Privacy policy

1. IDENTIFICATION OF THE DATA CONTROLLER

The owner of this website and the data controller responsible for processing your personal data is: 

• Company name: VISITA MENORCA SL.
• Tax ID No.: B75829937
• Registered office: C/Ferrers nº 3 – 07760 Ciutadella de Menorca (Balearic Islands) 
• Contact email : hola@visitamenorca.com 
• Telephone: 609707080

This privacy policy aims to regulate all aspects relating to the processing of data belonging to users who browse the website or provide their personal data via the various forms available on the site.  

2. TYPES OF DATA COLLECTED

Through our group travel quote forms, we collect the following categories of data: 

• Identification Data: First name, surname, National ID/Passport (ifrequiredfor the booking). 
• Contact Details: Email, telephone number, billing address.
• Travel Preference Data: Destination, dates, number of travellers, estimated budget.
• Sensitive Data (Special Categories): Only if you provide it voluntarily for security or logistical reasons (e.g. food allergies, reduced mobilityrequirementsor medical conditions relevant to the trip). 
• Third-Party Data: Details of group members provided by the main contact person.

3. PURPOSES OF DATA PROCESSING

Your data will be processed for the following purposes: 

1. Pre-contractual processing: Preparation,customisation and dispatch of the requested group travel quote. 
2. Booking management: In the event of acceptance, processing of bookings with suppliers (flights, hotels, insurance, transfers). 
3. Operational Communication: Contact via WhatsApp,telephone or email to coordinate group details. 
4. Legal Compliance: Management of invoicing, taxes and requirements from immigration or police authorities.
5. Direct Marketing (Only with consent): Sending newsletters and travel offerslike those you have viewed. 

4. LEGAL BASIS FOR DATA PROCESSING

The legal basis that allows us to process your data is: 

• Performance of a contract or pre-contractual measures (Art. 6(1)(b) GDPR): Necessary to respond to your request for a quote.
• Consent of the data subject (Art. 6.1.a GDPR): For sending marketing communications and processing sensitive data (allergies/health).
• Legitimate interest: To conduct satisfaction surveys and improve our tourism services.

5. RESPONSIBILITY FOR THIRD-PARTY DATA

When organising group trips, the user completing the form acts as the group’s representative and guarantees that: 

• They have informed all members of the group of the contents of this Privacy Policy.
• They have the express consent of each member to provide their data to the Agency.
• If there are minors in the group, they have the legal authorisation of the guardians to transfer their data.

6. RECIPIENTS AND INTERNATIONAL TRANSFERS

To ensure the service is provided correctly, your data may be disclosed to: 

• Tourism providers: Airlines, travel wholesalers,hotels and activity providers. 
• Financial institutions: For the purpose of collecting payment for services. 
• Public Authorities: Where there is a legal obligation (e.g. passenger lists for national security purposes).
• International Transfers: If the trip is outside the European Union, your data will be sent to suppliers in the destination country. By booking a trip to a non-EU destination, you consent to this transfer, which is necessary for the performance of the service (Art. 49.1.b GDPR).

7. RETENTION PERIODS

• Quotation requests: These will beretained for as long as necessary for commercial follow-up. If no contract is entered into, they will be anonymised or deleted. 
• Customers (booked trips): These will beretained for 5 years after the trip has ended to cover civil and contractual liabilities, and for 6 years to meet tax obligations. 

8. USERS’ RIGHTS (ARCO-POL)

You may exercise your rights by sending an email to: hola@visitamenorca.com with the subject line “Data Protection”: 

• Access: To find out what data we hold about you.
• Rectification: To correct inaccurate data.
• Deletion (Right to be forgotten): Request the erasure of your data.
• Objection and Restriction: Prevent certain uses of your information.
• Portability: Receive your data in electronic format.

You have the right to withdraw your consent at any time and to lodge a complaint with the Spanish Data Protection Agency (www.aepd.es). 

9. SECURITY MEASURES

The Agency implements technical and organisational measures (SSL encryption, firewalls and access controls) to ensure that your personal data is not altered, lost or processed without authorisation. 

10. PROCESSING OF IMAGES AND MULTIMEDIA CONTENT

The Agency informs users and participants in group trips about the processing of their image in accordance with Organic Law 1/1982 on the Protection of the Right to Honour, Personal and Family Privacy, and One’s Own Image: 

• Purpose of processing: The sole purpose of capturing and publishing photographs or videos taken during the course of the trip is the commercial promotion of the Agency’s services on its website, social media (Instagram, Facebook, LinkedIn, etc.) and in advertising brochures. 
• Explicit consent: The Agency will only publish images in which participants are identifiable if it has their express written consent (or that of their legal guardians in the case of minors). This consent will usually be requested in the travel contract or via an attached form prior to departure.
• Authorisation for user-generated content: If a group member voluntarily sends photographs of the trip to the Agency (via WhatsApp, email or social media tags), they shall be deemed to have granted a non-exclusive, royalty-free licence allowing the Agency to share them on its official channels, always crediting the author if requested.
• Right of revocation: The data subject may revoke their consent for the use of their image at any time by sending an email to hola@visitamenorca.com. The Agency will remove the imagefrom its digital channels within a maximum of 72 hours, without this affecting any printed publications already distributed.