GDPR

GDPR Compliance

General Data Protection Regulation (GDPR) Information

1. Introduction

PRO ACADEM TOURS RD (“we,” “our,” or “us”) is committed to protecting the privacy and personal data of all our website visitors and customers, including those from the European Union (EU) and European Economic Area (EEA). This page explains your rights under the General Data Protection Regulation (GDPR) and how we comply with these requirements.

Data Controller Information:

• Company: PRO ACADEM TOURS RD
• Address: Av. 25 De Febrero No. 49 Ensanche Las Americas, Santo Domingo Este, República Dominicana
• Email: info@academtours.com
• Data Protection Contact: info@academtours.com

2. Legal Basis for Processing Your Data

Under GDPR, we process your personal data based on the following legal grounds:

2.1 Consent (Article 6(1)(a))

• Newsletter subscriptions
• Marketing communications
• Non-essential cookies and tracking

2.2 Contract Performance (Article 6(1)(b))

• Processing tour bookings and reservations
• Providing customer support
• Communicating about your bookings

2.3 Legitimate Interests (Article 6(1)(f))

• Website analytics and improvement
• Fraud prevention and security
• Business communications

2.4 Legal Obligation (Article 6(1)(c))

• Compliance with Dominican Republic tourism regulations
• Tax and accounting requirements

3. Your GDPR Rights

As an EU/EEA resident, you have the following rights regarding your personal data:

3.1 Right of Access (Article 15)

You can request information about:

• What personal data we hold about you
• How we use your data
• Who we share it with
• How long we keep it

3.2 Right to Rectification (Article 16)

You can request correction of:

• Inaccurate personal data
• Incomplete personal data

3.3 Right to Erasure “Right to be Forgotten” (Article 17)

You can request deletion of your personal data when:

• It’s no longer necessary for the original purpose
• You withdraw consent and no other legal ground applies
• Data has been unlawfully processed
• Erasure is required for legal compliance

Limitations: We may retain data if required for legal obligations or legitimate business purposes.

3.4 Right to Restrict Processing (Article 18)

You can request restriction when:

• You contest the accuracy of the data
• Processing is unlawful but you don’t want erasure
• We no longer need the data but you need it for legal claims
• You’ve objected to processing pending verification

3.5 Right to Data Portability (Article 20)

You can request:

• A copy of your data in a structured, machine-readable format
• Transfer of data directly to another controller (where technically feasible)

3.6 Right to Object (Article 21)

You can object to processing based on:

• Legitimate interests (including profiling)
• Direct marketing (including profiling for marketing)

3.7 Right to Withdraw Consent (Article 7(3))

You can withdraw consent at any time for:

• Marketing communications
• Newsletter subscriptions
• Non-essential cookies

4. How to Exercise Your Rights

To exercise any of your GDPR rights:

Email: info@academtours.com
Subject Line: “GDPR Request – [Your Request Type]”

Please Include:

• Your full name
• Email address used for bookings/communications
• Specific request details
• Proof of identity (if required)

Response Time: We will respond within 30 days of receiving your request.

5. Data Processing Details

5.1 What Data We Collect

• Contact Information: Name, email, phone number
• Booking Information: Travel dates, preferences, special requirements
• Technical Data: IP address, browser type, device information
• Usage Data: Website interactions, pages visited
• Communication Data: Messages via forms, WhatsApp, Facebook Messenger

5.2 How We Use Your Data

• Provide tour and vacation services
• Process bookings and payments (through third parties)
• Customer support and communication
• Website improvement and analytics
• Marketing (with consent)
• Legal compliance

5.3 Who We Share Data With

• Tour Partners: Hotels, local operators, transportation providers
• Technology Providers: WooCommerce, Google Analytics, Facebook
• Communication Tools: WhatsApp Business, Facebook Messenger
• Legal Authorities: When required by law

5.4 International Data Transfers

Your data may be transferred to:

• Dominican Republic: Our primary operations base
• United States: Google Analytics, Facebook services
• Other Countries: Tour partners and service providers

We ensure appropriate safeguards for international transfers through:

• Adequacy decisions
• Standard contractual clauses
• Binding corporate rules
• Certified mechanisms

6. Data Retention Periods

We retain personal data for different periods based on purpose:

• Contact Form Inquiries: 2 years
• Booking Information: 3 years after trip completion
• Marketing Data: Until consent is withdrawn
• Website Analytics: 26 months (Google Analytics default)
• Legal Compliance: As required by applicable laws

7. Automated Decision Making

We do not engage in automated decision-making or profiling that produces legal effects or significantly affects EU individuals.

8. Data Security

We implement appropriate technical and organizational measures including:

• Encryption of data in transit and at rest
• Access controls and authentication
• Regular security assessments
• Staff training on data protection
• Incident response procedures

9. Data Breach Notification

In case of a personal data breach that poses high risk to your rights and freedoms:

• We will notify relevant supervisory authorities within 72 hours
• We will inform affected individuals without undue delay
• We will document and investigate all breaches

10. Cookies and Tracking

10.1 Cookie Consent

We obtain consent for non-essential cookies including:

• Google Analytics cookies
• Facebook Pixel tracking
• Marketing and advertising cookies

10.2 Cookie Management

You can manage cookie preferences:

• Through your browser settings
• Via our cookie consent banner
• By contacting us directly

11. Marketing Communications

11.1 Consent-Based Marketing

• Newsletter subscriptions require explicit consent
• Marketing emails include easy unsubscribe options
• We respect opt-out requests immediately

11.2 Facebook and Social Media

• Facebook Pixel tracking (with consent)
• Social media integration and sharing features
• Remarketing campaigns (with consent)

12. Children’s Data

We do not knowingly collect or process personal data from children under 16 without parental consent.

13. Complaints and Enforcement

13.1 Internal Complaints

Contact us first: info@academtours.com

13.2 Supervisory Authority

You have the right to lodge a complaint with your local data protection authority if you believe we haven’t addressed your concerns adequately.

EU Supervisory Authorities: European Data Protection Board website

14. Updates to GDPR Compliance

We may update our GDPR compliance measures and this information. Significant changes will be communicated through:

• Website notifications
• Email updates (for existing customers)
• Updated privacy policy

15. Contact Information

For all GDPR-related inquiries:

PRO ACADEM TOURS RD
Data Protection Contact
Email: info@academtours.com
Address: Av. 25 De Febrero No. 49 Ensanche Las Americas, Santo Domingo Este, República Dominicana

Response Time: 30 days maximum
Languages: English, Spanish

---

This GDPR compliance page is designed to meet EU General Data Protection Regulation requirements for AcademTours.com operations.