage or withdraw your cookie consent at any time using the cookie banner.

8. Third-Party Services

We may share your data with trusted providers only to deliver our services:

  • Payment processors (if enabled)

  • Google Analytics (anonymized)

  • Email or booking software

We ensure that all third-party services comply with GDPR or equivalent privacy protections.

9. Data Security

We use secure technologies and practices to protect your data, including:

  • SSL encryption (https)

  • Strong passwords and firewalls

  • Limited access to authorized staff only

However, no method of transmission is 100% secure, so we cannot guarantee absolute security.

10. Your Rights Under GDPR

If you are in the European Union or EEA, you have the right to:

  • Access your data

  • Correct or update your data

  • Request deletion of your data (“right to be forgotten”)

  • Restrict or object to data processing

  • Transfer your data to another provider

  • Withdraw your consent at any time

To make a request, please email us at [your@email.com].

11. Children’s Privacy

We do not knowingly collect data from children under 16. If you believe a child has submitted personal information, please contact us and we will delete it.

12. Changes to This Privacy Policy

We may update this policy from time to time. Any changes will be posted on this page with an updated revision date.

13. Contact Us

If you have any questions or concerns about your privacy or this policy, contact us:

[Your Company Name]
Email: [your@email.com]
Phone: [+255 xxx xxx xxx]
Website: tour.guavaxp.com