GDPR Policy

Introduction

This GDPR Policy outlines how OkayLetsGo ("we", "our", or "us") processes and protects personal data in accordance with the General Data Protection Regulation (GDPR) of the European Union.

Data Controller

OkayLetsGo acts as the data controller for personal information collected through our service. For any GDPR-related queries, please contact our Data Protection Officer at dpo@okayletsgo.com.

Legal Basis for Processing

We process personal data under the following legal bases:

  • Consent: When you explicitly agree to the processing of your personal data
  • Contractual Necessity: When processing is necessary for the performance of our contract with you
  • Legal Obligation: When we need to comply with a legal requirement
  • Legitimate Interests: When processing is necessary for our legitimate interests or those of a third party

Your Rights Under GDPR

Under GDPR, you have the following rights:

  • Right to access your personal data
  • Right to rectification of inaccurate personal data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent
  • Right to lodge a complaint with a supervisory authority

Data We Collect

Personal Data

  • Name and contact information
  • Account credentials
  • Travel preferences and history
  • Payment information
  • Communication data

Technical Data

  • IP address
  • Browser type and version
  • Device information
  • Usage data
  • Cookies and similar technologies

International Data Transfers

When we transfer personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place through standard contractual clauses or other approved mechanisms.

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting requirements. When data is no longer needed, it is securely deleted or anonymized.

Data Security

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including encryption, access controls, and regular security assessments.

Data Breach Procedures

In the event of a personal data breach, we will notify relevant supervisory authorities and affected individuals in accordance with GDPR requirements.

Contact Information

To exercise your rights or for any questions about our GDPR compliance, please contact our Data Protection Officer at:

Email: dpo@okayletsgo.com

Address: [Your Company Address]

Found a bug?

Have a feature idea or suggestion?