Privacy Policy
This privacy policy outlines how Niya Voyage uses and processes your personal data when you use Niya Voyage's services, such as through our website and mobile apps. It also informs you about your rights regarding your personal data and how you can contact us.
If you are a resident of the United States, please consult the section titled "United States residents' rights" to understand the rights that apply to you. Additionally, you can review our supplementary CCPA notice for more information.
If you are one of our travel service providers, please refer to our Supplier Privacy Policy to understand how personal data is processed within the scope of our business relationship.
1. Controller and Contact Information
The Controller responsible for processing your personal data is:
Controller: Niya Voyage
Address: niyavoyage.com
Contact: contact@niyavoyage.com
Please note that any data processing by third-party providers (e.g., hotels, transport providers) who offer services through the Niya Voyage platform is subject to their respective privacy policies. These third-party providers act as separate data controllers.
2. Automated Data Collection
When you visit our websites or use our mobile apps, we automatically collect certain information, which is stored separately from any data you may provide:
- URL of the accessed page
- Network connection latency
- Date and time of access
- Information about your device’s hardware and software (e.g., operating system, browser, language settings)
- Information about clicks and pages you visit
We store this data for the following purposes:
- Load balancing to distribute access to our website and improve loading times
- Security to protect our IT systems and recognize potential attacks
- Operational integrity to ensure proper functioning and fix errors
- Legal compliance for the investigation of any potential criminal activities
Your IP address is encrypted and retained for a period of 45 days to ensure confidentiality.
For mobile devices, we collect data that identifies the device and its settings, characteristics, and activity (e.g., app crashes). This is processed in compliance with Art. 32 GDPR, protecting against misuse of our services (Art. 6 para. 1 lit. f GDPR).
3. Niya Voyage Account
3.1 Registration
When you create a Niya Voyage user account, you may provide the following data:
- First name and surname
- Email address
- Password
You can also log in with your Facebook, Google, or Apple account. In such cases, we receive the following data:
- Name
- Email address
- Photo (if applicable)
- Authentication token
This data is used to create and manage your account. The legal basis for this data processing is Art. 6 para. 1 lit. b GDPR.
3.2 Wishlists
With your Niya Voyage account, you can create wishlists of trips or activities and share them with other users. This data is processed based on Art. 6 para. 1 lit. b GDPR.
4. Reviews and Ratings
You can rate and comment on tours or activities through our website. After completing a tour, we may request a review. Submitting a review is voluntary, and you can choose to do so anonymously.
Your data is processed to publish your review, and you can request deletion at any time by contacting our customer service. Reviews help provide valuable information to other users and are processed under our legitimate interest (Art. 6 para. 1 lit. f GDPR).
5. Customer Support
5.1 Processing of Inquiries
If you contact our customer service team or reach out via social media, your request is processed by our support team. This may involve the use of external services (e.g., Zendesk for customer service or NICE Ltd. for social media inquiries).
5.2 Improvement of Customer Service
We analyze inquiries based on keywords to improve our services. This processing is based on our legitimate interest in enhancing customer service (Art. 6 para. 1 lit. f GDPR).
5.3 Translations
In cases where translation is required, personal data may be processed to provide this service. This is based on our legitimate interest (Art. 6 para. 1 lit. f GDPR).
6. Technical Service Providers
We use technical service providers for hosting and maintaining the Niya Voyage website. Data is processed on servers located in the European Union or in compliance with EU regulations.
6.1 Hosting
We use Amazon Web Services (AWS) for hosting, with all data stored on EU-based servers.
6.2 Emails
For sending emails, we use third-party providers certified under relevant EU-U.S. data frameworks.
7. Newsletter
You can subscribe to our newsletter on the website, which will provide you with personalized offers and promotions. We process your email address with your consent (Art. 6 para. 1 lit. a GDPR), and you can unsubscribe at any time by clicking the unsubscribe link or adjusting settings in your account.
8. Bookings & Payments
8.1 Bookings
When you book a trip or activity, we collect the data necessary to complete your booking, such as:
- Name, billing address, email, phone number
- Number of participants, dates, and additional information such as passport numbers (if required)
This data is shared with the service provider (e.g., tour operators, hotels), who may act as separate data controllers. The legal basis for this processing is Art. 6 para. 1 lit. b GDPR.
8.2 Payments
We process payments via secure third-party providers like PayPal, Stripe, or Adyen. Only the necessary payment information is shared, and we do not store full credit card numbers.
9. Cookies and Online Tracking
We use cookies and other tracking technologies to optimize website functionality and enhance your user experience. You can manage your cookie preferences through our consent manager.
10. Your Rights as a Data Subject
You have the following rights under GDPR regarding your personal data:
- Right to access information
- Right to correct inaccurate data
- Right to erasure (Art. 17 GDPR)
- Right to restrict processing (Art. 18 GDPR)
- Right to data portability (Art. 20 GDPR)
- Right to object to processing (Art. 21 GDPR)
To exercise your rights, please contact us at [Insert Contact Email or Form].
11. United States Residents’ Rights
If you are a U.S. resident, additional rights under the California Consumer Privacy Act (CCPA) and other state laws may apply to you. These include the right to request disclosure, deletion, and correction of personal data.
For more information or to exercise your rights, please contact us at [Insert Contact Form Link].
12. Changes to this Privacy Policy
Niya Voyage may update this privacy policy from time to time. The current version is always available at [Insert Privacy Policy Link].
Last updated: [13/09/2024]