Protecting your privacy and your personal data is an important aspect of the way we create, organise and implement our activities on-line and off-line. Once you choose to provide us with any information by which you can be identified, then it will only be used in accordance with this policy.
For all of our services, the data controller is All Time Yachting d.o.o.
We collect data when you visit or interact with us online, through social media, at an event, or when you contact our customer service team through any channel.
The types of information we collect and why we need it are as follows:
|Name, email and possibly your social network handle.||To be able to offer you more services and to send you marketing emails (only if you’ve opted-in).|
|Name, Address, formal ID, birthdate and nationality to set up a charter contract.||To be able to setup a charter contract and to authorize you with local authorities.|
|Phone number.||To contact you in relation to the charter and to authorize you with local authorities.|
|Your browsing history on our website, your wishlist and interest in blogs.||So we may learn from what you like and to send you personalized marketing emails (only if you are opted-in).|
|Your device ip-address||To troubleshoot technical issues and to protect our website from fraud or malicious activity.|
|The type of device and browser||To improve your experience by displaying our website in the best way for your device|
|Survey responses||To help us better understand our customers needs and preferences.|
We use most of the above data for our own internal analysis to help us better understand our customers, and how our customers use our website. We do this to offer you a better service and user experience.
We will never sell, distribute or lease your data to any third party other than those companies we work with in the normal course of running our business to fulfil your yacht bookings and provide you with a rich personal service and user experience.
When we share data we only share the minimum possible for them to perform their services. We share limited personal information with:
You’ll find details of how to change the way we use your data in the ‘Your rights?’ section below. More generally, if you don’t want Facebook or other companies to collect or use information based on your activity on websites, devices or apps off Facebook for the purpose of showing you ads, you can opt out from all participating companies through the Digital Advertising Alliance (http://www.aboutads.info/choices/) in the USA, the Digital Advertising Alliance of Canada (http://youradchoices.ca/) in Canada or the European Interactive Digital Advertising Alliance (http://www.youronlinechoices.eu/) in Europe.
We (sales point) use WSPay for online payments.
WSPay is a secure system for online payments, real time credit and debit card payments, and other payment methods. WSPay ensures the buyer and the merchant with the secure card data entry and transfer, which is also confirmed by PCI DSS certificate. WSPay uses 256-bit SSL encryption and TLS 1.2 cryptographic protocol as the highest protection standards for data entry and transfer.
Data protection pursuant to the General Data Protection Regulation of the European Parliament and the Council no. 2016/679- Regulation and implementation of the GDPR
WSPay, being the processor of authorization and payment made by credit cards, uses personal data as the processor pursuant to the General Data Protection Regulation of the European Parliament and the Council no. 2016/679, and compliant with PCI DSS Level 1 Regulations for data transfers.
WSPay uses 256-bit SSL encryption and TLS 1.2 cryptographic protocol as the highest protection standards for data entry and transfer.
Personal data used for the purposes of authorization and payment are deemed to be confidential data.
The following customer's personal data are necessary to fulfil the Agreement (authorization and payment):
WSPay does not process or use these personal data except for the purpose of fulfilling the Agreement, the authorization and the payment.
WSPay ensures to meet the requirements determined by applicable personal data protection regulations, for the processors of personal data, especially taking all necessary technical, organizational or security measures confirmed by PCI DSS Level 1 certificate.
If you opt-in to receive marketing emails from us, we’ll send you a few emails each week keeping you up-to-date with our latest news, offers and events.
In addition, if you’ve chartered from us, we may use this information to send you emails about similar products that may be of interest to you. Some emails that we send will be based on actions that you take on our website, for example chartering or viewing a specific yacht. We do this to enhance your experience on our website, and to help you find yachts which we think may be useful to you.
You can unsubscribe from receiving marketing emails from us at any time by:
If you choose not to receive marketing emails you will still receive important charter ralated information by email.
Like many other online retailers, we use a range of digital advertising networks and technologies to send our customers targeted adverts on other websites. The adverts you see will be based on information that we hold about you, and might include:
Cookies are in general edible and yummy, but in this case they are small text files which are created by your web browser when you visit a website. Every time you revisit the same website, your browser retrieves and sends the cookie to the website’s server. Most websites rely on cookies for delivering the best visitor experience and there use ranges from analysing visitor behaviour (known as ‘analytics’), personalising pages, remembering visitor preferences, managing online shopping carts, tracking people across websites and delivering targeted advertising.
We will keep your personal information for as long as is necessary and solely for the purpose for which it was collected. For example we will keep personal data relating to charters for a minimum of 6 years to comply with our legal and contractual obligations.
At the end of that retention period, your data will either be deleted completely or anonymised, for example by aggregation with other data so that it can be used in a non-identifiable way for statistical analysis and business planning.
You can request at any time to have all personal data that is not needed for legal reasons deleted by going into your account security settings and choosing delete account.
We have implemented security policies, rules and technical measures to protect the personal data that we have under our control from: unauthorised access, improper use or disclosure, unauthorised modification, unlawful destruction or accidental loss. All our employees who have access to, and are associated with the processing of personal data, are obliged to respect the confidentiality of our visitors’ personal data.
When it comes to your personal information, you have the following rights:
To fulfil a charter outside the EU, some data will be passed on to the charter company which might be outside of the European Union. As with all of our data transfer, this is carried out in a secure way and only the information needed to fulfil your charter (e.g. name, contact details, address) will be provided.
If you have any questions about any changes we make, you are entitled to invoke any of your rights as set out above. We also encourage you to contact us.
We welcome all feedback, good or bad. If you have any questions and/or comments about our Pirvacy Policy and this statement, please contact us by using the following contact details:
All Time Yachting d.o.o.
1 Augusto Ferri