Effective Date: [17-04-2026]
Last Updated: [17-04-2026]

  1. Introduction

This Privacy Policy explains how Tour Passion (“Company”, “we”, “our”, or “us”) collects, uses, discloses, and safeguards your personal data when you use our website, services, or communicate with us.

We are committed to protecting your personal data and ensuring full compliance with the General Data Protection Regulation (GDPR) and applicable European data protection laws.

Our services include ground transportation, chauffeur services, airport transfers, and destination management services across Europe, primarily for B2B clients such as travel agencies, tour operators, and corporate travel planners.

  1. Data Controller Information

Tour Passion : Click Here
VAT Number : Click Here

Privacy Contact : Click Here

For all data protection inquiries, requests, or concerns, you may contact our Data Protection Team using the email above.

  1. Scope of This Policy

This Policy applies to personal data collected through:

Our websites and landing pages
Booking, inquiry, and contact forms
Email, phone, and customer support communications
Partner platforms, APIs, and integrations
Third-party booking or affiliate platforms

We may also process traveler data provided by our B2B clients to deliver booked services.

  1. What Is Personal Data?

“Personal Data” means any information that identifies or can be used to identify an individual, directly or indirectly.

This includes:

Full name
Email address
Phone number
Company name
Billing and invoicing details
Travel and booking information (pickup, drop-off, itinerary)

  1. Personal Data We Collect
    5.1 Information You Provide Directly

We collect personal data when you:

Request a quote or make a booking
Contact us via forms, email, or phone
Use our services as a client or partner

This may include:

Contact details
Company information (for B2B clients)
Passenger and travel details
Special service requirements
Communication history

5.2 Information Collected Automatically

When you visit our website, we may collect:

IP address
Browser type and version
Device information
Pages visited and session behavior
Date and time of access

This data helps us improve website performance, security, and user experience.

5.3 Information from Third Parties

We may receive personal data from:

Travel agencies and tour operators
Affiliate and booking platforms
Payment service providers
Marketing and analytics partners

  1. How We Use Your Personal Data

We process your personal data for the following purposes:

a. Service Delivery (Contractual Necessity)
Process and manage bookings
Coordinate transportation and logistics
Communicate travel updates and confirmations
b. Customer Support (Legitimate Interest)
Respond to inquiries and support requests
Handle complaints and service issues
c. Business Operations (Legitimate Interest)
Maintain records and internal systems
Improve service quality and operational efficiency
d. Marketing & Communication (Consent)
Send relevant offers and updates
Provide personalized service recommendations

You may opt out of marketing communications at any time.

  1. Legal Basis for Processing (GDPR)

We process personal data under the following legal bases:

Contractual Necessity – to fulfill bookings and services
Legitimate Interests – to improve services and operations
Consent – for marketing communications and cookies
Legal Obligations – to comply with applicable laws and regulations

  1. Sharing of Personal Data

We may share your personal data with:

a. Service Providers
Chauffeurs, transport companies, and logistics partners
Hotels or third-party vendors (if required for service delivery)
b. Business Partners
Travel agencies, DMC partners, and affiliates
c. Payment Providers
Secure, PCI-DSS compliant third-party payment processors
We do not store full credit/debit card details
d. Legal Authorities
When required by law or to prevent fraud or illegal activity

All third parties are contractually obligated to protect your data.

  1. International Data Transfers

As a global service provider, your personal data may be transferred outside the European Economic Area (EEA).

Where such transfers occur, we ensure appropriate safeguards, including:

Standard Contractual Clauses (SCCs) approved by the European Commission
Transfers to countries with adequate data protection laws
GDPR-compliant agreements with partners

  1. Data Retention

We retain personal data only for as long as necessary for:

Service delivery and contractual obligations
Legal, tax, and accounting requirements
Business and operational purposes

When data is no longer required, it is securely deleted or anonymized.

  1. Data Security

We implement appropriate technical and organizational measures, including:

Secure servers and encrypted connections (SSL)
Restricted access to personal data
Internal data protection policies
Regular monitoring and security updates

Only authorized personnel can access personal data.

  1. Data Breach Policy

In the event of a data breach, we will:

Notify relevant authorities as required under GDPR
Inform affected users where there is a risk to their rights and freedoms
Take immediate steps to mitigate and resolve the issue

  1. Your Rights Under GDPR

You have the right to:

Access your personal data
Correct inaccurate or incomplete data
Request deletion (“Right to be Forgotten”)
Restrict or object to processing
Withdraw consent at any time
Request data portability

You also have the right to lodge a complaint with your local data protection authority.

To exercise your rights, contact us at: – Click Here

  1. Cookies & Tracking Technologies

We use cookies and similar technologies to enhance your browsing experience.

Types of Cookies We Use:
Essential Cookies – Required for website functionality
Analytics Cookies – To analyze traffic and usage
Marketing Cookies – To deliver relevant advertisements

We use a GDPR-compliant cookie consent banner, allowing users to:

Accept or reject non-essential cookies
Manage cookie preferences at any time

For full details, please refer to our Cookie Policy.

  1. Children’s Privacy

Our services are intended for business use and are not directed at individuals under the age of 16.

We do not knowingly collect personal data from children.

  1. Updates to This Privacy Policy

We may update this Privacy Policy periodically to reflect:

Legal or regulatory changes
Service updates
Operational improvements

We encourage you to review this page regularly.