+321 123 4567
[email protected]
CanaryVIP Logo
Product has been added to your basket.

Privacy Policy

1. Introduction

Welcome to CanaryVIP.com. Your privacy and the security of your personal data are of utmost importance to us. This Privacy Policy outlines the types of personal information we collect, how it is used, and the measures we take to ensure your personal information is handled securely and in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR).

2. Data Controller

In compliance with GDPR, the responsible entity for processing your personal data is:

  • Trading Name: CanaryVIP or CanaryVIP.com
  • Company Name: Comercio y Marketing Online SL
  • CIF: B76750876
  • Registered Address: Calle el Sauce 9, Santa Cruz de Tenerife, Spain
  • Email for Privacy Inquiries: [email protected]

3. Legal Basis for Processing Data

In compliance with Article 6 of the GDPR, CanaryVIP processes personal data based on the following legal grounds:

3.1 Contractual Necessity (Art. 6.1.b GDPR)

We process personal data when necessary to execute a contract or take pre-contractual steps at the user’s request, including:

  • Processing bookings and managing reservations.
  • Providing customer support related to booked services.
  • Managing cancellations, refunds, or itinerary modifications.

3.2 User Consent (Art. 6.1.a GDPR)

When required by law, we obtain explicit consent before processing personal data. This applies to:

  • Sending promotional emails, newsletters, or marketing communications.
  • Collecting additional information through optional forms.

Users can withdraw their consent at any time without affecting the lawfulness of prior processing.

3.3 Legal Compliance (Art. 6.1.c GDPR)

We may process personal data to comply with legal obligations, including:

  • Tax and financial regulations related to invoicing and transactions.
  • Compliance with consumer protection laws.
  • Responding to official requests from authorities or law enforcement.

3.4 Legitimate Interest (Art. 6.1.f GDPR)

We process data based on our legitimate business interests, provided that users’ rights and freedoms do not override these interests. This includes:

  • Improving our services through customer feedback and analytics.
  • Preventing fraud and ensuring cybersecurity.
  • Responding to general inquiries and customer service requests.

Users have the right to object to data processing based on legitimate interest at any time. If you wish to exercise this right, you can contact us at [email protected].

4. Information Collection and Use

4.1 Personal Data We Collect

We may collect and process the following types of personal data:

  • Identity Data: Name, surname, date of birth.
  • Contact Data: Email address, phone number.
  • Booking Data: Details of excursions, reservations, and payments.
  • Communication Data: Emails, messages, and customer service interactions.
  • Transaction Data: Payments made through our platform (processed securely via third-party payment providers).

4.2 How We Use Your Data

We use personal data for the following purposes:

  • To process bookings and manage reservations.
  • To provide customer support.
  • To send service-related communications.
  • To comply with legal and regulatory requirements.

5. Data Sharing and Retention

5.1 Data Sharing

We share personal data only when necessary, ensuring compliance with GDPR. This may include:

  • Payment Processors: To securely process transactions. (e.g., Stripe, PayPal).
  • Regulatory Authorities: When required by law.
  • Service Providers: For fraud prevention and security.

For information on data shared with third-party marketing and tracking platforms, please see our Cookie Policy.

5.2 Data Transfers to Third Parties

To provide our services effectively, CanaryVIP may share personal data with third-party service providers. Some of these providers are located outside the European Economic Area (EEA). In such cases, we ensure compliance with Articles 44-50 of the GDPR through appropriate legal safeguards:

  • Some of our providers, such as Google, Meta (Facebook & Instagram), and TikTok, are located in the United States and participate in the EU-U.S. Data Privacy Framework (DPF).
  • For providers not covered by the DPF, such as Stripe and PayPal, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission to ensure an adequate level of data protection.

If you have questions regarding international data transfers, please contact us at [email protected].

5.3 Data Retention

  • We retain personal data only as long as necessary for the purposes outlined in this policy.
  • Booking records are stored for legal and tax compliance purposes for a minimum of 5 years.
  • Users may request deletion of their data, subject to legal obligations that require retention.

6. Data Security Measures

We implement technical and organizational security measures to protect personal data against unauthorized access, loss, or alteration. These include:

SSL encryption: All data transmitted through our website is secured using SSL/TLS encryption.
Cloudflare Protection: We use Cloudflare’s security services (DDoS mitigation, Web Application Firewall, bot filtering).
Access controls: Restricted access policies ensure that only authorized personnel can access sensitive data.
Data minimization: We collect and store only the necessary personal data.

7. Your Rights Under GDPR

Under the General Data Protection Regulation (GDPR), you have the following rights regarding your personal data:

  • Right to access – You can request details of your personal data that we hold.
  • Right to rectification – You may request correction of inaccurate or incomplete data.
  • Right to erasure (Right to be forgotten) – You can ask us to delete your personal data, subject to legal obligations.
  • Right to restriction of processing – You can request that we limit the processing of your personal data.
  • Right to object – You may object to processing based on legitimate interest.
  • Right to data portability – You can request a copy of your data in a structured format.

To exercise any of these rights, please contact us at [email protected].

8. Consent and Changes to This Policy

By using our services, you consent to the collection and use of your personal data as outlined in this policy.

We reserve the right to update this Privacy Policy at any time. Any changes will be posted on this page, and we encourage users to review this policy periodically.

This Privacy Policy does not cover the use of cookies or tracking technologies. Please refer to our Cookie Policy for details.

9. Contact Us

For any questions regarding this Privacy Policy or how we handle your data, you can contact us at:

📧 Email: [email protected]
🌍 Website: www.canaryvip.com

CanaryVIP transforms your Canary Islands visit into an unforgettable adventure with exclusive excursions, immersive tours, and thrilling activities, all delivered with exceptional service, unbeatable prices, and a personalized touch.

Top Activities: