Privacy Policy

Last updated: January 2024

ebbingtnqo B.V. ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our travel planning services and visit our website ebbingtnqo.life.

Data Controller

ebbingtnqo B.V. is the data controller for the personal data we process. We are registered in the Netherlands with registration number 84253197 and VAT number NL697842531B178. Our registered address is Beukenlaan 275, 3553 XQ Utrecht, Netherlands.

Data Collection and Information We Gather

The data we collect includes personal information that you voluntarily provide to us when using our services, making enquiries, or visiting our website. This may include:

• Personal identification information (name, email address, phone number, postal address)
• Travel preferences and requirements
• Payment information and billing details
• Passport and visa information when required for travel bookings
• Communication records and correspondence
• Website usage data and analytics information
• Cookie and tracking technology data

How We Use Your Information

We explain how we use your information for the following purposes under various legal bases as required by GDPR:

• Service Provision: To provide travel planning services, make bookings, and manage your travel arrangements (Legal Basis: Contract Performance)
• Communication: To respond to your enquiries, provide customer support, and send service-related communications (Legal Basis: Contract Performance and Legitimate Interest)
• Payment Processing: To process payments and manage billing (Legal Basis: Contract Performance)
• Legal Compliance: To comply with legal obligations and regulatory requirements (Legal Basis: Legal Obligation)
• Marketing: To send promotional materials and travel offers, with your consent (Legal Basis: Consent)
• Website Improvement: To analyse website usage and improve our services (Legal Basis: Legitimate Interest)

Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds: contract performance when providing our services, legitimate interest for business operations and communications, legal obligation for compliance requirements, and consent for marketing communications and non-essential cookies.

Data Sharing and Disclosure

We may share your information with:

• Travel service providers (airlines, hotels, tour operators) to facilitate your bookings
• Payment processors to handle financial transactions
• Professional service providers (legal, accounting) under confidentiality agreements
• Government authorities when required by law
• Emergency contacts during travel emergencies

We do not sell, trade, or rent your personal information to third parties for marketing purposes.

International Data Transfers

As we provide international travel services, your data may be transferred to countries outside the European Economic Area (EEA). We ensure appropriate safeguards are in place, including adequacy decisions, standard contractual clauses, or other approved mechanisms under GDPR.

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. Generally, we retain customer data for up to 7 years after the completion of services for accounting and legal compliance purposes. Marketing consent data is retained until you withdraw consent.

Your Rights Under GDPR

As a data subject under GDPR, you have the following rights:

• Right of Access: Request a copy of your personal data
• Right of Rectification: Request correction of inaccurate data
• Right of Erasure: Request deletion of your data in certain circumstances
• Right to Restrict Processing: Request limitation of data processing
• Right to Data Portability: Request transfer of your data
• Right to Object: Object to processing based on legitimate interest
• Right to Withdraw Consent: Withdraw consent for processing at any time

Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your website experience, analyse usage patterns, and provide personalised content. You can manage your cookie preferences through your browser settings or our cookie consent tool. For detailed information, please see our Cookie Policy.

Data Security

We implement appropriate technical and organisational security measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These include encryption, secure servers, access controls, and regular security assessments. However, no internet transmission is completely secure, and we cannot guarantee absolute security.

Children's Privacy

Our services are not directed to children under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete such information promptly.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date. Your continued use of our services after such changes constitutes acceptance of the updated policy.

Contact Information

If you have any questions about this Privacy Policy, wish to exercise your rights, or need to contact us regarding data protection matters, please contact us using the following information:

Supervisory Authority

You have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) if you believe we have not handled your personal data in accordance with applicable data protection laws. Contact information for the supervisory authority can be found at autoriteitpersoonsgegevens.nl.

This Privacy Policy is governed by Dutch law and GDPR regulations. By using our services, you acknowledge that you have read and understood this policy.