About this Policy
Sri Lankan Footprints l takes its data protection and privacy responsibilities seriously. Please read the following privacy policy to understand how we use and protect our user personnel information.
Who we are
We are part of a wide group of companies and references to ‘Trimagine‘, ‘Trimagine Travels’, ‘Sri Lankan Footprints‘, ‘we’, ‘our’ and ‘us’ means Trimagine Travels Limited and each of our affiliates and branded partners forming part of our group, including Trimagine Travel, Trimagine Travels, Sri Lankan Footprints. It also includes our local destination management companies (Destination Management Companies) forming part of the Trimagine Group who operate and run our tours worldwide, along with tours and travel services operated by our partners including but not limited to Trimagine Travels Limited Sri Lanka a joint venture partner of Trimagine Travel Limited, New Zealand.
What Information do we collect about you?
Making an Enquiry or Booking a Trip
We will collect certain information from you when you make an enquiry or book a trip with us. Typically we collect the following personal information:
- your full name, date of birth, gender (i.e. male/female/other), title, postal address, phone number, email address, dietary requirements, travel insurance details, passport details (including nationality and city of birth), passport copy, copy of your visa page;
- we may also ask for medical / health information, such as pre-existing medical conditions, vaccination status, if you have a disability, medication that requires refrigeration, food allergies etc., some of which is considered sensitive information or special category data under relevant data protection laws; and
- any additional information you provide during the booking process to check if a trip is right for you, which may include personal information.
We also process and store records of the products and services you have enquired about or purchased from us, as well as collect and process information relevant to your booking (such as flights and accommodation details) that you have not booked through Trimagine, where this information has been passed to us by our partners and/or third parties.
At any point Trimagine is not apply visa for you for any destinations. It’s Travellers responsibility to obtain visa for relevant destination.
We also collect your technical identity data (including IP addresses, browser type and versions, other technology on the device that you use to access our websites, some of which is collected automatically), as well as information about your usage of our websites as you and others browse our websites (see our separate “Cookies” policy for more information).
We may also receive information about you from other sources. These include business partners, such as our affiliate partners, including Trimagine Travels Sri Lanka, travel providers and tour operators, travel agents and other independent third parties. Anything we receive from these sources may be combined with information provided by you. For example, our services are not only made available via our website and mobile apps, but are also integrated into the services of our affiliate partners that you can find online. When you use any of these services, you may provide reservation details to our business partners who, where permitted, then forward your details to us.
Travel providers (e.g. accommodation, hotel, transport and other similar local providers (Travel Providers) may also share personal information about you with Trimagine, for example, to ensure fulfillments of your travel reservation, if you have support questions about a tour or trip booked, or if any complaints or disputes arising about your reservation.
Through your user preferences on your Trimagine booking account, if you link you Trimagine user account to a social media account (e.g. Facebook or Google) you may exchange information between us and that social media provider – though you can at all times choose not to share that data through the user preferences on your account.
Financial Information
We also integrate with third party service providers (such as Ayden) and payment gateways (such as Stripe, Eway) to facilitate payments between you and us and our partners and tour operators and agents, as applicable. These service providers share payment information so we can administer and handle your travel services reservation or tour. All of our third-party payments providers are required to be PCI DSS compliant and process all payments on our behalf.
In the majority of cases, to make a payment via credit card for your tour / travel services, you will use the secure online booking engine on the relevant website or platform that you are using or you will call your booking agent directly. In some limited cases, your bank details may be collected and recorded by us for the purposes of providing the refund only.
We ask that you do not email or send in writing your payment card details to us or any of our partners at any time. We also ask you not to provide your credit card details over the phone.
We are not responsible for the privacy practices of third party vendors and providers, including payment providers, so you should review any privacy policy of third party vendor or providers to satisfy yourself as to how they protect and handle your personal information.
With your consent also, any calls with us, if any, may be recorded, and/or monitored for quality control, coaching and/or training and customer service purposes that assist in addressing your inquiries. As part of the recording. we may collect information such as the identity of the caller, the date and time of the call and the subject and resolution of the issue. For clarity, any financial information that may be provided during a telephone call is not recorded or logged by Trimagine.
Comments
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.
Photos and Videos
When you are travelling with us on a tour or branded trip, as part of your experience a photo or video may be taken either by the Trimagine leader, an employee of Trimagine or one of our partners or another passenger. We care about your privacy so if you do not wish for your photograph to be taken at any time, or to be included in any video, please let your tour group leader or the photographer know. Any photos taken by Trimagine staff (including employees and group leaders) will not be used for marketing purposes without your prior knowledge. Whilst we take every precaution to protect your privacy, we are not responsible for passengers who may take your photograph or video you without our knowledge.
On some occasions, we may engage professional photographers to take and obtain photos to use in our marketing materials. We ensure that all of our customers are notified prior to travelling on our trips if a professional photographer is being engaged and you have the right to say no or opt-out of being included in any photos being taken for these purposes, including any subsequent content or images use.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
Cookies
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.
Who we share your data with
If you request a password reset, your IP address will be included in the reset email. We do not share you data with any other 3rd party platform. However, your browser setting may allow other services such as facebook and google to collect information. We are not responsible for any other 3rd party data sharing.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website, booking or through contact us pages , we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
What are your rights
We want you to feel reassured that you have control of the information you provide to us. Subject to certain exemptions, and depending on relevant data protection laws, including in some cases upon our legal basis for processing your information there are certain rights you have over your personal information. These include:
- You can ask us to update any inaccurate, incomplete or out-of-date information we hold about you
- You can ask us to provide you with a copy of the information we hold on you, or that we transfer that information to another service provider
- You may request that we stop processing or using your information
- You may request that we delete any / all information we hold about you
- You may withdraw consent that you have provided to us
Where possible we will comply with your request, however, there may be instances where we cannot fulfil your request, or there will be consequences if we were to fulfil your request. We will always communicate with you about any consequences before going forward, or give you written reasons for any refusal.
Under certain data protection laws, including the EU/UK GDPR, you may also (subject to certain exceptions):
- withdraw consent to our use of your information for marketing purposes;
- object to the processing of your personal data, where we collect your personal data for our legitimate interest;
- request your personal information be transferred to yourself or a third party without hindrance in a commonly used format.
We may ask you for additional information to confirm your identity and for security purposes, before disclosing the personal information requested to you. We reserve the right to charge a fee where permitted by law, for instance if your request is manifestly unfounded or excessive.
We will only perform the activities outlined above to the extent that such activities will not compromise privacy, security or any other legal interests.
You may also wish to make a complaint about the way we have handled your personal information or other interference with your privacy rights.
You can exercise any of these rights at any time by contacting us (see the Contact Us section) or your relevant privacy or data protection authority.
Marketing and Interactions
We collect the following personal information from you for marketing purposes
- when you subscribe to the newsletter, we will collect your email address
- via our preference centre, we will collect your phone number, date of birth, postcode/zip code, residential state and your travel preferences
- if you request a brochure, we will collect your full name and email address
- if you enter a competition directly with Trimagine, or via one of Trimagine’s external partners, or click through on an Trimagine advertisement, we may collect your full name, country, email address and phone number, as well as your travel preferences.
- when you click on an Trimagine advertisement via a third party, some of this information may pre-populate from an account you may have with that third party.
Research
We may contact you to seek your interest in taking part in research projects, surveys feedbacks and interviews. This may include contacting you with a post-booking or post-trip feedback survey and asking to provide a score and comment on your experience.
As part of this contact, we may collect your full name, email address, booking number. You will be asked to provide a score and comment on your trip experience. This information will be linked to any comments you make about your trip.
Where you have provided the relevant details, we may also contact you in response to your feedback to discuss your comments.
Selling data
We do not and will not sell your personal information under any circumstances.
How we keep your information secure
Trimagine is dedicated to keeping your personal information secure. We have implemented various physical, electronic and managerial security procedures in order to protect your information and reduce the risk of loss and misuse, and from unauthorized access, modification, disclosure and interference.
We have put in place adequate procedures to deal with any actual or suspected personal information breach and will notify you and any applicable regulator of any data breach where we are legally required to do so.
Whilst we take all reasonable steps to ensure that your personal information is secure, we would ask you to be aware that the internet is inherently insecure, so please take precautions when disclosing any personal information online to us.
Links to Third Party Sites
Our website may include links to third party websites. Clicking on those links may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy policies. When you leave our website, we encourage you to read the privacy policy of every website you visit.
Third-Party Widgets
Some of our services contain widgets and social media features, such as the Facebook “like” button. These widgets and features collect your IP address, which page you are visiting on the Services, and may set a cookie to enable the feature to function properly. Widgets and social media features are either hosted by a third party or hosted directly on our Services. Your interactions with these features are governed by the privacy policy of the company providing it.