GDPR

General Data Protection

From May 25, 2018 comes live General Data Protection Regulation for gathering, processing and free transfer of personal data.

In connection with the the above we Kindly inform, that Your personal data are stored in our database and we took all care to ensure their safety. We’d also like to inform You of the informations below:

  • I. The Controller of Personal Data is eTravel S.A., contact: Al. Jerozolimskie 142B, 02-305 Warsaw, +48 22 492 08 60, rodo@etravel.pl
  • II. Data Protection Supervisor: Mirosław Bohun, 16 10 Lutego street, 81-364 Gdynia, tel. +48 22 492 0805, rodo@etravel.pl
  • III. Providing data is voluntary and the purpose of processing personal data is
  • a) the execution of orders for tourist services
  • b) the implementation of marketing and promotional activities
  • c) the distribution of announcements
  • d) the implementation of the controller’s legal obligations
  • IV. The basis for data processing is the consent obtained from you, the implementation of the concluded agreement or the legally justified interest of the Controller.
  • V. The recipients of personal data, that the Controller provides or entrusts, are third parties within the recipient categories such as: travel agents and suppliers, airlines, hotel chains, hotels, car rental companies, railway service providers, shipowners, companies providing personal transport services, insurance companies, reservation system providers, visa brokers, financial institutions involved in payment processing, subsidiaries of the eTravel capital group and other necessary to execute orders.
  • VI. Personal data will be transferred to third countries or an international organization, including those outside the European Economic Area if it is required to execute the ordered tourist service.
  • VII. Personal data will be stored for 6 years from the date of the last order. After this date, deletion or anonymisation will be performed (encryption preventing identification of the data owner).
  • VIII. The data owner has the right to access personal data, to demand it’s amendment, removal or limitation of processing, the right to object to the processing, the right to transfer data.
  • IX. The data owner has the right to withdraw his consent at any time.
  • X. The data owner has the right to lodge a complaint with the supervisory authority.
  • XI. The Controller obtained personal data directly from the data subject or from a third party authorized by him or her.
  • XII. Providing personal data is a requirement for completing the order for the booking and purchase of tourist services. If the personal information is not provided, the Controller cannot execute the order.