1. INFORMATION WE COLLECT

APU RETREATS may collect personal information including, but not limited to:

• Full name
• Nationality
• Passport or identification number
• Date of birth
• Email address
• Phone number
• Emergency contact information
• Billing and payment information
• Travel preferences
• Dietary restrictions or allergies voluntarily provided
• Medical information voluntarily provided when relevant to travel activities
• Photos, videos, or audiovisual material collected during activities
• Website usage information and communication records

2. PURPOSE OF DATA COLLECTION

Personal information may be collected and processed for the following purposes:

• Managing reservations and bookings
• Organizing tours, retreats, transportation, and accommodations
• Providing customer support and travel assistance
• Sending confirmations, invoices, itineraries, and operational updates
• Processing payments and refunds
• Ensuring traveler safety and emergency coordination
• Improving services and customer experience
• Conducting internal administrative operations
• Complying with legal, tax, immigration, and regulatory obligations
• Sending promotional materials, newsletters, or marketing communications when authorized by the Client

3. LEGAL BASIS FOR PROCESSING

APU RETREATS processes personal data based on one or more of the following legal grounds:

• The Client’s consent
• The execution of travel services or contractual obligations
• Compliance with legal obligations
• Legitimate business interests related to tourism operations and customer service

4. DATA SHARING AND THIRD PARTIES

APU RETREATS may share personal information only when necessary for the provision of services with:

• Hotels and accommodation providers
• Airlines and transportation companies
• Tour guides and local operators
• Payment processors and financial institutions
• Insurance providers
• Government authorities or immigration entities when legally required
• Technology and communication service providers

All third parties are expected to handle personal information responsibly and in accordance with applicable privacy regulations.

APU RETREATS does not sell, rent, or trade personal data to third parties.

5. DATA STORAGE AND SECURITY

APU RETREATS implements reasonable administrative, organizational, and technical measures to safeguard personal information against:

• Unauthorized access
• Accidental loss
• Theft
• Misuse
• Alteration
• Disclosure
• Destruction

While reasonable efforts are made to protect personal information, no digital platform, transmission method, or storage system can be guaranteed to be completely secure.

6. DATA RETENTION

Personal information will be retained only for as long as necessary to:

• Fulfill the purposes described in this Policy
• Comply with legal and tax obligations
• Resolve disputes
• Enforce agreements
• Maintain operational and accounting records

After the retention period expires, personal data may be securely deleted or anonymized.

7. CLIENT RIGHTS

Subject to applicable laws, Clients may have the right to:

• Access their personal data
• Request correction or updating of inaccurate information
• Request deletion of personal data
• Withdraw consent for certain uses of information
• Object to certain processing activities
• Request limitation of data processing

Requests regarding personal data may be submitted through APU RETREATS’ official communication channels.

APU RETREATS may request identity verification before processing certain requests.

8. COOKIES AND WEBSITE TECHNOLOGIES

APU RETREATS’ website may use cookies or similar technologies to:

• Improve website functionality
• Analyze website traffic
• Enhance user experience
• Remember preferences
• Support marketing and analytics activities

Users may modify browser settings to reject cookies; however, some website functions may be affected.

9. INTERNATIONAL DATA TRANSFERS

Depending on the nature of the travel services provided, personal information may be transferred or accessed internationally by suppliers or partners located in different countries.

By using APU RETREATS’ services, the Client acknowledges and accepts such transfers when necessary for travel operations.

10. PHOTOGRAPHY AND AUDIOVISUAL CONTENT

During tours, retreats, or activities, APU RETREATS may capture photographs and videos for promotional, educational, or marketing purposes.

By participating in our services, Clients authorize the use of such images and recordings unless they expressly notify the Company in writing before the activity begins.

11. CHILDREN’S PRIVACY

APU RETREATS does not knowingly collect personal information from minors without the authorization of a parent or legal guardian.

Parents or guardians traveling with minors are responsible for providing valid consent where required.

12. POLICY UPDATES

APU RETREATS reserves the right to modify or update this Personal Data Protection Policy at any time.

Any updates will become effective upon publication through the Company’s official channels.

Clients are encouraged to review this Policy periodically.

13. CONTACT INFORMATION

For questions, concerns, or requests related to this Personal Data Protection Policy or the processing of personal information, Clients may contact APU RETREATS through its official communication channels.

Thank you for trusting APU RETREATS. Your privacy and personal information are important to us.