Privacy Policy

1. Introduction

SoulGarve (“we”, “our”, “us”) is committed to protecting your privacy in accordance with the General Data Protection Regulation (EU) 2016/679, the Portuguese Data Protection Law 58/2019 and the ePrivacy framework.

This Privacy Policy explains what personal data we collect, why we collect it, how we use it, and the choices you have.

2. Data We Collect

• Identification data (name, email, telephone, nationality)
• Booking details (tour, date, number of participants)
• Payment data (tokenised by Stripe – we do not store card numbers)
• Usage data (IP address, browser type, pages visited, time on page)
• Consent records for cookies and marketing communications

3. How We Use Your Data

• Process and manage bookings and payments
• Respond to enquiries and provide customer support
• Send service-related notifications (e.g. confirmations, reminders)
• Send newsletters and offers (only if you have opted-in)
• Improve our website, services and user experience (analytics)
• Comply with legal obligations (e.g. accounting, safety records)

4. Legal Basis for Processing

We process personal data on one or more of the following bases:

• Performance of a contract (managing your booking)
• Compliance with legal obligations
• Legitimate interest (website security, business analytics)
• Your explicit consent (marketing e-mails, non-essential cookies)

5. Data Retention

We retain personal data only for as long as necessary for the purposes stated above or to meet legal/accounting requirements (typically 10 years for fiscal records). After that it is securely deleted or anonymised.

6. Sharing Your Data

We share data only with trusted third parties that provide services on our behalf – for example:

• Payment processor (Stripe)
• Email service provider (Mailerlite/Mailchimp)
• Analytics provider (Google Analytics 4 – IP-anonymised)

These partners process data solely under our instructions and are bound by confidentiality and data-protection agreements. We never sell your data.

7. International Transfers

Where data is transferred outside the European Economic Area we rely on European Commission adequacy decisions or Standard Contractual Clauses to ensure an equivalent level of protection.

8. Cookies & Tracking Technologies

Our site uses first-party and third-party cookies. When you first visit, a cookie-consent banner lets you accept or refuse the following categories:

• Strictly Necessary – always active; required for basic site functionality.
• Analytics – help us understand site performance (e.g. Google Analytics 4). Disabled until you opt-in.
• Marketing – advertising and remarketing tools such as Meta (Facebook) Pixel or Google Ads. No marketing pixels are active at the moment; if we implement them in the future they will be disabled by default until you give consent.

You can review or change your preferences at any time via the “Cookie Settings” link in the footer, or by clearing cookies in your browser.

9. Security Measures

We use SSL/TLS encryption, strict access controls, regular security audits and staff training to keep your data safe.

10. Your Rights

Under GDPR you have the right to:

• Access, correct or delete your data
• Restrict or object to processing
• Data portability
• Withdraw consent at any time (e.g. unsubscribe link, Cookie Settings)
• Lodge a complaint with the Portuguese Data Protection Authority (CNPD)

11. Contact

To exercise your rights or ask questions, contact our Data Protection Officer:

• Company: SoulGarve
• Address: Albufeira, Algarve, Portugal
• Email: support@soulgarve.com
• Phone: +351 925 454 191

12. Updates to This Policy

We may modify this Privacy Policy from time to time. Any changes will be posted here and, where appropriate, notified via email.