GDPR Privacy Policy – Startour

At Startour, we are committed to protecting your personal data and respecting your privacy in accordance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”).

Mục lục

Data Controller

Startour acts as the data controller for the personal data collected through our website and booking systems.

If you have any questions regarding this policy or how your data is handled, please contact our support team.

Personal Data We Collect

We collect and process only the personal data necessary to provide our services, including:

Types of Personal Data

  • Full name
  • Email address
  • Phone number
  • Travel and booking details

Payment Information

Payment information (processed by secure third-party payment providers)

We do not store full payment card details on our servers.

How We Use Your Data

Your personal data is used strictly for:

Purposes of Processing

  • Processing and confirming bookings
  • Communicating essential travel information
  • Providing customer support
  • Meeting legal and regulatory requirements
We do not use personal data for purposes incompatible with those listed above.

Data Sharing & International Transfers

Data Sharing

Your data may be shared only with:

  • Tour operators and service providers involved in fulfilling your booking
  • PCI-DSS compliant payment processors
  • Authorities where required by law

International Data Transfers

Where personal data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, including standard contractual clauses or equivalent protection mechanisms.

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable laws and regulations.

Your Rights Under GDPR

Under GDPR, you have the right to:

Data Subject Rights

Access your personal data
Rectify inaccurate or incomplete data
Request erasure (“right to be forgotten”)
Restrict or object to processing
Request data portability
Withdraw consent at any time (where processing is based on consent)

Requests can be made by contacting our customer support team.

Data Security

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

Security Measures

  • SSL/TLS encryption
  • Restricted internal access controls
  • Secure data storage systems

Cookies & Tracking

We use cookies and similar technologies to improve user experience and website performance.<br /> <br /> You may manage or withdraw cookie consent at any time through your browser or cookie settings.

This policy may be updated periodically to reflect changes in legal requirements or operational practices. The latest version will always be available on our website.

GDPR Compliance Statement

We process personal data in accordance with the EU GDPR.

Payments are encrypted and handled by PCI-compliant providers.

We never store your card details.