Privacy Policy

Data Controller

shipsgdgtt B.V. is the Data Controller responsible for your personal data. We are registered in the Netherlands under company registration number 71249506, with our registered office at Eikenlaan 266, 1334 OM Almere, Netherlands.

Data Collection

The data we collect includes personal information that you provide directly to us when using our travel services, visiting our website, or communicating with our team. This collection is essential for providing you with exceptional travel planning services.

We collect the following types of information:

• Contact Information: Name, email address, phone number, postal address
• Travel Preferences: Destination preferences, travel dates, budget, accommodation preferences
• Booking Information: Travel itineraries, passenger details, special requirements
• Payment Information: Billing address and payment method details (processed securely through third-party providers)
• Communication Records: Emails, phone calls, and other communications with our team
• Website Usage Data: IP address, browser type, pages visited, time spent on site
• Marketing Preferences: Your consent for receiving marketing communications

How We Use Your Information

We explain how we use your information to provide exceptional travel services and enhance your experience with shipsgdgtt. Our use of your data is always lawful, fair, and transparent.

We use your personal information for the following purposes:

• Service Delivery: Planning, booking, and managing your travel arrangements
• Customer Support: Responding to inquiries, providing assistance, and resolving issues
• Communication: Sending booking confirmations, travel updates, and important notifications
• Personalisation: Tailoring our services to your preferences and travel history
• Marketing: Sending promotional materials about our services (with your consent)
• Legal Compliance: Meeting legal obligations and protecting our legitimate interests
• Website Improvement: Analysing usage patterns to enhance our website and services

Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

• Contract Performance: Processing necessary to fulfil our travel services contract with you
• Consent: Where you have given explicit consent for marketing communications
• Legitimate Interests: For improving our services, fraud prevention, and business operations
• Legal Obligation: Where required by law, such as tax reporting or safety regulations

Data Sharing and Third Parties

We may share your personal information with trusted third parties who help us deliver our travel services:

• Travel Suppliers: Hotels, airlines, tour operators, and other service providers
• Payment Processors: Secure payment processing services
• Technology Partners: Website hosting, email services, and booking platforms
• Legal Authorities: When required by law or to protect our rights

We ensure all third parties maintain appropriate data protection standards and only process your data for specified purposes.

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes outlined in this policy. Generally, we keep your information for up to 7 years after your last interaction with us for business records and legal compliance. Marketing data is retained until you withdraw consent or for 3 years of inactivity.

Your Rights

Under GDPR and applicable data protection laws, you have the following rights:

• Access: Request a copy of the personal data we hold about you
• Rectification: Correct any inaccurate or incomplete information
• Erasure: Request deletion of your personal data in certain circumstances
• Restriction: Limit how we process your data
• Portability: Receive your data in a structured, commonly used format
• Objection: Object to processing based on legitimate interests or for marketing
• Withdraw Consent: Withdraw consent for processing where consent is the legal basis

International Data Transfers

When booking travel services, your data may be transferred to countries outside the European Economic Area (EEA) where travel suppliers are located. We ensure appropriate safeguards are in place, such as adequacy decisions, standard contractual clauses, or other approved transfer mechanisms.

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. This includes encryption, secure servers, access controls, and regular security assessments.

Cookies and Tracking

Our website uses cookies and similar technologies to enhance your browsing experience. For detailed information about our cookie usage, please refer to our Cookie Policy.

Children's Privacy

Our services are not directed to children under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete such information promptly.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on our website and updating the "Last Updated" date. Your continued use of our services after such changes constitutes acceptance of the updated policy.

Contact Information

If you have any questions about this Privacy Policy, wish to exercise your rights, or need to contact us about data protection matters, please contact us using the following information:

Supervisory Authority

You have the right to lodge a complaint with a supervisory authority if you believe we have not handled your personal data in accordance with applicable data protection laws. In the Netherlands, the supervisory authority is the Autoriteit Persoonsgegevens (Dutch Data Protection Authority).