Privacy Policy
Truronian Holidays is committed to safeguarding the privacy and personal data of all visitors, customers, and users of our website, truronianholidays.com. We operate with the highest standards of data protection and transparency, and in full compliance with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and any other applicable data privacy laws. This Privacy Policy outlines how we collect, use, process, and protect your personal data and informs you of your rights concerning your personal information.
1. Introduction: Our Commitment to Privacy and Data Protection
At Truronian Holidays, privacy is a priority. We recognize the importance of maintaining the confidentiality, integrity, and availability of your personal data. This policy reflects our deep commitment to privacy-first principles and responsible data handling practices.
2. Scope of This Policy and Our Role as Data Controller
This Privacy Policy applies to your use of our website, truronianholidays.com, and any interaction you have with us electronically, by phone, by email, or in any other medium. For the purposes of all relevant data protection laws, Truronian Holidays acts as the data controller, meaning we determine the purposes and means of processing your personal data.
3. Categories of Data We Process
We may collect and process the following categories of personal data:
a. Usage Data:
– Browser type and version
– IP address
– Device identifiers
– Geographic location
– Website activity (pages visited, session duration, referring websites)
b. Account Data:
– Full name
– Email address
– Telephone number
– Residential or billing address
c. Profile Data:
– Booking preferences
– Purchase history
– Website behavior
– Travel interests
d. Communication Data:
– Emails, messages, and inquiries sent to [email protected]
– Customer support records
– Call logs (if applicable)
e. Technical Data:
– Device type and operating system
– Browser plugins
– Internet service provider
– System configurations
f. Transaction Data:
– Payment details (processed securely via third-party vendors)
– Transaction history
– Delivery and booking fulfillment information
g. Preference Data:
– Marketing communication consents
– Product and holiday package interests
– Survey or feedback data
4. Legal Bases for Processing Personal Data
Under GDPR and applicable data laws, we process your personal data only where we have a valid legal basis, including:
– Consent: Where you have explicitly permitted us to process your data (e.g., subscribing to newsletters).
– Contractual Necessity: To fulfill our contractual obligations to you, such as processing holiday bookings.
– Legitimate Interests: We may process your data to improve our services, prevent fraud, and protect our business operations, provided your rights do not override these interests.
– Legal Obligations: To comply with applicable laws, regulations, and court orders.
5. Your Rights Under Data Protection Law
As a data subject, you have the following rights:
– Right to Access: You may request a copy of the personal data we hold about you.
– Right to Rectification: You may update or correct any inaccurate data.
– Right to Erasure: You may request that we delete your personal data, subject to legal retention requirements.
– Right to Restrict Processing: You may ask us to limit the use of your data in certain circumstances.
– Right to Data Portability: You may ask us to provide your data in a machine-readable format or transmit it to another controller.
– Right to Object: You may object to processing based on public interest or legitimate interests, especially in relation to direct marketing.
To exercise any of your rights, please contact us at [email protected].
6. Security Measures
We implement appropriate technical and organizational safeguards to protect your personal data, including but not limited to:
– End-to-end encryption of sensitive data
– Secure servers and firewalls
– Robust access control and authentication processes
– Regular backup and disaster recovery protocols
– Ongoing employee training and awareness programs
7. International Data Transfers
Your personal data may, where necessary, be transferred to countries outside the European Economic Area (EEA). In such cases, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission, or other legally recognized transfer mechanisms to ensure an adequate level of protection.
8. Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting obligations. The specific timeframes are as follows:
– Usage Data: up to 12 months for analytics
– Account and Profile Data: while your account remains active and up to 36 months after last activity
– Communication and Support Data: retained for 24 months for service improvement and record-keeping
– Transaction Data: retained for 7 years for tax and accounting compliance
– Preference Data: retained until you withdraw your consent or delete your account
9. Cookie Policy
Our website, truronianholidays.com, uses cookies and similar technologies to enhance user experience, support site functionality, and analyze site usage. Cookies fall into the following categories:
– Essential Cookies: Required for moving around the website and using features like secure booking.
– Functional Cookies: Enable features such as remembering preferences or login status.
– Analytics Cookies: Help us understand how users navigate our site to improve usability.
– Performance Cookies: Collect information about how the site performs in different environments.
10. Cookie Management and Compliance
You can manage your cookie preferences directly through your browser settings or through our cookie consent management tool when you first visit truronianholidays.com. In compliance with GDPR and CCPA, we do not place non-essential cookies without your explicit consent. You may withdraw consent at any time by revisiting the site and adjusting your cookie preferences.
California residents under CCPA also have the right to opt out of the sale or sharing of their personal data. We do not sell your personal data and maintain strict adherence to privacy protections. To exercise your rights, please contact us at [email protected].
11. Children’s Privacy
We do not knowingly collect or process data from children under 13 years of age. If we discover that personal information has been collected from a child without verifiable parental consent, we will take immediate steps to delete such data from our records. If you believe we may have collected data from a child under 13, please contact us promptly.
12. Policy Updates and User Notifications
We reserve the right to update or amend this Privacy Policy from time to time to reflect changes in legal, regulatory, or operational requirements. Such changes will be published on truronianholidays.com. Where the changes materially affect your rights or the way we process your data, we will notify you either by email or through prominent notice on the website, as appropriate.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or the way your personal data is handled, please contact us:
Email: [email protected]
We are committed to ensuring full compliance with all applicable data protection laws and to maintaining your trust through responsible and secure data practices. Please do not hesitate to reach out if you have any concerns about your privacy.