Welcome to The Bespoke African Safari Co.’s Privacy Policy
The present privacy policy constitutes an integral component of our terms and conditions for web usage. In the event that you do not concur with any provision outlined in this privacy policy, it is imperative that you promptly discontinue your utilization of The Bespoke African Safari Co’s websites. If you desire additional information regarding our data collection, utilization, and security protocols on our websites, please feel free to reach out to us.
Best Safaris in Africa (Tours and Parks)
Privacy Policy
The present Privacy Policy delineates the fundamental principles upon which The Bespoke African Safari Co. gathers, employs, and discloses the data obtained from individuals who utilize our websites and online apps. The privacy of our users is a matter of great importance to us, and we strongly advise you to thoroughly review our policy. By accessing and utilizing the websites of The Bespoke African Safari Co. at www.kabirasafaris.com, as well as any linked websites, landing pages, and applications, or our Plan My Trip tool, you hereby acknowledge and consent to abide by the terms and conditions outlined in this policy.
The travelers who are part of our group come from various nations. To acknowledge this diversity, we strive to handle all information in accordance with globally recognized standards of excellence and regulatory compliance. The policy is subject to regular review in order to ensure compliance. In the event of a formal complaint, efforts will be taken to promptly address the issues by contacting the complainant.
It is important to acknowledge that when utilizing our websites, users are giving their agreement to the collecting and utilization of their information, as outlined in this policy. If there are any apprehensions regarding the utilization of your data or the substance of this policy, we encourage you to reach out to us for further clarification.
Notice at Collection
The California Consumer Privacy Act (CCPA) mandates that businesses provide customers with certain information through a “notice at collection.” This notice must outline the many kinds of personal information that businesses acquire from consumers, as well as the intended objectives for which this information is utilized.
The subsequent section of this document delineates the categories of data that The Bespoke African Safari Co. gathers regarding our website users and clients, as well as the manner in which this data is utilized.
Data Collected
This policy makes a clear distinction between two types of data: ‘personal data’, which is necessary for international travel purposes, and ‘non-personal data’, which encompasses information related to website usage and de-identified data used for analysis. Both personal and non-personal data are gathered via our websites and third-party sources. This data is obtained either automatically or through user input during inquiries, newsletter sign-ups, or consultations. The purpose of collecting this information is to enhance the quality of the information we provide to our users.
1. User Notifications:
1.1 The absence of the requested information may hinder our capacity to offer expert guidance in the curation and dissemination of planned trip itineraries.
1.2 It is imperative to verify the accuracy and currency of the personal information provided to us.
1.3 The user assumes responsibility for any third-party information acquired, disseminated, or shared over the websites, and agrees to utilize or disclose such data solely with the explicit authorization of the respective third party.
2. Personal Data:
2.1 The personal information that users offer to us through our websites is collected and stored when they make inquiries, update or modify their information, or utilize our services.
2.2 Additionally, we gather and retain data pertaining to your trip schedule, travel preferences, and details about accompanying individuals. This information is obtained through various means such as communications, questionnaires, and other data provided by you.
All individuals or entities engaged in the handling, transfer, or retention of card information are required to adhere to the Payment Card Industry Data Security Standards (PCI DSS). Flywire performs an annual evaluation of its SOC II and PCI DSS certifications to guarantee that the company handles customer data securely and in accordance with relevant legal requirements, such as GDPR, PIPEDA, FERPA, GLBA, and other data protection legislation. The Bespoke African Safari Co. does not engage in the collection or retention of any credit card or account information.
3. Non-personal Data:
3.1 Furthermore, alongside the collection of personal data, we also retain non-personal data that lacks the capability to identify our users. The types of non-personal data that are gathered encompass de-identified data pertaining to the utilization of our websites.
In addition, we employ cookies or comparable monitoring mechanisms to recognize individuals who visit our website and retain their preferences. This is done with the intention of enhancing the user experience, delivering improved services, and promoting our online services through marketing and advertising efforts.
How We Share Information
Various external entities are employed to aid in the processing of personal data for the aforementioned objectives, and it is possible that these entities may retain this personal data on their own servers for these purposes. The information acquired may be shared with:
For the aforementioned reasons, we may share your personal information with third parties that help us with data processing and who may store your data on their own systems. The data we collect may be shared with:
- Providers of Services, Payment card processing, email distribution, list processing, postal mailing, cloud computing, analytics, digital content performance measurement, ad serving, and the management of sweepstakes, contests, promotions, or events are just some of the third-party services and transactions we outsource in connection with operating and providing our service. Our contracted service providers will use the data we share with them to carry out their duties.
- Partners and service providers in the advertising and marketing industries. For the purpose of creating, delivering, and assessing advertising or marketing campaigns, including interest-based ads, we may share your information with advertisers, advertising agencies, ad networks, ad exchanges, marketing businesses, technology vendors, and other such entities.
- Content Analytics Businesses. Both we and outside parties are interested in tracking how well our material performs. To do this, we may incorporate market research and digital and video content consumption measurement software from a third party into our services.
- Websites for Social Media. The relevant Social Media Platforms may collect information if you engage with social media widgets, share content via social media share buttons, or access elements of the Digital Services that incorporate content or features supplied by Social Media Platforms. Since we cannot control the actions of third parties, including social media platforms, we advise you to familiarize yourself with their respective privacy rules.
- Affiliates in Business. For a variety of reasons, we may share your information with third parties, such as joint marketing partners and content sponsors. We may share information with a third party when we offer products or services with them under a joint banner, such as when we co-brand, co-sponsor, or cross-promote.
Please get in touch with us if you’d like a complete list of the vendors we work with. The privacy policies of these other sites are not our responsibility, and we do not necessarily agree with them.
Cookies and Similar Technologies
When you visit a website, the server sends a small amount of code to your browser in the form of a cookie. They allow the site to keep track of your preferences and help tailor the content and advertising you see to your interests. Below, we elaborate on cookies to explain their function and why we employ them.
1. Technical cookies and cookies serving aggregated statistical purposes:
1.1 Necessary Website Functioning Our websites utilize cookies to maintain your session and to carry out additional Website Functioning activities.
1.2 Our websites employ cookies to keep track of your preferences and to enhance your browsing experience and compile statistical data.
2. How can I manage the installation of cookies?
2.1 You can control which websites are allowed to place cookies in your browser by adjusting your cookie settings. Previous cookie installations can be removed via the browser settings. If you disable cookies, some features may not work properly on the websites you visit. The following links provide detailed guides on how to disable cookies in each major browser: Mozilla Firefox, Apple Safari, Google Chrome, and Microsoft Internet Explorer.
2.2 If you don’t want to be tracked by a third party, you can disable their cookies by following the instructions in their privacy policy, using the opt-out link (if one is available), or getting in touch with them directly.
2.3 Your Online Choices is a great resource (especially for users in the European Union) if you want to learn more about behavioral advertising and cookies. Your tracking options for the vast majority of advertising tools can be adjusted with the use of this service.
2.4 Since identifying cookie-based technologies can be difficult and cookies are deeply embedded in the internet’s infrastructure, if you’d like more information about how the websites use cookies or how third parties might use them through the websites, please get in touch.
Use of Non-Personal Data
We utilize your non-personal information for things like product enhancement, internal reporting, analytics, monitoring demographics and interests, and doing statistical analysis of aggregate user behavior. All data that is not personally identifiable will be de-identified before being retained or analyzed. Since our users are not adversely affected by the revelation of this non-personal information, we may also share it with our present and future business partners and service providers.
Use of Personal Data
We will not share any of your personal information collected through the websites unless as described in this policy or as otherwise agreed to by you. While we prefer to keep the data we collect anonymous (as non-personal information), there are times when we’ll need to link data to specific identifiers like your name or email address (as personal information), such as when doing so is necessary to provide the types of tailored services and experiences described below. We make every effort to ensure that our customers are not discriminated against or disadvantaged by the disclosure of their personal information.
Listed below are the specifics of how and why we utilize your personal information:
- Finding out who you are.
- Reaching out to you for the following reasons: advertising,
- guiding you through your trip options and providing advice,
- helping you make reservations and bookings with us, with the goal of keeping travelers updated and giving assistance and guidance while they’re on the go.
- other lawful business purposes, during which all correspondence with you will be archived.
- For the sake of analysis (and, more generally, product enhancement):
- examining the demographics, interests, and online habits of our target audience letting us refine our website and related apps for the benefit of future travelers like yourself,
- improving the traveler experience by disseminating analytical data to all engaged staff in order to enhance their ability to serve customers,
- for other acceptable commercial reasons.
- submitting a report on traveler preferences and related issues to the company.
for targeted advertising, including retargeting to previous visitors to your site and other potential vacationers who have shown an interest in activities you know they’ll enjoy. - capturing, following, and analyzing user interactions with websites.
- training, as well as studying, creating, and bettering.
- The Bespoke African Safari Co. employees and our third party contractors, such as providers of internal software and systems and courier services for mailing papers and presents, may have access to your personal information for business purposes.
- in response to a subpoena, court order, or other legal process, in order to establish or exercise a legal right, defend a claim, or comply with legal requirements;
- preserve our own legal rights and the legal rights of our service providers; conduct investigations into, and take preventative or corrective action regarding, any suspected illegal acts;
- if we sell, merge, or reorganize all or substantially all of our equity, business, or assets, to the purchaser(s), assignee(s), or other successor entity(ies).
- In all other cases:
- which we have your approval for,
- that serves the common good, or
- within the framework of South African law
If you and The Bespoke African Safari Co. decide to utilize a third-party service, we will share your personal information with that company and it will be subject to its privacy standards.
We may also share your information with other organizations within The Bespoke African Safari Co., all of which will be bound by this policy and have the same rights as us with respect to your personal data.
Rights afforded you in the Privacy legislation
We recognize and will protect the following rights:
- Information is always collected directly from you, with some limited exceptions (see ‘Exceptions’ below).
You must provide your “informed, specific, and voluntary consent” before we can process your Information, and we must inform you of the reason for processing and the recipients of your Information. - At any time, you can request that we make changes, updates, or deletions to your Information. In the latter scenario, we must show you the evidence that we have complied with your request.
- When it comes to direct marketing (See below), we need your permission and must always let you know how to “opt out” or “unsubscribe.”
- You have a right to know whether or not the protections we have in place to protect personal Information comply with the provisions of the Privacy Legislation, and you may do so at any time by contacting us.
- It’s possible that you’ll want us to put a stop to further use of your Data.
- Complaints can be submitted in one of three ways: (1) through the appropriate area of our website; (2) to our Information Officer (contact details can be found on our website); or (3) to the POPIA Information Regulator.
- When our security has been compromised, you have a right to know and we have a duty to tell you as soon as feasible (POPIA: ‘as soon as reasonably possible’ and GDPR: within 72 hours).
- You have the right to know what types of personal information are being collected, how they are being used, and with whom they may be shared. In case you have any questions about what personal information we have stored about you, where this information came from, whether it has been updated or is complete, if you want it erased, restricted, transferred to another data controller, or if you want it made anonymous, or if you want to object to our using it for any and all legitimate reasons, please contact us. Send us an email at bespokesafarico@gmail.com or fill out the form on our contact page with your inquiry.
At this time, “Do Not Track” (“DNT”) requests are not supported by our websites. If you use a browser that supports Do Not Track (DNT), you can prevent tracking by services like ad networks, social media sites, and analytics firms. If you want to know if the third-party services to which we provide links on our Website respect Do Not Track signals, you should check their respective privacy policies.
Exceptions
- We do not need your permission for ‘processing’ when:
- You (the ‘data subject’) have made your Data publicly available;
- Information you provide is considered public knowledge since it is held by or accessible through a government agency.
- We are meeting a statutory requirement;
- It requires one to abide by legal processes.
- Security of the nation is at stake.
- If it’s in the public interest or difficult to get your consent, it’s being used for historical, statistical, or research purposes.
- It can be used in any kind of journalism as long as there are sufficient safeguards in place to protect the subjects’ privacy and the public’s right to freedom of expression.
- You Information has been “de-identified” (also known as “pseudonymized”) so that the identities of the parties involved cannot be established.
- We are disclosing this information because doing so is in our or that party’s legitimate interest.
Information Security
Our “systematic and extensive evaluation of our processes and current safeguards” was part of a data protection impact assessment we conducted. This analysis considered the source, nature, likelihood (foreseeability), and severity (extent) of any security risks that may arise from our handling of your Information, both internally and externally.
We have taken “appropriate, reasonable, and organizational measures,” as determined by the experts who conducted this assessment, to: (1) “ensure the integrity and confidentiality” of the Information; (2) “prevent the loss, damage, or unauthorized destruction, access, or processing” of your Information; (3) “anticipate and identify” the aforementioned risks; and (4) “maintain, monitor, and update” these safeguards on an ongoing basis.
These measures:
- Will comply with the strictest ‘generally accepted information security practices’ and/or’ specific industry or professional rules and regulations’
- Include encryption; controlling user privileges; destroying your information when it is no longer needed; regular audits; backups; and emergency incident strategies.
Methods of processing
We promise to process your personal information in a reasonable manner and to implement appropriate, reasonable security measures to prevent unauthorized access, disclosure, modification, or destruction of your personal information. All data processing must be performed by employees, consultants, or third-party service providers using computers and/or IT-enabled tools in accordance with established organizational procedures and modes.
In some cases, personal and non-personal data may be accessible to certain types of persons involved in the operation of our websites (administration, sales, marketing, finance, legal, system administration) or external parties (such as, for example, third-party technical service providers, mail carriers, hosting providers, IT companies, communications agencies) appointed, if necessary, by us as data processors.
Place
All data collected through our websites is predominantly managed and processed at our various operational offices, as well as any other location where the parties involved in the processing are located. Please contact us for more information on our servers and data processing locations.
We may send and store your personal data outside of the country in which you reside, and there will therefore be some cross-border transfer of this personal data. This is due to the fact that we serve travelers from all over the world, and hosting services have become increasingly “cloud-based” and international in recent years. Nonetheless, we are committed to preserving the privacy and confidentiality of personal information when it is transferred, in accordance with this Policy and the EU’s data privacy regulations.
Storage
Your Information will be stored for no longer than is necessary to fulfill the purposes for which it is being processed. However, we may retain your Information for extended periods if required by law, such as for tax purposes, or if you have requested and given us the necessary consent. We will be able to provide you with a more efficient service for future reservations by retaining some of your personal preferences, such as your twin/double bed and meal preferences, if you are a repeat customer.
To learn more, please contact us
Records
You may submit a request via our contact page if you wish to inspect and examine your records. Responses to requests for access will be provided within 45 days, although certain documents may be excluded from those made available for inspection (within the bounds of the law and our confidentiality agreements with third parties). You may also request the correction of records that you believe to be inaccurate, misleading, or otherwise in violation of your rights.
Legal action
Your personal information may be used for legal purposes, as determined by us in a reasonable manner, in court or in preparation for potential legal action. You also acknowledge that we may be required to disclose your personal information to public authorities upon their request.
Additional information about Personal Data
We will provide you with additional and contextual information regarding specific services or the collection and processing of personal data upon request, in addition to the information included in this policy.
System Logs and Maintenance
System Logs and other personal data (such as IP Address) may be collected and used by our websites and any third-party services for the purposes of operating and maintaining the websites.
Changes to this Policy
We conduct data protection impact evaluations on a consistent basis and periodically examine our privacy standards. We may update this policy at any moment and will let you know about the update via a website feature or an email. If you have any concerns or questions regarding how we collect and use your information, we encourage you to review this policy and its most recent revision date before getting in touch with us.
You can ask us to erase your personal information and stop using the sites if you don’t agree with the new policy. All of the information we store will be subject to the current policy unless otherwise specified.
Contacting us about this Policy
Please use the website’s feedback form or send an email to bespokesafarico@gmail.com if you have any questions or concerns regarding our policy.
Decisions regarding the purposes and means of processing data pursuant to this Policy will be the responsibility of the relevant data controller.
Date of last amendment: 8 June 2022