Data Protection & Privacy Notice - Personal Data Protection and Privacy Notice
This privacy notice has been prepared to inform you about the personal data collected and processed by us under applicable data protection laws in the United Kingdom (UK GDPR and Data Protection Act 2018). Protecting your personal data and ensuring your privacy is one of the fundamental building blocks of the services we provide.
1. Who is the Data Controller?
The organisation responsible for processing your personal data:
Company Name:
Address:
Email:
Telephone:
2. Which data do we collect?
- Name, surname
- Contact details (telephone, e-mail)
- Passport/ID details (for visa procedures)
- Travel booking information (flight ticket, hotel, transfer, tour)
- Payment information (billing address, transaction history)
- Device information and IP address (for cookies and user experience tracking)
3. Method of Data Collection
- Website forms
- E-mail and telephone calls
- Requests via WhatsApp and social media
- Flight, hotel and documents provided at the time of visa application
4. Purposes of Data Processing
- Completion of reservation procedures
- Making visa applications
- Payment transactions and invoicing
- Meeting customer service and support requests
- Fulfilment of legal obligations
- Service improvement and analysis
5. Legal Basis
Your personal data is processed based on the following legal grounds:
- Necessary for the performance of the contract
- Fulfilment of legal obligations
- Explicit consent (e.g. marketing e-mails)
- Legitimate interest (e.g. improving service quality)
6. Data Retention Period
Your personal data is stored for the period appropriate to the purpose of the service:
- Booking records 6 years
- Visa application documents: 12 months
- Marketing information: Until the authorisation is withdrawn
7. Sharing of Data
Your personal data is only shared with the following third parties for the performance of the service:
- Tourism suppliers (hotel, transfer, guide etc.)
- Airline companies
- Consulates and official visa centres
- Tax and audit institutions
- Technology infrastructure providers (CRM, payment systems)
Confidentiality and data security agreements have been signed with these parties.
8. Security of Data
- Secure data transfer is provided with SSL encryption technology
- Firewall and antivirus protection against unauthorised access
- Physical documents are securely stored in locked areas
- Regular privacy and data security training is provided to our staff
9. Your Rights as a Personal Data Owner
You have the following rights under the UK GDPR:
- Obtaining information
- Access request
- Correction and update request
- Request for erasure (right to be forgotten)
- Request restriction of processing
- Right of appeal
- Request for data portability
- Right to withdraw consent
Please contact us for your requests:
10. Data concerning Children
Our services are intended for users over the age of 18. Data of children under 18 years of age are processed only with the consent of the parents. This rule is observed when organising visas and family travel.
11. International Data Transfer
Your data will only be transferred abroad for service purposes (e.g. transactions originating in Turkey) and subject to the necessary protection measures.
12. Your Right of Complaint
For complaints about our data processing, you can contact us directly or contact the UK Information Commissioner's Office (ICO): www.ico.org.uk
13. Policy Updates
This notice may be updated from time to time. Each new version is published on our website with the date of update.
Last update: 05.04.2025
Protecting your data is our priority. We act with transparency and value your privacy so that you can safely benefit from our services.
