← Back to Home

Privacy Policy

Last updated: January 15, 2025

1. Introduction

The Travel Blueprint ("we," "our," or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, process, and protect your information in compliance with the General Data Protection Regulation (GDPR) and other applicable privacy laws.

2. Data Controller

The Travel Blueprint acts as the data controller for personal data collected through our services. You can contact our Data Protection Officer at [email protected] for any privacy-related inquiries.

3. Information We Collect

3.1 Personal Data

We collect the following types of personal data:

• Contact Information: Name, email address, phone number
• Travel Preferences: Destination interests, budget ranges, travel dates
• Communication Data: Messages, consultation notes, preferences discussed
• Technical Data: IP address, browser type, device information

3.2 How We Collect Data

We collect personal data through:

• Contact forms on our website
• Email communications
• Phone consultations
• Website analytics (with consent)

4. Legal Basis for Processing

We process your personal data based on the following legal grounds:

• Consent: When you explicitly consent to processing (e.g., marketing communications)
• Contract Performance: To provide travel planning services you've requested
• Legitimate Interest: To improve our services and website functionality
• Legal Obligation: To comply with applicable laws and regulations

5. How We Use Your Information

We use your personal data to:

• Provide travel planning and consultation services
• Communicate about your travel plans and our services
• Process payments and maintain records
• Improve our website and services
• Send marketing communications (with your consent only)
• Comply with legal obligations

6. Data Sharing and Third Parties

We may share your personal data with:

• Service Providers: Trusted third parties who assist in delivering our services (hotels, tour operators, etc.)
• Technology Partners: Website hosting, email services, analytics providers
• Legal Authorities: When required by law or to protect our rights

We never sell your personal data to third parties.

7. International Data Transfers

Some of our service providers may be located outside the European Economic Area (EEA). When we transfer your data internationally, we ensure appropriate safeguards are in place, including:

• Adequacy decisions by the European Commission
• Standard Contractual Clauses
• Binding Corporate Rules

8. Data Retention

We retain your personal data only as long as necessary for the purposes outlined in this policy:

• Client Records: 7 years after service completion for business and tax purposes
• Marketing Data: Until you withdraw consent or we determine it's no longer needed
• Website Analytics: 26 months maximum

9. Your Rights Under GDPR

You have the following rights regarding your personal data:

• Right of Access: Request copies of your personal data
• Right to Rectification: Correct inaccurate personal data
• Right to Erasure: Request deletion of your personal data
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in a structured format
• Right to Object: Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent at any time

10. Exercising Your Rights

To exercise any of your rights, please contact us at [email protected]. We will respond within one month of receiving your request. You also have the right to lodge a complaint with your local data protection authority.

11. Cookies and Tracking

Our website uses cookies to enhance your experience. Please see our Cookie Policy for detailed information about the cookies we use and how to manage your preferences.

12. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including:

• Encryption of data in transit and at rest
• Regular security assessments
• Access controls and authentication
• Staff training on data protection

13. Children's Privacy

Our services are not directed to children under 16. We do not knowingly collect personal data from children under 16 without parental consent.

14. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes via email or website notification. The updated policy will be effective immediately upon posting.

15. Contact Information

For questions about this Privacy Policy or data protection matters:

• Email: [email protected]
• Data Protection Officer: [email protected]

This Privacy Policy complies with GDPR requirements and is designed to protect your privacy while allowing us to provide excellent travel planning services.