Tourify Logo

Tourify

Back to Home

Privacy Policy

Last updated: August 25, 2025Version 1.0

CONSENT BY USE: By accessing or using our platform, you automatically consent to our data collection and cookie usage practices. This consent is necessary for platform functionality and service delivery.

Tourify uses cookies and collects data essential for booking services, user authentication, payment processing, and platform operations. Continued use constitutes ongoing consent to these practices.

Legal Basis: Essential cookies and data processing are required for legitimate business interests and service provision. No separate cookie consent is required for functional necessities.

Data Practices Overview
Extensive Data Collection

We collect all information necessary for platform operation, business purposes, legal compliance, and service provider coordination, including behavioral tracking and third-party data.

Broad Usage Rights

We use your data for service provision, platform operations, business development, marketing, analytics, compliance, and any purposes related to our legitimate business interests.

Wide Data Sharing

Information is shared with service providers, business partners, government entities, and other third parties as required for business operations and legal compliance.

Limited User Control

Your privacy rights are subject to legal requirements, business necessities, technical limitations, and third-party policies. Rights may be restricted or unavailable.

Data Controller

Tourify operates as the data controller for the personal information collected through our platform. You can contact us regarding any privacy matters:

Company: Tourify Travel Pty Ltd

Email: privacy@thetourify.com

Phone: +61 1800 595 430

Address: Office 3675, Ground floor, 470 St Kilda Road, Melbourne VIC 3004, Australia

Data Protection Officer: dpo@thetourify.com

1. Information We Collect
1.1 Personal Information You Provide
  • Account Information: Name, email address, phone number, password
  • Booking Details: Travel dates, destinations, number of travelers
  • Traveler Information: Names, dates of birth, nationality, passport numbers
  • Payment Information: Credit/debit card details (processed securely by Stripe)
  • Special Requirements: Dietary restrictions, accessibility needs, preferences
  • Communication: Messages, reviews, feedback, support requests
1.2 Information We Collect Automatically
  • Usage Data: Pages visited, time spent, click patterns, search queries
  • Device Information: IP address, browser type, operating system, device identifiers
  • Location Data: General location based on IP address (not precise GPS)
  • Cookies & Tracking: Analytics data, preferences, session information
1.3 Third-Party Information
  • Social Login: Basic profile information from Google OAuth
  • Payment Processors: Transaction status and payment verification
  • Tour Partners: Booking confirmations and service updates
2. How We Use Your Information
2.1 Service Provision (Legal Basis: Contract)
  • Process and manage your tour bookings
  • Coordinate with tour operators and accommodation providers
  • Handle payments and refunds
  • Provide customer support and assistance
  • Send booking confirmations and travel information
2.2 Platform Improvement (Legal Basis: Legitimate Interest)
  • Analyze usage patterns to improve user experience
  • Develop new features and services
  • Ensure platform security and prevent fraud
  • Conduct research and analytics
2.3 Marketing Communications (Legal Basis: Consent)
  • Send promotional emails about new destinations and offers
  • Share travel tips and destination guides
  • Notify you about special deals and discounts
  • Conduct surveys and collect feedback

You can opt out of marketing communications at any time using the unsubscribe link in emails or by updating your preferences in your account settings.

2.4 Legal Compliance (Legal Basis: Legal Obligation)
  • Comply with applicable laws and regulations
  • Respond to legal requests and court orders
  • Prevent fraud and ensure platform security
  • Maintain records for accounting and tax purposes
3. How We Share Your Information
3.1 EXTENSIVE DATA SHARING WITH THIRD PARTIES

BROAD SHARING AUTHORITY: We share personal information with numerous third parties for business operations, marketing, analytics, and any purposes we deem necessary. Third parties may further share this data at their discretion.

  • Service Providers: Complete user profiles and behavioral data shared with all partners
  • Tour Operators: Full personal details, preferences, and travel history
  • Marketing Partners: Contact information and preferences for promotional activities
  • Payment Processors: Financial data and transaction history
  • Analytics Companies: Comprehensive usage data and personal identifiers
  • Business Partners: Customer data for joint ventures and collaborations
  • Advertisers: Personal information for targeted advertising campaigns
  • Data Brokers: Aggregated and individual data for commercial purposes
3.2 GOVERNMENT AND LEGAL SHARING

BROAD DISCLOSURE AUTHORITY: We may disclose personal information to government entities, law enforcement, regulatory bodies, or legal parties at our discretion, even without legal compulsion.

  • Information shared with law enforcement agencies without warrant requirements
  • Regulatory compliance may involve extensive personal data disclosure
  • Government requests are honored regardless of legal validity
  • Legal disputes may involve complete user data sharing with opposing parties
3.3 BUSINESS TRANSFERS AND COMMERCIAL USE

UNRESTRICTED TRANSFER RIGHTS: Your personal information may be sold, transferred, or licensed to third parties for any business purpose, including mergers, acquisitions, asset sales, or commercial transactions.

  • Data may be sold or licensed to generate revenue for our business
  • Business acquisitions transfer all user data to new owners
  • Asset sales may include customer databases and personal information
  • Commercial partnerships may involve data sharing arrangements
  • Investors and financial institutions may receive access to user data
4. Data Security Disclaimers and Limitations

NO SECURITY GUARANTEES: While we implement reasonable security measures, we make no warranties or guarantees regarding data security. You acknowledge that data breaches and security incidents are possible and accept these risks.

4.1 LIMITED SECURITY MEASURES
  • Standard Protection Only: Basic SSL/TLS encryption for data transmission
  • Third-Party Dependencies: Security relies on external service providers
  • Limited Access Controls: Business operations may require broad data access
  • No Audit Guarantees: Security assessments performed at our discretion
  • Basic Incident Response: Response procedures are best-effort only
4.2 SECURITY INCIDENT DISCLAIMERS

NO LIABILITY FOR BREACHES: We are not liable for security incidents, data breaches, unauthorized access, or any resulting damages, regardless of cause.

  • Security incidents may not be detected or reported promptly
  • Breach notifications are provided on a best-effort basis only
  • We are not responsible for third-party security failures
  • Remediation efforts are discretionary and not guaranteed
  • You assume all risks related to data security and privacy
5. Limited Privacy Rights and Restrictions

IMPORTANT: While certain privacy laws provide data subject rights, these rights are subject to significant limitations, exceptions, and restrictions. Many requests may be denied based on business necessity, legal obligations, or technical constraints.

5.1 DATA ACCESS LIMITATIONS

Restricted Access Rights: Data access may be limited, delayed, or denied based on business operations, third-party restrictions, or technical limitations.

  • Data requests may be denied if they affect business operations
  • Third-party data may not be accessible or modifiable
  • Technical limitations may prevent complete data retrieval
  • Commercial sensitivity may restrict data disclosure
  • Processing may take significantly longer than legal minimums
5.2 DATA DELETION RESTRICTIONS

Deletion Limitations: Most data deletion requests will be denied due to legitimate business interests, legal requirements, or operational necessities.

  • Booking and financial records are retained indefinitely for business purposes
  • Legal compliance requirements override deletion requests
  • Operational data necessary for service provision cannot be deleted
  • Data shared with third parties is outside our deletion control
  • Backup systems may retain deleted data for extended periods
  • Aggregated and anonymized data is permanently retained
5.3 CORRECTION AND PORTABILITY LIMITATIONS

Modification Restrictions: Data corrections and portability requests are subject to verification requirements, technical constraints, and business limitations.

  • Data corrections require extensive verification and may be rejected
  • Historical data cannot be modified once processed
  • Third-party data is not subject to correction requests
  • Data portability may exclude proprietary formatting and analytics
  • Complex data relationships may prevent complete portability
5.4 REQUEST PROCESSING LIMITATIONS

NO GUARANTEE OF RESPONSE: Privacy requests are handled on a best-effort basis. We make no guarantees regarding response times, request fulfillment, or outcome satisfaction.

  • Response times may significantly exceed legal minimum requirements
  • Requests may be denied without detailed explanation
  • Verification requirements may be extensive and burdensome
  • Fees may be charged for complex or repetitive requests
  • Legal counsel may be required for dispute resolution
  • Decisions are final and not subject to internal appeal

Requests: privacy@thetourify.com

No guaranteed response time. Complex requests may require legal consultation at your expense.

6. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience on our platform. For detailed information about our cookie practices, please see our Cookie Policy.

7. Indefinite Data Retention Policy

INDEFINITE RETENTION: We reserve the right to retain all personal information indefinitely for business purposes, legal compliance, analytics, and operational requirements. Deletion requests may be denied.

Data retention periods are determined solely at our discretion based on business necessity:

  • All User Data: Retained indefinitely for business and legal purposes
  • Financial Records: Permanent retention for accounting and audit requirements
  • Communication Data: Retained indefinitely for customer service and dispute resolution
  • Analytics and Behavioral Data: Permanently retained for business intelligence
  • Third-Party Data: Retention governed by external party policies
  • Backup Systems: Data may persist in backups indefinitely

No Deletion Guarantees: Even when data appears deleted from active systems, copies may persist in backups, archives, or third-party systems indefinitely.

8. International Data Transfers

Your personal information may be transferred to and processed in countries outside your residence. We ensure appropriate safeguards are in place:

  • Adequacy Decisions: Transfers to countries with adequate protection
  • Standard Contractual Clauses: EU-approved data transfer agreements
  • Service Provider Safeguards: All third parties implement appropriate protections
9. Children's Privacy

Our services are not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you become aware that a child has provided us with personal information, please contact us so we can take appropriate action.

10. Unrestricted Privacy Policy Modifications

UNLIMITED MODIFICATION RIGHTS: We reserve the right to modify this Privacy Policy at any time, for any reason, with or without advance notice or user consent. Continued use of our services constitutes acceptance of all changes.

Policy modifications may include fundamental changes to data practices:

  • Changes may be made without notification or prominent display
  • Retroactive changes may apply to previously collected data
  • User consent is not required for any policy modifications
  • Changes take effect immediately upon publication
  • No grandfathering of previous policy terms
  • Fundamental privacy practices may be altered without restriction
11. Contact Us

If you have any questions about this Privacy Policy or our privacy practices, please contact us:

Privacy Inquiries: privacy@thetourify.com

Data Protection Officer: dpo@thetourify.com

Phone Support: +61 1800 595 430

General Support: support@thetourify.com

Complaint Limitations: While you may lodge complaints with regulatory authorities, such complaints often result in minimal enforcement action. We maintain broad discretion in data handling practices and compliance with regulatory requests is determined on a case-by-case basis.

This Privacy Policy was last updated on August 25, 2025

Version 1.0 - Effective immediately

Terms of ServiceCookie PolicyContact Us