Privacy Policy

Horyzont Travel Privacy Policy

This Privacy Policy describes how Horyzont Travel collects, uses and protects the personal data of users of our website crafterhold.com and customers using our services. We care about your privacy and make every effort to keep your data safe.

1. Data Controller

The controller of your personal data is Horyzont Travel, with its registered office at ul. Grójecka 40, 02-320 Warsaw. In matters regarding personal data protection, you can contact us at the e-mail address: [email protected] or by phone: +48 22 654 91 82.

2. Scope and Purpose of Data Processing

We process your personal data for the following purposes:

  • Provision of tourist services: We process data such as name and surname, address, telephone number, e-mail address, passport data (if required), payment data in order to book and execute foreign trips, airline tickets and travel insurance.
  • Contact: We use your contact details to respond to your questions and requests, and to inform you about the status of your booking.
  • Marketing: With your consent, we may use your e-mail address to send you information about our special offers, promotions and news. You can opt out of receiving this information at any time.
  • Improving the quality of services: We analyze data on the use of our website to better understand the needs of our customers and improve our services.
  • Handling complaints and claims: We process data in order to handle complaints and claims related to our services.

3. Legal Basis for Data Processing

We process your personal data on the following legal bases:

  • Performance of the contract: Processing is necessary for the performance of the contract for the provision of tourist services that you conclude with us.
  • Consent: We process data on the basis of your voluntary consent, e.g. in order to send marketing information.
  • Legal obligation: Processing is necessary to fulfill the legal obligations incumbent on Horyzont Travel, e.g. obligations arising from tax regulations.
  • Legitimate interest: We process data based on our legitimate interest, e.g. in order to improve the quality of our services.

4. Data Recipients

Your personal data may be transferred to the following categories of recipients:

  • Cooperating entities: Airlines, hotels, insurance companies, tour operators with whom we cooperate in order to implement your trip.
  • IT service providers: Companies providing hosting services, technical support and providing software.
  • Payment service providers: Companies that handle online payments.
  • Public authorities: Public administration authorities, such as tax offices, to the extent that we are obliged to provide them with data on the basis of legal provisions.

5. Transfer of Data Outside the European Economic Area (EEA)

In some cases, your personal data may be transferred outside the EEA, e.g. if you book a trip to a country outside the EEA. In such cases, we ensure that data transfer takes place in accordance with applicable law, including through the use of standard contractual clauses approved by the European Commission or other appropriate legal mechanisms.

6. Data Retention Period

Your personal data will be stored for the period necessary to achieve the purposes for which it was collected, including:

  • Provision of tourist services: For the duration of the contract and the limitation period for claims arising from it.
  • Marketing: Until consent to receive marketing information is withdrawn.
  • Handling complaints and claims: For the period necessary to consider complaints and claims and the limitation period for claims.
  • Legal obligations: For the period required by law, e.g. tax regulations.

7. Your Rights

You have the following rights related to the processing of your personal data:

  • Right of access to data: You have the right to obtain information about whether we process your personal data, and if so, to access this data and information about its processing.
  • Right to rectify data: You have the right to request the rectification of incorrect personal data and the completion of incomplete data.
  • Right to delete data: You have the right to request the deletion of your personal data in certain situations, e.g. when the data is no longer necessary for the purposes for which it was collected.
  • Right to limit processing: You have the right to request the restriction of the processing of your personal data in certain situations, e.g. when you question the correctness of the data.
  • Right to data portability: You have the right to receive your personal data that you have provided to us in a structured, commonly used, machine-readable format and to send it to another controller.
  • Right to object: You have the right to object at any time to the processing of your personal data based on our legitimate interest.
  • Right to withdraw consent: If we process your personal data on the basis of your consent, you have the right to withdraw this consent at any time, which does not affect the lawfulness of the processing carried out on the basis of consent before its withdrawal.
  • Right to lodge a complaint: You have the right to lodge a complaint with the supervisory authority, which in Poland is the President of the Personal Data Protection Office, if you believe that we process your personal data in violation of the law.

8. Data Security

We use appropriate technical and organizational measures to ensure the security of your personal data, including:

  • Data encryption.
  • Data access control.
  • Regular training for our employees in the field of personal data protection.
  • Regular security audits.

9. Changes to the Privacy Policy

We reserve the right to change this Privacy Policy. The current version of the Privacy Policy is always available on our website.

10. Contact

If you have any questions or concerns regarding this Privacy Policy or the processing of your personal data, please contact us at the e-mail address: [email protected] or by phone: +48 22 654 91 82.