Privacy Policy for www.ddydestination by DDY Management and Travel Co., Ltd.
This Privacy Policy describes how DDY Management and Travel Co., Ltd. (“we,” “us,” or “our”) collects, uses, processes, and shares your personal information when you use our website or services. We are committed to protecting your privacy and complying with relevant data protection laws, including the General Data Protection Regulation (GDPR).
1. Information We Collect
We may collect various types of information from you, including:
- Personal Information: Your name, contact details, payment information, and other data necessary for booking travel and providing our services.
- Usage Information: Data about your interactions with our website, such as pages visited, searches made, and user preferences.
- Device Information: Information about your device, including IP address, browser type, and operating system.
2. How We Use Your Information
We use your personal information for the following purposes:
- Booking and Providing Services: To process your travel bookings, manage reservations, and provide customer support.
- Communication: To send you booking confirmations, updates, and other service-related communications.
- Personalization: To tailor our website content and services to your preferences.
- Legal Compliance: To fulfill legal obligations, such as fraud prevention and regulatory compliance.
3. Legal Basis for Processing
We process your personal information based on the following legal grounds:
- Contractual Necessity: Processing is necessary for the performance of a contract (booking and providing travel services).
- Legitimate Interests: Processing is necessary for our legitimate business interests, such as improving our services and marketing.
- Consent: We may seek your consent for specific processing activities.
4. Sharing Your Information
We may share your information with:
- Travel Providers: To facilitate your bookings and provide the requested services.
- Service Providers: Third-party partners who assist in processing payments, analyzing data, and delivering services.
- Legal Authorities: As required by law or to protect our rights, safety, and property.
5. Your Rights
Under GDPR and applicable laws, you have certain rights:
- Access: You can request access to your personal information.
- Rectification: You can request corrections to inaccurate or incomplete data.
- Erasure: You can request deletion of your data under certain circumstances.
- Objection: You can object to processing based on legitimate interests.
- Data Portability: You can receive your data in a structured format for transfer to another data controller.
6. Security Measures
We implement security measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction.
7. International Data Transfers
Your personal information may be transferred to and processed in countries outside the European Economic Area (EEA). We ensure adequate safeguards for such transfers.
8. Data Retention
We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.
9. Updates to this Policy
We may update this Privacy Policy to reflect changes in our practices. We will notify you of significant changes.
10. Contact Us
If you have questions or concerns about your privacy or this Privacy Policy, please contact us at info@ddymanagement.com.
