Tourify

Privacy Policy

Last updated: October 07, 2025Version 1.1

CONSENT BY USE: By accessing or using our platform, you automatically consent to our data collection and cookie usage practices. This consent is necessary for platform functionality and service delivery.

Tourify uses cookies and collects data essential for booking services, user authentication, payment processing, and platform operations. Continued use constitutes ongoing consent to these practices.

Legal Basis: Essential cookies and data processing are required for legitimate business interests and service provision. No separate cookie consent is required for functional necessities.

Data Practices Overview

Extensive Data Collection

We collect all information necessary for platform operation, business purposes, legal compliance, and service provider coordination, including behavioral tracking and third-party data.

Broad Usage Rights

We use your data for service provision, platform operations, business development, marketing, analytics, compliance, and any purposes related to our legitimate business interests.

Wide Data Sharing

Information is shared with service providers, business partners, government entities, and other third parties as required for business operations and legal compliance.

Limited User Control

Your privacy rights are subject to legal requirements, business necessities, technical limitations, and third-party policies. Rights may be restricted or unavailable.

Data Controller

Tourify operates as the data controller for the personal information collected through our platform. You can contact us regarding any privacy matters:

Company: Tourify Travel Pty Ltd

Email: privacy@thetourify.com

Phone: +61 1800 595 430

Address: Office 3675, Ground floor, 470 St Kilda Road, Melbourne VIC 3004, Australia

Data Protection Officer: dpo@thetourify.com

1. Information We Collect

1.1 Personal Information You Provide

Account Information: Name, email address, phone number, password
Booking Details: Travel dates, destinations, number of travelers
Traveler Information: Names, dates of birth, nationality, passport numbers
Payment Information: Credit/debit card details (processed securely by Stripe)
Special Requirements: Dietary restrictions, accessibility needs, preferences
Communication: Messages, reviews, feedback, support requests

1.2 Information We Collect Automatically

Usage Data: Pages visited, time spent, click patterns, search queries
Device Information: IP address, browser type, operating system, device identifiers
Location Data: General location based on IP address (not precise GPS)
Cookies & Tracking: Analytics data, preferences, session information

1.3 Third-Party Information

Social Login: Basic profile information from Google OAuth
Payment Processors: Transaction status and payment verification
Tour Partners: Booking confirmations and service updates

2. How We Use Your Information

2.1 Service Provision (Legal Basis: Contract)

Process and manage your tour bookings
Coordinate with tour operators and accommodation providers
Handle payments and refunds
Provide customer support and assistance
Send booking confirmations and travel information

2.2 Platform Improvement (Legal Basis: Legitimate Interest)

Analyze usage patterns to improve user experience
Develop new features and services
Ensure platform security and prevent fraud
Conduct research and analytics

2.3 Marketing Communications (Legal Basis: Consent)

Send promotional emails about new destinations and offers
Share travel tips and destination guides
Notify you about special deals and discounts
Conduct surveys and collect feedback

You can opt out of marketing communications at any time using the unsubscribe link in emails or by updating your preferences in your account settings.

2.4 Legal Compliance (Legal Basis: Legal Obligation)

Comply with applicable laws and regulations
Respond to legal requests and court orders
Prevent fraud and ensure platform security
Maintain records for accounting and tax purposes

3. How We Share Your Information

3.1 EXTENSIVE DATA SHARING WITH THIRD PARTIES

BROAD SHARING AUTHORITY: We share personal information with numerous third parties for business operations, marketing, analytics, and any purposes we deem necessary. Third parties may further share this data at their discretion.

Service Providers: Complete user profiles and behavioral data shared with all partners
Tour Operators: Full personal details, preferences, and travel history
Marketing Partners: Contact information and preferences for promotional activities
Payment Processors: Financial data and transaction history
Analytics Companies: Comprehensive usage data and personal identifiers
Business Partners: Customer data for joint ventures and collaborations
Advertisers: Personal information for targeted advertising campaigns
Data Brokers: Aggregated and individual data for commercial purposes

3.2 GOVERNMENT AND LEGAL SHARING

BROAD DISCLOSURE AUTHORITY: We may disclose personal information to government entities, law enforcement, regulatory bodies, or legal parties at our discretion, even without legal compulsion.

Information shared with law enforcement agencies without warrant requirements
Regulatory compliance may involve extensive personal data disclosure
Government requests are honored regardless of legal validity
Legal disputes may involve complete user data sharing with opposing parties

3.3 BUSINESS TRANSFERS AND COMMERCIAL USE

UNRESTRICTED TRANSFER RIGHTS: Your personal information may be sold, transferred, or licensed to third parties for any business purpose, including mergers, acquisitions, asset sales, or commercial transactions.

Data may be sold or licensed to generate revenue for our business
Business acquisitions transfer all user data to new owners
Asset sales may include customer databases and personal information
Commercial partnerships may involve data sharing arrangements
Investors and financial institutions may receive access to user data

4. Data Security Disclaimers and Limitations

NO SECURITY GUARANTEES: While we implement reasonable security measures, we make no warranties or guarantees regarding data security. You acknowledge that data breaches and security incidents are possible and accept these risks.

4.1 LIMITED SECURITY MEASURES

Standard Protection Only: Basic SSL/TLS encryption for data transmission
Third-Party Dependencies: Security relies on external service providers
Limited Access Controls: Business operations may require broad data access
No Audit Guarantees: Security assessments performed at our discretion
Basic Incident Response: Response procedures are best-effort only

4.2 SECURITY INCIDENT DISCLAIMERS

NO LIABILITY FOR BREACHES: We are not liable for security incidents, data breaches, unauthorized access, or any resulting damages, regardless of cause.

Security incidents may not be detected or reported promptly
Breach notifications are provided on a best-effort basis only
We are not responsible for third-party security failures
Remediation efforts are discretionary and not guaranteed
You assume all risks related to data security and privacy

5. Limited Privacy Rights and Restrictions

IMPORTANT: While certain privacy laws provide data subject rights, these rights are subject to significant limitations, exceptions, and restrictions. Many requests may be denied based on business necessity, legal obligations, or technical constraints.

5.1 DATA ACCESS LIMITATIONS

Restricted Access Rights: Data access may be limited, delayed, or denied based on business operations, third-party restrictions, or technical limitations.

Data requests may be denied if they affect business operations
Third-party data may not be accessible or modifiable
Technical limitations may prevent complete data retrieval
Commercial sensitivity may restrict data disclosure
Processing may take significantly longer than legal minimums

5.2 DATA DELETION RESTRICTIONS

Deletion Limitations: Most data deletion requests will be denied due to legitimate business interests, legal requirements, or operational necessities.

Booking and financial records are retained indefinitely for business purposes
Legal compliance requirements override deletion requests
Operational data necessary for service provision cannot be deleted
Data shared with third parties is outside our deletion control
Backup systems may retain deleted data for extended periods
Aggregated and anonymized data is permanently retained

5.3 CORRECTION AND PORTABILITY LIMITATIONS

Modification Restrictions: Data corrections and portability requests are subject to verification requirements, technical constraints, and business limitations.

Data corrections require extensive verification and may be rejected
Historical data cannot be modified once processed
Third-party data is not subject to correction requests
Data portability may exclude proprietary formatting and analytics
Complex data relationships may prevent complete portability

5.4 REQUEST PROCESSING LIMITATIONS

NO GUARANTEE OF RESPONSE: Privacy requests are handled on a best-effort basis. We make no guarantees regarding response times, request fulfillment, or outcome satisfaction.

Response times may significantly exceed legal minimum requirements
Requests may be denied without detailed explanation
Verification requirements may be extensive and burdensome
Fees may be charged for complex or repetitive requests
Legal counsel may be required for dispute resolution
Decisions are final and not subject to internal appeal

Requests: privacy@thetourify.com

No guaranteed response time. Complex requests may require legal consultation at your expense.

6. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience on our platform. For detailed information about our cookie practices, please see our Cookie Policy.

6.1 Google Analytics 4 & Advertising Tracking

ANALYTICS & ADVERTISING COOKIES: We use Google Analytics 4 and Google Tag Manager to collect detailed information about your interactions with our platform. This data is used for analytics, advertising optimization, and remarketing campaigns.

What We Track with Google Analytics:

Page Views: Every page you visit and time spent on each page
Tour Browsing Behavior: Which tours you view, search for, or interact with
Trip Customization: All selections you make (destinations, vehicles, accommodations)
Booking Journey: Complete path from browsing to checkout
Purchase Events: Transaction details, amount spent, items purchased
Device & Location: Browser type, device model, operating system, general location
Traffic Sources: How you found us (ads, search, social media)

Google Ads Integration:

Your data is shared with Google Ads for advertising purposes, including:

Conversion Tracking: Measuring ad effectiveness and ROI
Remarketing: Showing you ads after you leave our site
Audience Targeting: Creating custom audiences based on your behavior
Similar Audiences: Finding users with similar characteristics
Ad Personalization: Tailoring ads based on your interests

Cookie Consent Management:

When you first visit our site, a cookie banner will appear asking for your consent to use analytics and advertising cookies. You can:

Accept All Cookies: Grants permission for analytics and advertising tracking
Decline Cookies: Only essential functional cookies will be used

Your choice is stored in your browser's localStorage. You can change your preference by clearing your browser's data, which will show the banner again on your next visit.

Third-Party Data Sharing:

Google Analytics and Google Ads are third-party services operated by Google LLC. When you consent to these cookies:

Google may combine your data with other Google services
Your information may be transferred to servers in the United States and other countries
Google's own privacy policies and terms apply to this data
Data may be retained by Google according to their retention policies

Learn more about Google's data practices: Google Privacy Policy

Opting Out of Google Analytics:

If you decline cookies via our banner, GA4 tracking will be disabled. You can also:

Install the Google Analytics Opt-out Browser Add-on
Use browser settings to block third-party cookies
Enable "Do Not Track" in your browser (though we may not honor this signal)
Visit Google Ads Settings to control ad personalization

Important: Declining analytics cookies will not affect your ability to use our platform, but may limit our ability to improve your user experience and show you relevant advertisements.

7. Indefinite Data Retention Policy

INDEFINITE RETENTION: We reserve the right to retain all personal information indefinitely for business purposes, legal compliance, analytics, and operational requirements. Deletion requests may be denied.

Data retention periods are determined solely at our discretion based on business necessity:

All User Data: Retained indefinitely for business and legal purposes
Financial Records: Permanent retention for accounting and audit requirements
Communication Data: Retained indefinitely for customer service and dispute resolution
Analytics and Behavioral Data: Permanently retained for business intelligence
Third-Party Data: Retention governed by external party policies
Backup Systems: Data may persist in backups indefinitely

No Deletion Guarantees: Even when data appears deleted from active systems, copies may persist in backups, archives, or third-party systems indefinitely.

8. International Data Transfers

Your personal information may be transferred to and processed in countries outside your residence. We ensure appropriate safeguards are in place:

Adequacy Decisions: Transfers to countries with adequate protection
Standard Contractual Clauses: EU-approved data transfer agreements
Service Provider Safeguards: All third parties implement appropriate protections

9. Children's Privacy

Our services are not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you become aware that a child has provided us with personal information, please contact us so we can take appropriate action.

10. Unrestricted Privacy Policy Modifications

UNLIMITED MODIFICATION RIGHTS: We reserve the right to modify this Privacy Policy at any time, for any reason, with or without advance notice or user consent. Continued use of our services constitutes acceptance of all changes.

Policy modifications may include fundamental changes to data practices:

Changes may be made without notification or prominent display
Retroactive changes may apply to previously collected data
User consent is not required for any policy modifications
Changes take effect immediately upon publication
No grandfathering of previous policy terms
Fundamental privacy practices may be altered without restriction

11. Contact Us

If you have any questions about this Privacy Policy or our privacy practices, please contact us:

Privacy Inquiries: privacy@thetourify.com