Privacy Policy of Our Travel Agency

Welcome to our travel agency! Your privacy is of paramount importance to us. This Privacy Policy describes how we collect, use, and protect your personal data when you interact with our site, visit our office in Milan, or use our services, particularly those related to travel within Italy and beyond. We are committed to processing your data in compliance with the General Data Protection Regulation (GDPR) and other applicable Italian data protection laws.

Our office is located in the city centre of Milan, Italia.

1. Information We Collect

We collect various types of information in connection with the services we provide, which can be categorized as follows:

• Personal Identification Information: This includes your name, surname, date of birth, gender, nationality, passport or ID details, and contact information such as email address, phone number, and postal address. We collect this directly from you when you book a trip, request a quote, or register for our services.
• Travel Details: Information related to your travel preferences, itineraries, hotel bookings, flight details, car rentals, and other services you book through us. This may also include dietary requirements or special assistance needs relevant to your travel.
• Payment Information: When you make a booking, we collect necessary payment details such as credit/debit card numbers, bank account information, and billing address. Please note that credit card details are processed by secure payment gateways and are not stored on our servers.
• Interactions and Communications: Records of your communications with us, including emails, phone calls, and in-person discussions at our Milan office, for customer service, dispute resolution, and training purposes.
• Technical Data: When you visit our online platform, we automatically collect certain information about your device, including your IP address, browser type, operating system, referring URLs, and how you interact with our site. This is primarily for the security and optimization of our online services.

2. How We Use Your Information

We use the collected information for various purposes, primarily to facilitate your travel arrangements and provide you with exceptional service:

• To Provide Travel Services: Processing your bookings for flights, accommodations, tours, and other travel-related services. This involves sharing your necessary data with airlines, hotels, tour operators, and other third-party service providers.
• Customer Support: To respond to your inquiries, provide assistance, and resolve any issues you may encounter with your bookings or travels.
• Communication: Sending you confirmations, updates, and important information about your bookings, as well as service-related announcements.
• Personalization: To tailor our offers and recommendations to your preferences, helping you discover new Italian destinations or experiences, always with your consent where required.
• Legal and Security Compliance: To comply with legal obligations, prevent fraud, and ensure the security of our services and your data.
• Internal Operations: For internal administrative purposes, data analysis, improving our service offerings, and enhancing the user experience on our online platform.

3. Legal Basis for Processing

We process your personal data based on the following legal grounds:

• Contractual Necessity: Processing is necessary for the performance of a contract to which you are party (e.g., booking a trip) or to take steps at your request prior to entering into a contract.
• Legitimate Interests: We may process your data for our legitimate business interests, provided these do not override your fundamental rights and freedoms. This includes improving our services, preventing fraud, and marketing our services (with appropriate opt-out mechanisms).
• Consent: In certain situations, we may ask for your explicit consent to process your data, particularly for marketing communications beyond service-related messages. You have the right to withdraw your consent at any time.
• Legal Obligation: To comply with legal or regulatory obligations that apply to us.

4. Sharing Your Information

To provide you with comprehensive travel services, we may share your personal data with:

• Travel Service Providers: Airlines, hotels, car rental companies, cruise lines, destination management companies, and other third-party operators necessary to fulfill your bookings. These providers may be located in Italy, across Europe, or in other parts of the world depending on your travel destination.
• Payment Processors: Secure third-party payment gateways to process your transactions.
• Regulatory and Law Enforcement Authorities: When required by law or to protect our rights, property, or safety, or the rights, property, or safety of others.
• Service Providers: Companies that provide services on our behalf, such as IT support, marketing, and data analytics, under strict data processing agreements.

We ensure that all third parties protect your data at a level consistent with GDPR requirements and our own standards. For international transfers, we implement appropriate safeguards such as Standard Contractual Clauses.

5. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. Typically, this means keeping your data for the duration of your travel arrangements plus a reasonable period afterward to handle any post-travel inquiries or statutory obligations. Specific retention periods will vary depending on the type of data and the purpose of processing.

6. Your Data Protection Rights

Under GDPR, you have the following rights regarding your personal data:

• The Right to Access: You can request a copy of the personal data we hold about you.
• The Right to Rectification: You can ask us to correct any inaccurate or incomplete data we hold about you.
• The Right to Erasure (Right to Be Forgotten): You can request that we delete your personal data under certain circumstances.
• The Right to Restrict Processing: You can request that we limit the way we use your data.
• The Right to Data Portability: You can request to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit it to another controller.
• The Right to Object: You can object to the processing of your personal data for direct marketing purposes or when processing is based on legitimate interests.
• The Right to Withdraw Consent: If we rely on your consent to process your data, you have the right to withdraw that consent at any time.

To exercise any of these rights, please contact us using the details provided below. We will respond to your request in accordance with applicable data protection laws.

7. Security Measures

We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, accidental loss, destruction, or damage. This includes using secure servers, encrypting data where appropriate, and restricting access to personal data to authorized personnel only. We regularly review our security practices to ensure they remain robust and effective.

8. Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please do not hesitate to contact us at our office.

Our physical address is: City Centre, Milan, Italia.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any significant changes by posting the new policy on our online platform. We encourage you to review this policy periodically.