Privacy policy

Last update: June 2026

This Privacy Policy describes how we Safauri LTD collects, uses and protects your personal data when you visit our website https://safauri-retreats.com (hereinafter referred to as the “Site”) or when you use our services for organizing vacation packages and retreats.

The protection of your data is a priority for us. We are committed to complying with the General Data Protection Regulation (GDPR – EU Regulation 2016/679) and applicable law in Cyprus.

1. Who is the Controller of Your Data?

The controller of personal data collected through this Site is:

  • Company: SAFAURI LTD
  • Registered office: Tepelenoiu 17, Office 302, Paphos, 8010, Cyprus
  • Data protection contact: [Adăugați e-mailul de contact, ex: privacy@safauri-retreats.com]

2. What Data Do We Collect and For What Purpose?

We only collect the data strictly necessary to provide you with safe and personalized travel experiences:

  • Contact forms and quote requests: Name, surname, email address, phone number, travel preferences. We collect this data in order to respond to your requests and create personalized offers for private packages.
  • Booking and billing process: Identification data from passport/ID card (where required for logistical bookings), billing address, payment details (securely processed by our payment partner). The purpose is to execute the service contract.
  • Technical data (Cookies): IP address, browser type, pages visited on the Site. This data is collected automatically to improve the browsing experience and security of the Site.

3. Legal Basis for Processing

We process your data based on the following legal grounds:

  1. Execution of a contract: To process your reservation, issue invoices and complete vacation logistics.
  2. Your consent: For sending marketing communications (newsletter), if you have expressly chosen to subscribe.
  3. Legitimate interest: To improve our services, the security of the Site and the management of any disputes.

4. How Long Do We Keep Your Data?

We retain personal data only for as long as necessary to fulfill the stated purposes, to comply with legal obligations (such as Cyprus tax law, which requires the retention of accounting documents for 7 years) or until you withdraw your consent (in the case of the newsletter).

5. Recipients of Personal Data

In order to organize holiday packages, certain data may be transmitted to trusted third-party partners, such as:

  • Logistics service providers (hotels, private transport companies, local guides, airlines). For private packages, we only transmit the data strictly necessary for the reservation.
  • Authorized payment processors integrated into the Site.
  • IT service providers and maintenance for our website.

We do not sell or rent your data to third parties for marketing purposes.

6. Your Rights Under GDPR

As a data subject, you have the following rights that you can exercise free of charge by sending a written request to our email address:

  • Access right: You can request confirmation that the data is being processed and details about it.
  • Right to rectification: You can request the correction of inaccurate data or the completion of incomplete data.
  • The right to erasure of data (“right to be forgotten”): You can request the deletion of data if it is no longer needed or if you withdraw your consent (and there are no legal retention obligations).
  • Right to restriction of processing: You can temporarily block the use of your data under certain conditions.
  • Right to data portability: You can request the transfer of data to another operator in a structured format.
  • Right to object: You can object to processing based on legitimate interest.

You also have the right to file a complaint with the Office of the Commissioner for Personal Data Protection in Cyprus or in your country of residence if you believe that your rights have been violated.

7. Data Security

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risks, including SSL encryption for all forms and transactions on the Site, to prevent unauthorized access, loss or modification of your data.

8. Changes to the Privacy Policy

We reserve the right to update this Privacy Policy whenever necessary. Any changes will be published on this page, mentioning the date of the last update.