Privacy Policy

Last updated on 30. June 2024)

1. Introduction
   • 1.1 Welcome to www.samyna.com. This privacy policy explains how we handle your personal data when you visit our website or use our services. Protecting your privacy is important to us and we endeavour to be transparent about how we collect, use, share and protect your data. This Privacy Policy applies to all users of our website and our services. It describes the types of information we collect, how we use and protect it. By using our website, you agree to the terms of this policy.
   • 1.2 To ensure that our privacy policy always complies with current legal requirements and reflects our privacy practices, we reserve the right to update this policy as necessary. We encourage you to check back regularly for updates to stay informed of changes. If you have any questions about our privacy policy, please feel free to contact us at any time. Thank you for trusting our company.
2. Data collection and utilisation
   • 2.1 General information on data collection and use when you book a tour, we collect certain personal information in order to organise your trip and ensure that you have the best possible experience. This information will be treated in accordance with data protection laws and used solely for the purposes for which it was collected.
   • 2.2 Types of personal information collected
     • Name, gender, age, origin, contact details such as phone number, email address: To confirm your booking and contact you in case of changes or emergencies.
     • Shoe size, dress size, gender: For tours that require specialised equipment, we may share your gender and dress or shoe size with the guide to ensure that the required equipment is available.
     • Passport information: For Boat rentals or for some Tours such as Rinjani or Komodo Trip is an passport copy required. Passport copies are not requested through the website. These are usually done via the email address, on-site or, if agreed, via WhatsApp. E.g. the Rinjani tour, require you to present your passport or send us a copy. This information must be correct otherwise Rinjani insurance cover will not be provided in the event of an incident.
   • 2.3 Disclosure to tour guides: The personal information will only be shared with the relevant tour guide and tour organisers that are necessary for the delivery of the tour. We require and remind such parties to adhere to the same standards of data protection as we do.
   • 2.4 Intentional misrepresentation of personal data: The accuracy of the information provided, in particular your passport, is crucial for insurance cover in connection with the Rinjani tour. Incorrect or incomplete information may result in a loss of insurance cover.
   • 2.5 Data Processing and Analysis – Google Analytics: In order to continually improve our online services and provide you with an optimal user experience, we utilize Google Analytics, a web analytics service provided by Google Inc. (“Google”). Google Analytics uses cookies to collect information about the usage of our website, including IP addresses, browser types, operating systems, referral URLs, and the date and time of requests. The information generated by cookies about your use of our website is transmitted to and stored on Google servers. This information is used to compile reports on website activities for us and to provide further services related to website and internet usage. You can prevent the installation of cookies by adjusting your browser settings accordingly. However, please note that in this case, you may not be able to fully utilize all features of our website. By using this website, you consent to the processing of data about you by Google in the manner and for the purposes set out above. The use of Google Analytics is in accordance with the Google Analytics Privacy Policy. We would like to inform you that this website uses Google Analytics with the “anonymizeIp” code extension to ensure an anonymized collection of IP addresses. We use this data solely for statistical purposes and to enhance our online offerings. Your privacy is important to us, and we take all necessary measures to ensure that your data is treated securely and confidentially. Please read our complete Privacy Policy for more information. This statement informs users that Google Analytics is used for website analysis, outlines the types of data collected, and emphasizes efforts to protect user privacy. It’s crucial to ensure that this statement aligns with the actual privacy practices of your website.
   • 2.6 Automatically collected data – Cookies: You can find the detailed description under cookie policy.
   • 2.7 Automatically collected data – Media: If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
   • 2.8 Automatically collected data – Comments and Contact Form: When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection. An anonymised string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service Privacy Policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.
   • 2.9 Automatically collected data – Password reset only if you create an account (currently not active): If you request a password reset, your IP address will be included in the reset email.
3. Payment information and data protection
   • 3.1 We take the protection of your payment information seriously and would like to provide transparent information about which data may be visible in connection with various payment systems:
     • PayPal: When making payments via PayPal, you will be redirected to the PayPal website. PayPal only informs us whether the payment was successful or not. We do not receive any sensitive financial data such as your credit card number or bank details.
     • Credit card: Credit card payments are processed via secure payment gateways. We do not store or see any sensitive credit card data. The transaction is processed via encrypted connections.
     • Instant bank transfer: Enables a direct transfer from your bank account. No sensitive bank details are transmitted to us. Instant bank transfer merely confirms receipt of payment. Please note that each of these payment methods has its own privacy policy. We recommend that you read the privacy policies of the respective payment service providers to understand what information they store and how they protect it.
     • Payment by QR code: Our QR code payment option offers a convenient and secure method for processing transactions. No personal information is required to use the QR code. The payment is processed via a secure payment service provider. The payment service provider processes the required payment information and the data protection guidelines must be obtained from the payment service provider and may vary depending on the payment service provider. Our platform does not receive any sensitive financial data such as credit card information. Transmission takes place via encrypted connections.
4. Use of customer photos for marketing on our platformes
   • 4.1 We would like to point out that we may occasionally use photos of customers for marketing purposes with their aggreement on our social platforms. These photos may show activities related to our services and are used to share authentic experiences.
   • 4.2 We do not publish photos that contain sensitive information about customers.
   • 4.3 Customers have the option to have their photos anonymised if they do not wish to be fully identifiable.
   • 4.4 Customers can notify us in writing at any time if they do not wish to have an image on our platforms (e.g. Instagram, the website, Tripadvisor etc.). Upon receipt of the written cancellation, we will immediately remove the relevant images and not use them any further. Remember that transparency and clear communication are key. It’s important to inform your customers about how their photos will be used and ensure that they can freely and easily withdraw their consent. We respect our customers’ right to privacy and give them control over how their information is used. If you have any further questions or wish to withdraw your consent, please contact us in writing.
5. Data security measures:
   • 5.1 We use a number of measures to ensure the security of data:
     • Encryption: all data transmitted is encrypted to ensure that it is protected during transmission.
     • Access restrictions: Access to personal data on the website and other platforms is restricted to authorised individuals. We implement strict controls to ensure that only authorised people have access to our platforms.
     • Regular security audits: Our systems are regularly reviewed for security vulnerabilities to identify and remediate potential risks.
     • Firewalls and security software: We use firewalls and up-to-date security software to protect our systems from unauthorised access and malware.
6. How long we retain your data
   • 6.1 If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognise and approve any follow-up comments automatically instead of holding them in a moderation queue.
   • 6.2 For users that register on our website (if used), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
   • 6.3 Storage period of the information: Your personal information will only be retained for as long as necessary to fulfil the booked tour and to comply with legal requirements.
7. What rights you have over your data
   • 7.1 If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.