Privacy Policy


Effective Date: 01-04-2018
Last Updated: 03-03-2025


At Endemic Explorer, we are committed to safeguarding your privacy and ensuring the security of your personal data. This Privacy Policy explains how we collect, use, store, and protect your information in compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679 and other applicable data protection laws.

1. Data Collection

We collect personal data when you interact with us, including but not limited to:

Personal Information: Name, address, email address, phone number, and IP details.
Travel Information: Travel preferences, dietary requirements, special requests.
Identity Verification: Passport or ID card details (if required for travel services).

Data is collected when you:
a. Book a tour or travel service with us.
b. Sign up for newsletters or updates.
c. Contact us for inquiries.
d. Participate in surveys or promotions.
e. P Address Tracking & Website Security

We track and store IP addresses primarily for the following purposes:

a. Website Security: To detect and prevent fraudulent activities, cyber threats, and unauthorised access.
b. User Authentication: To verify the genuineness of website visitors and prevent spam or automated bot activities.
c. Legal Compliance: To comply with regulations and protect against malicious attacks.
d. Analytics & Performance Monitoring: To enhance website performance and user experience.

2. Legal Basis and Purpose of Data Processing

We process your personal data based on the following legal grounds:
a. Contractual Necessity: To process bookings and provide requested travel services.
b. Legitimate Interests: To improve our services, personalise experiences, and enhance customer support.
c. Consent: For marketing communications, newsletters, and optional services (you can withdraw your consent anytime).

3. Data Storage and Security

We implement strict security measures to protect your personal data, including:

a. Secure Databases: Data is stored in industry-standard platforms such as Zoho CRM  and Google Cloud.
b. Encryption & Access Control: Only authorised personnel can access personal data.
c. Regular Security Audits: To ensure data protection compliance.

Data Breach Notification
In the event of a data breach that affects your personal information, we will notify you and the relevant authorities as required by GDPR.

4. Your Rights Under GDPR

As a data subject, you have the following rights:
a. Right to Access: Request a copy of the personal data we hold about you.
b. Right to Rectification: Request corrections to inaccurate or incomplete data.
c. Right to Erasure: Request deletion of your personal data, subject to legal obligations.
d. Right to Restrict Processing: Request limitations on how we process your data.
e. Right to Data Portability: Request a transfer of your data to another service provider or furnish digital copies.
f. Right to Object: Object to data processing for certain purposes, such as marketing.
g. Right to Withdraw Consent: Withdraw consent for specific data processing (e.g., marketing communications).

To exercise any of these rights, contact us at info@endemicexplorer.com

5. Data Retention

We retain your data only as long as necessary for:
a. Fulfilling our contractual and legal obligations.
b. Providing and improving our services.
c. Compliance with tax, accounting, and regulatory requirements.
Once the retention period expires, your data will be securely deleted or anonymised.

6. International Data Transfers

To deliver our services, we may transfer data outside the EU/EEA. In such cases, we ensure compliance by:
Implementing Standard Contractual Clauses (SCCs) approved by the European Commission.
Ensuring appropriate security measures are in place to protect your data.

7. Third-Party Data Sharing

To fulfil your bookings, we share relevant personal data with trusted third parties such as:
a. Hotels and Lodges (for accommodation reservations).
b. Tour Operators and Guides (for travel experiences and excursions).
c. Transport Providers (e.g., car rentals, airport transfers).

Data Shared: Name, contact details, ID/passport details (if required), and travel preferences.

Our third-party partners are contractually obligated to comply with GDPR and process your data responsibly.

8. Marketing & Newsletter Opt-In

If you opt-in to receive our newsletter, we may send you updates and promotional materials. You can opt-out anytime by:
Clicking the “unsubscribe” link in our emails.
Contact us at info@enedemicexplorer.com

9. Cookies & Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance user experience and analyse site traffic. By using our website, you consent to the use of cookies in accordance with this policy.

What Are Cookies?

Cookies are small data files stored on your device that help improve website functionality and personalise content. They may be session-based (deleted after your visit) or persistent (stored for a set duration).

Types of Cookies We Use
a. Essential Cookies: Required for website functionality (e.g., login, security, navigation).
b. Analytical Cookies: Help us understand website traffic and improve performance.
c. Marketing Cookies: Used for personalised advertising and retargeting.
d. Preference Cookies: Store user settings and preferences for a better browsing experience.

Managing Cookie Preferences
You can control cookie preferences via:
a. Browser Settings: Adjust cookie permissions in your browser settings.
b. Opt-Out Tools: Use third-party tools to opt out of tracking.
c. Website Consent Banner: Adjust preferences via our cookie consent management tool.

10. Automated Decision-Making & Profiling

We do not use automated decision-making that significantly affects users. Any profiling conducted is solely for service personalisation, customer experience improvements, and marketing purposes, based on user consent.

11. Behavioral Advertising & Third-Party Trackers

We may use third-party analytics and advertising tools, such as Google Analytics and Meta (Facebook) Pixel, to analyse website traffic and deliver targeted advertisements. These tools may collect and process data, including IP addresses and browsing behaviour. Users can opt-out through browser settings or industry opt-out tools such as Network Advertising Initiative.

12. Payment Data Protection

We use secure third-party payment processors (e.g., Stripe, PayPal) to handle transactions. We do not store or process credit card details on our servers. Payment providers process your financial information securely and in compliance with applicable data protection laws.

13. Contact Us

If you have any questions about our Privacy Policy or wish to exercise your GDPR rights, contact us:

📧 Email: info@endemicexplorer.com
📞 Phone:
📍 Address:

14. Updates to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. Any updates will be posted on this page, and we encourage you to review this policy regularly.

You agree to the terms outlined in this Privacy Policy by using our services.

Start Your Journey Today

Alternatively, please fill out the form below and a A&K Travel Expert will contact you within the next business day.

To see the full details of our affiliated companies that may contact you and how we may use your data for direct marketing visit our Privacy Notice. If you wish to opt-out of our marketing communications or limit marketing from our affiliates, you can ask us not to call you again, unsubscribe at any time, or send us an email Calls may be made, and messages may be sent, using an automatic telephone dialing system. Consent is not required as a condition of purchase.