This policy describes how Immersi Travel, an immersive tourism agency in Morocco, collects, uses and protects your personal data when you use the immersi-travel.com website. We are committed to complying with the General Data Protection Regulation (GDPR) as well as applicable Moroccan laws (Law No. 09-08 on the protection of individuals with regard to the processing of personal data).
1. Data controller
The person responsible for processing your personal data is Immersi Travel, an immersive tourism agency based in Agadir, Morocco. If you have any questions about your personal data, please contact us at [email protected].
2. Collected data
We collect only the data necessary for the purposes described below: - Identification data: surname, first name, email address, telephone number (when booking or contacting us) - Booking data: activity chosen, date, number of participants, preferences - Payment data: processed exclusively by our service provider PayPal, we do not store any credit card numbers. - Technical data: IP address, browser type, pages visited, length of visit (only with your consent for audience measurement cookies) - Customer feedback: ratings and comments you give us after an activity.
3. Purpose and legal basis
Your data is used for the following purposes: - Processing your reservation and executing the service contract (basis: contract execution) - Sending you confirmations, reminders and practical information relating to your stay (basis: performance of the contract) - Respond to your contact requests (basis: legitimate interest) - Improve our site and services by means of anonymized statistics (basis: consent) - Meet our legal and accounting obligations (basis: legal obligation) - Send you, after your stay, suggestions for complementary activities during your stay in Morocco (basis: legitimate interest, opt-out at any time)
4. Shelf life
We keep your data only for as long as is strictly necessary: - Booking data: 5 years from the date of service (Moroccan accounting obligations) - Contact data (form, email): 3 years from last exchange - Audience measurement data (analytics cookies): 13 months maximum (CNIL recommendation) - Customer reviews: duration of site display, anonymization possible on request
5. Data recipients
Your data is intended for Immersi Travel's internal teams and, within the limits of their services, for our technical subcontractors: - PayPal: payment processing (https://www.paypal.com/fr/legalhub/privacy-full) - Brevo: sending of transactional emails (https://www.brevo.com/legal/privacypolicy/) - Oracle Cloud (Marseille region, France): hosting - Cloudflare R2: media storage - Sentry: technical error monitoring (only with your consent) Our local partners (guides, craftsmen, accommodation providers) receive only the minimum information required to carry out your activity (first name, number of participants, schedule).
6. Transfers outside the European Union
Some of your data may be transferred to Morocco (Immersi Travel headquarters and its local service providers). These transfers are governed by the appropriate guarantees (Article 46 RGPD) and limited to what is strictly necessary to carry out your booking.
7. Your rights
In accordance with the RGPD (articles 15 to 22) and Moroccan law 09-08, you have the following rights: - Right of access to your data - Right of rectification - Right to erasure ("right to be forgotten") - Right to limit processing - Right to portability - Right to object - Right to withdraw consent at any time (without retroactive effect) To exercise these rights, please write to us at [email protected]. We will reply within one month. If you feel that your rights have not been respected, you can lodge a complaint with the CNIL (www.cnil.fr) in France, or the CNDP (www.cndp.ma) in Morocco.
8. Security
We implement appropriate technical and organizational measures to protect your data: TLS encryption throughout the site, access restricted to authorized personnel, logging of admin access, regular encrypted backups, two-factor authentication on sensitive accounts.
9. Cookies
The site uses various types of cookies, some of which require your consent. For details of the cookies used, their purpose and duration, please consult our dedicated cookie policy, accessible from the footer.
10. Modifications
We may change this policy from time to time. The date of the last update is indicated at the top of this page. In the event of substantial modification, we will inform you by an appropriate means (information banner, email).