Privacy Policy

1. Introduction and Controller Information

Follow Me Viagens ("we," "our," or "us") is committed to protecting your privacy and personal data. We are an international travel agency specializing in Maldives resort packages for customers worldwide.

As a data controller, we determine the purposes and means of processing your personal data in accordance with applicable data protection laws including the European General Data Protection Regulation (GDPR) and other relevant privacy legislation.

2. Scope and Legal Basis

This Privacy Policy applies to all personal data we collect and process when you:

• Visit our website
• Contact us via WhatsApp, email, or phone
• Book travel services with us
• Use our customer support services

Legal Basis for Processing:

• Contract Performance: Processing necessary to fulfill your travel booking
• Legitimate Interest: Business communications and service improvement
• Legal Obligation: Compliance with applicable tourism regulations and international travel requirements
• Consent: Marketing communications and optional services (where obtained)

3. What Personal Data We Collect

3.1 Booking and Travel Information

• Identity Data: Full name, date of birth, nationality, passport details
• Contact Information: Email address, phone number, WhatsApp number, mailing address
• Travel Preferences: Dietary requirements, accessibility needs, special occasions
• Emergency Contacts: Name and contact details of emergency contact person
• Payment Information: Payment method details, billing address (processed securely through our payment processors)

3.2 Communication Data

• WhatsApp Messages: Booking inquiries, preferences, and support communications
• Email Communications: Booking confirmations, travel documents, service updates
• Phone Records: Customer service calls and booking consultations

3.3 Technical Data

• Website Usage: IP address, browser type, device information, pages visited
• Cookies: Essential cookies for website functionality and analytics cookies (with consent)
• Location Data: General location for service personalization (with consent)

3.4 Special Categories of Personal Data

With your explicit consent, we may process:

• Health Information: Medical conditions, dietary restrictions, mobility requirements
• Biometric Data: Passport photos for visa applications (when applicable)

4. How We Use Your Personal Data

4.1 Primary Purposes

Travel Service Provision:

• Process and fulfill your Maldives resort bookings
• Arrange international flights via our consolidator partners
• Coordinate airport transfers and ground transportation
• Provide pre-travel and during-travel customer support
• Issue travel insolvency protection certificates

Legal and Regulatory Compliance:

• Comply with applicable tourism regulations and requirements
• Meet airline and resort partner data sharing requirements
• Provide travel insolvency protection as required by applicable laws
• Assist with visa applications and travel documentation

4.2 Secondary Purposes

Business Operations:

• Improve our services based on customer feedback
• Conduct internal analytics and reporting
• Prevent fraud and ensure payment security
• Maintain business records for accounting and legal purposes

Marketing Communications (with consent):

• Send promotional offers for future travel opportunities
• Share travel tips and destination information
• Conduct customer satisfaction surveys

5. Data Sharing and International Transfers

5.1 Service Providers and Partners

We share your personal data with trusted third parties to fulfill your travel bookings:

Essential Travel Partners:

• Airlines: Qatar Airways, Emirates, Turkish Airlines (for flight bookings)
• Maldives Resorts: Resort properties for accommodation arrangements
• Transfer Providers: Speedboat and seaplane operators in the Maldives
• Payment Processors: Stripe for secure payment processing
• Travel Insurance: TMU Management or similar providers for insolvency protection

Technology Partners:

• Amadeus: Global distribution system for flight bookings
• WhatsApp Business: Customer communications (Meta/Facebook)
• Email Services: Booking confirmations and customer support
• Website Hosting: Secure data storage and website functionality

5.2 International Data Transfers

Your personal data may be transferred to and processed in:

European Union:

• For customers from Germany, Sweden, Denmark, and Norway
• Adequate protection under GDPR adequacy decisions
• Additional safeguards through Standard Contractual Clauses where needed

Maldives:

• Resort bookings and customer service
• Protected through appropriate safeguards and contractual protections

United States:

• Payment processing (Stripe) and technology services
• Protected through adequacy decisions and certified providers

Legal Transfers:

We may transfer data when required by law, court orders, or to protect our rights and safety.

6. Data Retention

We retain your personal data only as long as necessary for the purposes outlined in this policy:

Travel Bookings:

• Active Bookings: Until travel is completed plus 2 years for customer service
• German Customers: 6 years as required by German insolvency protection laws
• Payment Records: 10 years for tax and accounting requirements
• Travel Insurance Records: 7 years for claim processing and regulatory compliance

Marketing Communications:

Until you withdraw consent or 3 years of inactivity

Website Analytics:

2 years for performance analysis and improvement

7. Your Data Protection Rights

7.1 Rights Under GDPR (EU Customers)

• Right to Access: Request copies of your personal data
• Right to Rectification: Correct inaccurate or incomplete information
• Right to Erasure: Request deletion of your data (subject to legal obligations)
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in a structured format
• Right to Object: Object to processing for marketing or legitimate interests
• Right to Withdraw Consent: Withdraw consent for optional processing

7.2 Additional Rights Under Applicable Privacy Laws

• Right to Confirmation: Confirm existence of data processing
• Right to Access: Obtain information about processing activities
• Right to Correction: Rectify incomplete or inaccurate data
• Right to Anonymization: Request anonymization of data
• Right to Portability: Transfer data to another service provider
• Right to Elimination: Request deletion of data
• Right to Information: Understand data sharing practices
• Right to Withdraw Consent: Revoke consent for processing

7.3 How to Exercise Your Rights

Contact us using any of these methods:

• Phone: +49 160 92150303
• Email: info@followmeviagens.com.br

We will respond to your request within the timeframes required by applicable privacy laws.

8. Data Security

We implement comprehensive technical and organizational measures to protect your personal data:

Technical Safeguards:

• SSL/TLS encryption for all data transmission
• Secure servers with regular security updates
• Multi-factor authentication for staff access
• Regular security audits and penetration testing
• Encrypted data storage and backup systems

Organizational Measures:

• Staff training on data protection principles
• Access controls limiting data access to authorized personnel only
• Regular review of data processing activities
• Incident response procedures for data breaches
• Contractual protections with all data processors

9. Cookies and Tracking Technologies

9.1 Essential Cookies

We use essential cookies that are necessary for website functionality:

• Session Management: Maintain your browsing session
• Security: Protect against fraudulent activity
• Load Balancing: Ensure optimal website performance

9.2 Analytics Cookies (with consent)

With your consent, we use analytics cookies to:

• Understand how visitors use our website
• Improve user experience and content
• Monitor website performance and errors

9.3 Managing Cookies

You can control cookies through your browser settings. However, disabling essential cookies may affect website functionality.

10. Data Breach Notification

In the unlikely event of a data breach affecting your personal data:

• We will notify relevant supervisory authorities within the timeframes required by applicable laws
• We will inform affected individuals without undue delay if there is a high risk to your rights and freedoms
• We will document all breaches and remedial actions taken

11. Children's Privacy

Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal data from children. If you become aware that a child has provided us with personal data, please contact us immediately.

12. Contact Information and Complaints

12.1 Data Protection Contact

For privacy-related inquiries:

• Email: info@followmeviagens.com.br
• Phone: +49 160 92150303

12.2 Supervisory Authorities

You have the right to lodge a complaint with relevant supervisory authorities:

13. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or applicable laws. We will:

• Post the updated policy on our website with the new effective date
• Notify you by email for material changes
• Obtain your consent for changes that materially affect your rights

14. Language and Jurisdiction

This Privacy Policy is available in multiple languages including English, German, Swedish, Danish, and Norwegian. In case of conflicts between versions:

• English version governs for international customers
• Local language versions may apply for specific jurisdictions as required by law