Privacy policy

Privacy policy Discovery Collective

PRIVACY STATEMENT 

Privacy is just as important to you as it is to us. That is why you can find the most important issues surrounding privacy right here. The privacy policy applies, to (i) our website: www.thecalirally.org and (ii) all associations between Buddha Events BVBA and its customers, prospects, business partners, travel professionals and journalists in our databases.

We strive to act responsibly in gathering, use and protection of your personal data. We value a great importance to your privacy and therefore request that you read the explanations below.

We describe following topics:

  • Which types of personal date, or personal  we collect and for what purposes;

  • Why we may share personal information with other organizations;

  • How you can exert your rights in relation to your personal data (accuracy, portability and forgetfulness). 

We have also included a section in which we define certain concepts so that you can understand our privacy policy better.

 

SECTION 1 – WHAT DO WE DO WITH YOUR INFORMATION? 

When you browse our store, we also automatically receive your computer’s internet protocol (IP) address in order to provide us with information that helps us learn about your browser and operating system. 

Email marketing (if applicable): With your permission, we may send you emails about our store, new products and other updates. 

 

1.1. Processing of personal data


We collect the following personal data: 

When you subscribe to our newsletter:

  • your email address

  • identification data

 

When you surf on our website (which cookies):

  • your travel preferences;

  • information about your online internet behavior on our website;

  • information about clicking on our ads, even if they are published on websites of other organizations;

  • information about how you use our digital services, such as your operating system, IP address, online identifiers and information about your browser;

  • your interests and activities.

 

When you request an enquiry:

  • identification data that you provide us with;

  • ID information about your desired insurance policies;

  • ID information about the passengers, such as their age and the number of accompanying children;

  • information about your purchases, including what you want to buy, when you want to buy and your budget;

  • information about clicking on our advertisements, even if they are published on websites of other organizations;

  • information about how you use our digital services, such as your operating system, IP address, online identifiers and information about your browser;

  • your consumption habits in the choices you make in your enquiry.

 

When you contact us regarding promotions, online competitions or when you ask us for information, we may collect:

  • the personal data you provide when you contact us by e-mail, by post and by telephone or on social networks, such as your name, your user name and your contact details;

  • details of e-mails and other digital messages that we have sent you and that you have opened, including links you clicked on;

  • your feedback and responses to customer satisfaction surveys regarding the trips you have made.

 

When you make a trip organized by us:

  • information about passengers, passport information and any other information about identity documents;

  • relevant medical data and special requests (in connection with nutrition, religious belief or disability);

  • information about your purchases, including what you purchased, when and where you purchased it, how you have paid and your credit card details or other payment details;

  • information about clicking on our advertisements, even if they are published on websites of other organizations;

  • information about how you use our digital services, such as your operating system, IP address, online identifiers and information about your browser;

  • your interests and activities.

 

Other sources of personal data:

  • your insurance company, its employees and its medical staff can exchange relevant personal data with us, as well as special categories of personal information if we are required to act on your behalf in the interest of other customers or in case of emergency.

  • If you sign up for our platforms and online services with the data you use for social networks, eg Facebook, Instagram, Google+ and Twitter, you agree to share your user data with us, as well as other information that you knowingly share with us.

 

Personal data you provide about other persons:

  • we collect personal information you provide about other persons, for example persons for whom you book.

  • if you provide personal data of other persons, you must obtain their permission to provide their personal data. If necessary, you must also ensure that they understand well how we can use their personal data.

 

1.2. Purposes for which we use your personal data

 

You purchase products and services that you order from us

Management and improvement of our products and services and the way we manage your personal data

We use personal data to manage and improve our products and websites.

We supervise the use of our services so that we can protect your personal data and detect and prevent fraud, other offenses and misuse of our services. In this way we ensure that you can use our services safely.

We may use personal data to act in case of accidents or other similar incidents, including for medical and insurance purposes.

 

1.3. Personal Offers

 

In order to meet your needs the best, we want to present you personal offers and advertisements in connection with our products and those of our distribution partners. In that context, we may use your personal data to gain a better understanding of the products, services and information that interest you most so that we can provide you with the information that is most interesting to you.

By giving us an idea of your purchases, we can offer you targeted promotions and services.

 

1.4. In our communication with you

 

In order to always offer you as our customer the best possible services, we can, for example by e-mail, by post, by telephone or via social networks contact us, use your personal data to answer your questions.

We must process your personal data in the context of the management of our newsletters to which you have subscribed.

We can ask you to fill in customer satisfaction surveys about the services you have ordered from us.

You can unsubscribe at any time for a newsletter to which you have subscribed, via the appropriate link at the bottom of each newsletter or by contacting our data protection department.

We do not sell your personal data to third parties.

 

1.5. Marketing communications

 

Depending on the newsletters you have subscribed to, you will receive two types of newsletters via e-mail:

  • ‘informative’ newsletters

  • ‘marketing newsletters’

We only send these newsletters if you have accepted marketing messages in advance or if you are already a customer.

When you make a reservation or when you subscribe to our services, we ask you if you wish to receive marketing messages.

You can unsubscribe at any time for a newsletter to which you have subscribed via the link provided for each newsletter or by contacting our data protection department

You may continue to receive announcements from us, such as confirmations of reservations at our agency and important information about the use of our products or services.

 

1.6. Exchange of personal data with service providers and distribution partners

 

When you order products or services from us, we sometimes have to share your personal data with the service providers for certain practical travel aspects, such as tour operators, airlines, hotels, but also transport companies.

We also work together with selected subcontractors who perform certain tasks on our behalf. For example, these companies are engaged in IT infrastructure services, data storage and retention, payment processing and the delivery of products and services. 

It is possible that we share personal data for legal reasons and that personal data are therefore provided to third parties in order to prevent fraud and limit the credit risk.

If we share personal data with other organisations, we ask them to secure this data and not to use it for their own purposes. These organisations must also ensure that they comply with the European General Data Protection Regulation (AVG).

We only provide our service providers and distribution partners with the personal data that are strictly necessary to provide you / us with their services.

 

1.7. Exchange of personal data with the supervisory authorities

 

In the context of your trip, the disclosure and processing of your personal data are sometimes mandatory (according to the requirements of the government at the place where you leave and / or arrive) for immigration purposes, with a view to border controls, with a view to safety and the fight against terrorism, or for other purposes that the authorities deem appropriate.

Certain countries only allow travel if they have information about the passengers in advance. Such requirements may vary depending on your destination. We advise you to check them. Even when they are not required, we will help you if necessary.

We may share strictly necessary personal data with other government agencies if this is required by law or if we have the judicial authorization for this.

 

1.8. Protection of personal data

 

In the management of your personal data, we make every effort to protect them using the safety guidelines recommended by the AVG.

It is possible that your personal data is managed, stored or processed outside the European Economic Area. In that case we only work together with subcontractors who assure us that they comply with the AVG.

 

1.9. Storage of personal data

 

We keep your personal data within the context of managing your orders and with a view to compliance with the Belgian law (for example: financial and accounting data must be retained for at least seven years according to Belgian law).

Link to social networking sites

Social network sites that may be connected to our website or that you have used to communicate with us have their own privacy policies. We advise you to consult it.

 

1.10.Right to transfer and correct your personal data and complaints

 

According to the AVG, you have the right to request a copy of your personal data that we have. You can contact us by letter.

In that case we need as much information as possible to prove your identity, so that we can deliver your data safely. As long as you do not request more than one copy, your data will be delivered free of charge.

It is important to us that your personal information that we have available is correct and up-to-date. Do not hesitate to contact us if one of your details is incorrect.

You also have the right to have your personal data corrected or erased (right to forget), to refuse to process your personal data and, if technically possible, to request that the personal data you have provided be transferred to another organisation.

We will update or delete your data unless we are required to keep them for legitimate commercial or legal purposes.

If you have complaints about the way in which Discovery Collective collects, uses and / or processes your personal data, you can submit a complaint to the Belgian Privacy Commission (www.privacycommission.be). Or you can contact us through: 

By email: info@discoverycollective.com

By letter: Discovery Collective – Vlamingstraat 4, 8560 Wevelgem, Belgium

 

1.11.Legal basis for the processing of personal data

 

The accumulation and processing of your personal data must be based on a legal basis. We therefore only collect or process your personal data in the following cases:

Example: if you subscribe to one of our newsletters. If you subscribe, you give us permission to process your personal data.

Example: to provide you with the requested products and services. The processing of your personal data in the context of the management of your reservation file, to provide you the products and services you want to buy, and to help you in the context of an order or a refund.

Example: exchange of personal data with the supervisory authorities. If you are traveling, your personal data (according to the requirements of the government at the place where you leave and / or arrive) must sometimes be communicated for immigration purposes, with a view to border controls, with a view to security and the fight against terrorism, or for other purposes which the authorities consider appropriate.

Example: in case of emergency. Your insurance company, its employees and its medical staff can exchange relevant personal data with us, as well as special types of personal data if we are required to act on your behalf in the interests of other customers or in case of emergency.

Example: safety actions.
We may use personal data to respond to safety actions, accidents or other similar incidents, including for medical and insurance purposes.

Example: to be able to offer you personal products based on your experience.
We may use your personal data to anticipate new offers that meet your interests and needs better. This way we can make our communication more personal, focused and as interesting as possible for you.

  • We have your permission (admission);

  • We have a contract together;

  • We must comply with a legal obligation;

  • “Vital interests” may be invoked to protect you or other persons;

  • It concerns the general interest whether we have official authorization;

  • It concerns our legitimate interests or those of a third party, which are not canceled out by your interests or rights.

 

If we have to process a special type of personal data, for example information about your health for medical reasons, we will only do so if one or more conditions apply.

Examples: we have your explicit permission; it is necessary to protect your vital interests or those of others and you are physically or legally incapable of granting your consent; it is necessary to prepare, execute or defend legal requests; it is necessary for weighty reasons of public interest.

 

1.12.Version of the privacy policy

 

This privacy policy can be changed at any time in case of changes in our work processes, new processing purposes or changes to the legislation.

This version cancels all previous versions.

 

1.13. Concepts to understand the privacy policy better

 

Processing officer: the person responsible for the processing determines the purposes and processes for the use of the personal data.

European Economic Area: the member states of the EU, Norway, Iceland and Liechtenstein.

Special personal data categories: data that belong to the categories mentioned in the European AVG.

They concern to:

  • race or ethnic origin;

  • political views;

  • religion or ideological beliefs;

  • membership of a trade union;

  • genetic data;

  • biometric data with a view to the unique identification of a natural person;

  • data on health;

  • data on sexual behaviour or the sexual orientation of a natural person.

 

SECTION 2 – CONSENT 

How do you get my consent? 

When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, we imply that you consent to our collecting it and using it for that specific reason only. 

If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to say no. 

How do I withdraw my consent? 

If after you opt-in, you change your mind, you may withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at anytime, by contacting us at info@thecalirally.org or mailing us at: 

Discovery Collective 

Vlamingstraat 4, 8560 Wevelgem 

 

SECTION 3 – DISCLOSURE 

We may disclose your personal information if we are required by law to do so or if you violate our Terms of Service. 

 

SECTION 4 – THIRD-PARTY SERVICES 

In general, the third-party providers used by us will only collect, use and disclose your information to the extent necessary to allow them to perform the services they provide to us. 

However, certain third-party service providers, such as payment gateways and other payment transaction processors, have their own privacy policies in respect to the information we are required to provide to them for your purchase-related transactions. 

For these providers, we recommend that you read their privacy policies so you can understand the manner in which your personal information will be handled by these providers. 

In particular, remember that certain providers may be located in or have facilities that are located a different jurisdiction than either you or us. So if you elect to proceed with a transaction that involves the services of a third-party service provider, then your information may become subject to the laws of the jurisdiction(s) in which that service provider or its facilities are located. 

As an example, if you are located in Canada and your transaction is processed by a payment gateway located in the United States, then your personal information used in completing that transaction may be subject to disclosure under United States legislation, including the Patriot Act. 

Once you leave our store’s website or are redirected to a third-party website or application, you are no longer governed by this Privacy Policy or our website’s Terms of Service. 

Links 

When you click on links on our store, they may direct you away from our site. We are not responsible for the privacy practices of other sites and encourage you to read their privacy statements. 

 

SECTION 5 – SECURITY 

To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed. 

If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption.  Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards. 

 

SECTION 6 – AGE OF CONSENT 

By using this site, you represent that you are at least the age of majority in your state or province of residence, or that you are the age of majority in your state or province of residence and you have given us your consent to allow any of your minor dependents to use this site. 

 

SECTION 8 – CHANGES TO THIS PRIVACY POLICY 

We reserve the right to modify this privacy policy at any time, so please review it frequently. Changes and clarifications will take effect immediately upon their posting on the website. If we make material changes to this policy, we will notify you here that it has been updated, so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we use and/or disclose it. 

If our store is acquired or merged with another company, your information may be transferred to the new owners so that we may continue to sell products to you.