1. Introduction

Mofawings Tours and Travel ("we," "us," "our," or "Company") is committed to protecting your privacy and ensuring you have a positive experience on our website and when using our services. This Privacy Policy explains how we collect, use, disclose, and safeguard your information.

Please read this Privacy Policy carefully. If you do not agree with our policies and practices, please do not use our website or services.

2. Information We Collect

2.1 Information You Provide Directly

Booking Information: Name, email address, phone number, passport details, date of birth, nationality, and travel dates
Payment Information: Credit/debit card details, bank account information, and billing address
Communication: Messages you send via email, phone, contact forms, or chat
Special Requests: Dietary requirements, accessibility needs, medical conditions, and preferences
Account Information: Username, password, and profile details (if you create an account)

2.2 Information Collected Automatically

Website Usage Data: Pages visited, time spent on pages, links clicked, and referral sources
Device Information: IP address, browser type, operating system, and device type
Cookies and Tracking: We use cookies and similar technologies to enhance your experience and understand user behavior
Location Data: General location information based on IP address (not precise location)

2.3 Information from Third Parties

We may receive information about you from third-party service providers such as payment processors, tour partners, and airline/hotel partners to complete your booking and provide services.

3. How We Use Your Information

Mofawings uses the information we collect for the following purposes:

Processing and managing your bookings and reservations
Providing customer support and responding to inquiries
Processing payments and sending invoices
Sending confirmation emails, itineraries, and travel updates
Complying with legal and regulatory requirements
Improving our website, services, and customer experience
Marketing and promotional communications (with your consent)
Conducting surveys, feedback, and market research
Detecting and preventing fraud and security issues
Personalizing your experience and recommendations

4. Legal Basis for Processing

We process your personal information based on:

Contractual Necessity: To fulfill your booking and provide services
Legal Obligation: To comply with laws and regulations
Legitimate Interest: To improve services, prevent fraud, and operate our business efficiently
Consent: For marketing communications and non-essential purposes (you can withdraw at any time)

5. Sharing Your Information

5.1 We Share Information With:

Service Providers: Hotels, airlines, tour operators, payment processors, and other vendors who help fulfill your booking
Partners: Tourism boards, travel partners, and affiliated companies necessary to provide services
Payment Processors: Banks and payment providers to process financial transactions
Legal Authorities: When required by law or to protect our rights and safety
Business Transfers: In case of merger, acquisition, or sale of assets

5.2 We Do NOT:

Sell your personal information to third parties for marketing purposes
Share sensitive information (passport details, medical information) without necessity
Disclose information without appropriate safeguards and data processing agreements

6. Data Security

We implement industry-standard security measures to protect your personal information, including:

SSL/TLS encryption for data in transit
Secure servers and firewalls
Access controls and authentication mechanisms
Regular security audits and updates
Staff training on data protection

However, no method of transmission over the Internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security. You acknowledge the inherent risks of online communication.

7. Data Retention

We retain your personal information for as long as necessary to:

Provide services and fulfill contractual obligations
Comply with legal and regulatory requirements (typically 5-7 years for financial records)
Resolve disputes and enforce agreements
Operate our business effectively

You can request deletion of your data at any time, subject to legal retention obligations.

8. Your Rights and Choices

8.1 You Have the Right To:

Access: Request a copy of your personal information
Rectification: Correct inaccurate or incomplete information
Erasure: Request deletion of your data (subject to legal obligations)
Restrict Processing: Limit how we use your information
Data Portability: Receive your data in a portable format
Object: Opt-out of marketing communications and certain processing activities
Withdraw Consent: Remove previously given consent for non-essential processing

8.2 Marketing Communications

You can opt-out of promotional emails by clicking the "unsubscribe" link in any email or contacting us directly. This does not affect transactional emails related to your booking.

9. Cookies and Tracking Technologies

9.1 What Are Cookies?

Cookies are small files stored on your device that help us recognize you and enhance your experience. We use:

Essential Cookies: Necessary for website functionality
Performance Cookies: Collect information about how you use our site
Marketing Cookies: Track your interests for personalized advertising

9.2 Managing Cookies

You can control cookie preferences through your browser settings. Disabling cookies may affect website functionality. We comply with cookie consent requirements and request your permission before storing non-essential cookies.

10. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for their privacy practices. Please review their privacy policies before sharing information.

11. International Data Transfers

Your information may be transferred to, stored in, and processed in countries outside Kenya. These countries may have different data protection laws. By using our services, you consent to such transfers. We ensure appropriate safeguards are in place.

12. Children's Privacy

Our services are not intended for children under 18. We do not knowingly collect personal information from children. If we become aware that we have collected information from a child, we will delete it promptly. Parents/guardians who believe we have collected information about their child should contact us immediately.

13. GDPR Compliance (for EU/EEA Residents)

If you are in the EU/EEA, we process your information in compliance with the General Data Protection Regulation (GDPR). You have additional rights including the right to lodge a complaint with your local data protection authority.

14. CCPA Compliance (for California Residents)

If you are a California resident, the California Consumer Privacy Act (CCPA) grants you specific rights. You can request to know what personal information we collect, delete your information, and opt-out of data sales (though we do not sell your information).

15. Data Breach Notification

In the unlikely event of a data breach, we will notify affected individuals and relevant authorities as required by law within 72 hours of discovery.

16. Contact Us

For questions, requests, or concerns regarding your privacy, please contact us:

Email: info@mofawingstoursandtravel.co.ke
Phone: +254 700 343 363
Mailing Address: Mofawings Tours and Travel, Kenya

17. Data Protection Officer

For data protection inquiries, you may also contact our Data Protection Officer (if applicable) at info@mofawingstoursandtravel.co.ke.

18. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by posting the updated policy on our website with an updated "Last Updated" date. Your continued use of our services constitutes acceptance of the updated Privacy Policy.

login

Privacy Policy