1. Introduction

This policy outlines the commitment of My Divine Tours (“we,” “us,” or “our”) to protecting the personal data of our customers, especially those covered by the General Data Protection Regulation (GDPR) of the European Union. This policy applies to all personal data processed by us, ensuring that we are compliant, transparent, and respectful of your privacy rights.

Our contact for data protection inquiries is care@mydivinetours.com.

2. What is Personal Data?

Personal data is any information that relates to an identified or identifiable individual. This includes, but is not limited to, your name, email address, telephone number, booking details, and IP address.

3. Lawful Basis for Processing

We only process your personal data when we have a lawful basis to do so. Our lawful bases for processing include:

  • Contract: To fulfill our contractual obligations when you book a tour or service with us (e.g., arranging your transport, coordinating with drivers).
  • Consent: Where you have given us explicit consent to use your personal data for a specific purpose (e.g., subscribing to a newsletter).
  • Legal Obligation: To comply with our legal and regulatory obligations.
  • Legitimate Interests: Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.

4. Your Data Protection Rights Under GDPR

If you are a resident of the European Economic Area (EEA), you have the following data protection rights:

  • The right to access: You have the right to request copies of your personal data from us.
  • The right to rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
  • The right to erasure (The right to be forgotten): You have the right to request that we erase your personal data, under certain conditions.
  • The right to restrict processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.
  • The right to object to processing: You have the right to object to our processing of your personal data, under certain conditions.
  • The right to data portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.

To exercise any of these rights, please contact us at care@mydivinetours.com. We will respond to your request within one month.

5. Data Security

We are committed to ensuring the security of your personal data. We have implemented appropriate technical and organizational measures to protect your data from unauthorized access, alteration, disclosure, or destruction.

6. Data Transfers

As an Indian company, your data is processed in India. If you are booking from the EEA, your data will be transferred outside of the EEA. We take all necessary steps to ensure that your data is treated securely and in accordance with this privacy policy and GDPR requirements.

7. Data Breach Notification

In the unlikely event of a data breach that is likely to result in a high risk to your rights and freedoms, we will notify you and the relevant supervisory authority without undue delay.

8. How to Complain

If you have any concerns about our use of your personal information, you can make a complaint to us at care@mydivinetours.com.

If you are a resident of the EEA and are unhappy with our response, you have the right to complain to your local data protection authority.

This policy is designed to be a clear and transparent guide to our data protection practices under GDPR. For more general information on how we handle your data, please also refer to our main Privacy Policy.