top of page

PRIVACY POLICY

Last updated: 12/02/2026

1. Data Controller

The data controller responsible for processing your personal data is:

GAY TOUR GC/ RAFAL JAN KOWALSKI
NIF: Y5252457F
Address: Calle Maestro Jose Enrique Hernandez 12 A, 35 280 Santa Lucia de Tirajana, Las Palmas
Email: gaytourgc@gmail.com

2. What Personal Data We Collect

We may collect the following personal data:

  • Full name

  • Email address

  • Phone number

  • Booking details (selected date, number of participants)

  • Payment confirmation information

  • IP address and browser data (via Wix platform and analytics tools)

For insurance purposes related to mountain hiking activities, participants may be required to provide identification data (ID or passport number) after booking confirmation.

We do not store credit card details. Payments are processed securely by third-party payment providers.

3. Purpose of Data Processing

Personal data is processed for the following purposes:

  • To manage and confirm bookings

  • To communicate regarding reservations

  • To comply with legal, accounting, and tax obligations

  • To provide required insurance coverage for outdoor activities

  • To ensure participant safety during hiking activities

  • To improve website functionality and user experience

4. Legal Basis for Processing

Data is processed based on:

  • Performance of a contract (booking a hiking activity)

  • Compliance with legal obligations (tax regulations)

  • Legitimate interest (service management and improvement)

Where identification data is required for insurance activation, processing is necessary for the execution of the booked activity.

5. Data Sharing

Personal data may be shared with third-party service providers strictly when necessary for the operation of the activity:

  • Wix (website hosting and booking system)

  • Stripe / PayPal (payment processing)

  • Insurance providers (for personal accident and mountain activity coverage)

  • Accounting or tax service providers, if required

Data is not sold or rented to third parties.

Identification data required for insurance purposes is shared exclusively with the contracted insurance provider and only for the activation of coverage related to the specific activity.

6. Data Retention

Personal data related to bookings and invoices will be retained for the period required under Spanish tax law (generally 5 years).

Insurance-related data will be retained only as long as legally required or necessary to comply with insurance obligations.

7. Your Rights

Under the EU General Data Protection Regulation (GDPR), you have the right to:

  • Access your personal data

  • Request correction of inaccurate data

  • Request deletion of your data

  • Restrict or object to processing

  • Request data portability

To exercise these rights, contact: [Twój email]

You also have the right to file a complaint with the Spanish Data Protection Authority (Agencia Española de Protección de Datos).

8. Cookies

This website uses cookies to improve user experience and website functionality.

Users may manage cookie preferences through the cookie banner displayed upon first visit.

9. Data Security

Appropriate technical and organizational measures are implemented to protect personal data against unauthorized access, alteration, disclosure, or destruction.

10. Newsletter and Marketing Communications

If you subscribe to our newsletter, we will process your email address for the purpose of sending updates, offers, and information related to hiking activities and services.

Subscription to the newsletter is voluntary and based on your explicit consent.

You may withdraw your consent at any time by:

  • Clicking the unsubscribe link included in every email, or

  • Contacting us directly at [Twój email]

Your data will not be used for automated profiling or sold to third parties.

11. Email Marketing Providers

Newsletter communications may be managed through third-party email service providers (such as Wix Email Marketing or other similar platforms), which process data on our behalf in compliance with EU data protection regulations.

12. Marketing Invitation After Booking

After completing a booking, participants may receive a one-time invitation email offering the opportunity to subscribe to our newsletter.

This invitation is based on legitimate interest related to the booked service.

Subscription to the newsletter is voluntary and requires explicit consent from the user.

Personal data is not added to the newsletter list without prior consent.

bottom of page