+34 643077310 olibontravel@gmail.com

Privacy Policy

Information pursuant to Article 13 of Legislative Decree 196/2003 regarding the protection of personal data
The management methods of the www.bon-bags.com site are described below with reference to the processing of the personal data of users who consult it.
The information is provided only for the aforementioned site and not for other websites that may be consulted by the user via links. The information is based on the European recommendations for the protection of personal data adopted to identify some minimum requirements for the collection of personal data online, and, in particular, the methods, timing and nature of the information that the data controllers must provide. to users when they connect to web pages, regardless of the purpose of the connection.

Types of data processed
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified interested parties, but which by their very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by users who connect to the site, the URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the user’s IT environment. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning and are deleted immediately after processing. The data could be used to ascertain responsibility in the event of hypothetical computer crimes against the site.

Processing methods
The personal data provided spontaneously by users who register on our site or submit requests for sending of any kind (via electronic contacts, newsletters, answers to questions, comments on articles) are used for the sole purpose of performing the service or provision requested. .
Personal data are processed with automated tools for the time strictly necessary to achieve the purposes for which they were collected. Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorized access. The treatments connected to the web services of this site are only handled by internal technical staff in charge of processing, or by any external agents even in occasional maintenance operations. Without prejudice to communications made in fulfillment of legal and contractual obligations, no data deriving from the web service is communicated or disclosed to third parties.

Optional supply of data
Apart from what is specified for navigation data, the user is free to provide personal data contained in the application forms or otherwise indicated in contacts. Failure to provide them may, in some cases, make it impossible to obtain what is requested.
The optional, explicit and voluntary sending of e-mails to the addresses indicated on this site entails the subsequent acquisition of the sender’s address, necessary to respond to requests and to send the newsletter, as well as any other personal data included in the message. We invite users not to indicate “sensitive data”. Data of this nature will be immediately deleted or processed only after explicit written consent, where necessary for the purposes of the processing.

The “owner” of the treatment is: BAGS-FREE SRL, VIA DEL CASTRO PRETORIO, 32 – ROME

Rights of interested parties
The subjects to whom the personal data refer have the right at any time to obtain, pursuant to art. 7 of Legislative Decree no. 196/2003, the confirmation of the existence or otherwise of the same data and to know its content and origin, verify its accuracy or request its integration or updating, or correction.
Pursuant to the same article, one has the right to request cancellation, transformation into anonymous form or blocking of data processed in violation of the law, as well as to oppose in any case, for legitimate reasons, to their processing by writing to the Data Controller at references reported.

Cookies
The use of session cookies, which are stored on the user’s computer, is strictly limited to the transmission of session identifiers that are necessary to allow easy browsing of the site. The use of cookies is optional to allow greater usability of the site itself. Cookies are used to automatically enter personal data without having to write the email and other data. The cookies used on this site avoid the use of other IT techniques that are potentially detrimental to the confidentiality of users’ browsing and do not allow the acquisition of personal identification data of users.

Introduction

Thank you for using our website. Your trust is important to us and we are committed to protecting the privacy and security of your personal data.

This document describes in a transparent and easy-to-read manner how we use and process your personal data. We also tell you how to contact us if you have questions about your personal data; we will be happy to answer them.

If you have ever used our services, you will know that we offer travel-related online services through our social networks and our website. The information set out below applies to all of these platforms. Multiple Platforms, One Privacy Policy.

This Privacy Policy applies to any information we collect through these platforms or by other means connected to these platforms (for example, by contacting us via email or telephone).

We may change this Privacy Policy from time to time. Please check this page regularly for the current status. We will indicate the dates of the most recent revisions to this Privacy Policy at the bottom of this page; all revisions will be effective upon posting.

Once you have accepted our Privacy Policy, you are ready to book your next tour or trip with us.

Who is responsible for your data?

When this Privacy Policy states “we”, “us” or “our”, it means Olibon Travel SL, a company based in Spain, with CIF B16847766, registered office at Avenida Maria Cristina, 1 – 46001 Valencia, Spain, the company responsible for your information under this Privacy Policy (“Data Controller”).

We centralize the processing of personal data with adequate internal policies to ensure that any data processing carried out with us is performed in accordance with the strictest security requirements and exclusively for the same purposes for which such data has been collected, according to the applicable laws.

Who is the data protection officer?

Olibon Travel Data Protection Officer oversees all data processing carried out, respecting at all times your privacy and applicable laws.

Olibon Travel Data Protection Officer is at your disposal to answer any questions you may have about the processing of your personal data and the exercise of your rights.

Click Here to exercise any data protection rights or to contact the Data Protection Officer with any data protection concerns you may have. Please note that we may ask you to verify your identity and your request before taking any action in relation to your request.

Why do we collect your personal data and on what legal basis?

During the purchase process, we only ask you for the personal data we need to provide you with our mediation services to purchase travel products.
This includes making and managing your booking, sending you communications related to your bookings by e-mail, telephone or SMS (including, but not limited to, confirmations, amendments and notices) and allowing us to respond to your queries.
These communications are handled by us.
The booking process can be done on our website, through our Customer Service (Whantsapp and RRSS), etc. We try to show you the most relevant travel information and help you in a personalized way with your booking and post-booking issues.
Please note that the data we use for identification will be the e-mail you enter in your booking/account.

Legal basis: This data processing is necessary for the execution of the contract (e.g. to make and manage your booking).

User account: Our users can create a user account on our website. We use the information you provide to manage your account and to show you the most relevant travel booking and post-booking experience so that you can take a number of useful actions. For more information, please see our General Terms and Conditions.
Legal basis: This data processing is necessary for the performance of the contract (e.g. to manage your account and to provide you with a more personalized service).

III. Other services. We may offer you other travel-related services in accordance with our role as a travel agency. This Privacy Policy will apply to such data processing on the basis of other travel-related services. During the contracting process, before filling in the data or throughout the process, we will inform you in case there is any specific information that you should be aware of, in addition to that already specified in this Privacy Policy.

Legal basis: This data processing is necessary for the execution of the contract, in order to provide you with our services or in accordance with your consent.

Communications with you. There are several reasons why we process various types of communications and contact you:
To respond to and handle inquiries or requests made by you or any travel supplier.
To contact you in a personalized way to help you finalize your booking, if you are still interested, if you have not yet finalized your booking online (as we believe this additional service benefits you, because it allows you to continue with a booking without having to fill in your booking information again). In addition, we store it in order to recognize you whenever you visit our website to improve the user experience.
To invite you to provide us with an evaluation of your experience with us or your travel provider when you use our services. Please note that such feedback may be available to other customers to help them make decisions about a product or service.
To let you know how to contact us if you need assistance when you are away or to provide you with information that we think may be helpful to you in planning or making the most of your trip, or information about future trips or a summary of bookings you have previously made with us.
We may need to send you other administrative messages, including security alerts.
.

Legal basis: This data processing may be due to its necessity for the performance of the contract, to our legitimate interest as a commercial company in order to provide our services or to your consent.

Marketing activities. We use your information for marketing purposes, among others:
a. To regularly send you news about travel-related products and services; you can easily unsubscribe from e-mail marketing communications at any time by simply clicking on the “unsubscribe” link included in each newsletter or other communication.
To show you individualized offers on our website, on our RRSS and that the content displayed on the site is personalized. Such offers may be booked on our site, on co-branded sites or third party offers or products that we think you will be interested in.
To administer any promotional activities in which you participate.
When you make a reservation with us, we subscribe you to our newsletters, unless you tell us otherwise before you confirm your reservation. In any case, remember that you can unsubscribe at any time.

Legal basis: This data processing is based on our legitimate interest as a commercial company in order to provide you with our services or on your consent.

Customer surveys and polls. You may receive invitations to send us an evaluation of the trips you have booked with us or to participate in market research. In the latter case, we will explain what personal data we have collected and how it will be used.
Legal basis: This data processing is based on our legitimate interest as a commercial company to improve our services or on your consent.

VII. Monitoring of calls and chats. If you contact our Customer Service, our staff may ask you for verification information, with the assurance that your reservation information will remain confidential. Not all chats and calls are recorded, and recordings are retained for a limited time and automatically deleted afterwards (unless we have a legitimate interest in retaining the recording for a longer period, for example, for fraud investigation and legal purposes).

Legal basis: This data processing is supported by our legitimate interest as a commercial company to improve our services (e.g. for quality control or training purposes), your consent or to resolve legal disputes.

VIII. Improving our services or developing new services. We also use personal data for analytical purposes. It is part of our effort to improve the user experience, but may also be used for evaluation purposes, to troubleshoot problems and to improve the performance and quality of our online travel services. The main purpose of this is to optimize our online platform according to your needs, making our site easier and more user-friendly. We try to use pseudonyms or anonymous data for such analytical purposes.

Legal basis: This data processing is based on our legitimate interest as a commercial company to improve our services.

Promoting a secure and reliable service. To create a trustworthy environment for you, your fellow travelers, our business partners and our travel suppliers, we may use personal data to detect and prevent fraud and other illegal or unwanted activities, and also for security purposes (e.g., user and booking verification). For this purpose, we may need to stop or put on hold some reservations.
Legal basis: This data processing is based on our legitimate interest as a commercial enterprise to prevent fraud. Certain legal obligations may apply.

Legal effects. Finally, in certain cases, we may need to use your information to address and resolve legal disputes, for legal investigations and compliance, to enforce our Terms or to comply with lawful requests from law enforcement authorities.
Legal basis: This data processing is based on compliance with legal obligations.

We do not make automatic decisions based on profiling, beyond legitimate Internet fraud prevention and personalization of your user experience, marketing and advertising. In any case, such an automatic decision will have no legal or similar effects that would significantly affect you.

What kind of personal data do we collect?

The personal data we may collect about you is broadly grouped into the following categories:

Information you provide to us.
Personal and contact information (including, but not limited to, full name, e-mail address, telephone number, date of birth, etc., as applicable), to enable booking, register an account with us, provide services and information, subscribe to our marketing communications and/or send us inquiries. Please note that your e-mail address will be your identity information. We may link to your information because of your e-mail address.
Billing information (e.g., credit card number, cardholder name and expiration date) to make a payment.
Security information (e.g., password) when you create a password with us.
Travel partner data (personal information, travel preferences…) when you make a reservation, create an account, etc. In any case, you must obtain prior consent from the other persons before providing us with their personal information and travel preferences, as any access to view or change their information will only be available through your account or e-mail.

Other information (e.g., travel marketing preferences, additional information provided in surveys or contests, or by chat, e-mail or call, etc.).
Information we collect automatically when you use our services.
Information from your device (e.g., your IP address, browser type, Internet service providers, geographic location, technical information about your device, time and duration of your request and visit, and the method used to send your request to the server). When you visit our website, we automatically collect certain information from your device. Please note that we may associate such information with your account.
Other technical information, such as how your device has interacted with our website or app (e.g., the pages you have accessed, the links you have clicked, etc.) or other means.
We use this information, as well as the personal data provided, defined below, to analyze traffic, provide you with social media-related services, personalize advertising, improve the quality of and customize your searches, prevent and detect fraud. We will share it (in some cases with your e-mail in non-identifiable encrypted format) with third parties; some of them, such as payment providers and financial institutions (fraud detection, prevention or billing purposes), may act as autonomous data controllers. If you register on our website with a social network account, link the account you use on our website with your social network account, or use one of our other social network features, we may access information about you through that social network provider in accordance with that provider’s policies. The information may include your name, email address, profile picture, gender, friend list and any other information you authorize us to receive.

Some of this information may be collected through cookies or similar tracking technology. The processing of information collected through cookies is based on various legal grounds (for example, it may be necessary to provide our services based on your consent). For more information, please see our Cookie Policy.

We may process calls and online communications for quality control, web analytics and staff training or to respond to any legal disputes. Any personal information we collect from you in any communication will be treated in accordance with our Privacy Policy. You may also share your personal information with us (your contact or booking information, etc.) for other purposes, for example, when you use any chat, callback or other service to get help with using our website, or with any current or future booking, etc. Please note that when you use third party services, they may act as joint controllers or processors, depending on their privacy policy.

III. Information We Collect from Third Parties. From time to time, we lawfully collect personal information about you from business partners and independent third party sources, for example, contact information such as e-mail address or purchase or demographic information.

Who will receive your personal information?

In certain circumstances, we will share your personal information with third parties:

Travel agencies (e.g., the airline that issues your ticket and/or operates your flight, the hotel you booked, the car rental company you booked from our website, etc.). In order to provide you with our services, we need to communicate your personal information to the travel suppliers involved so that they can provide you with the products or services you have requested. We also need to communicate them to other third parties in order to provide you with the services you have requested in a timely manner. These will function as independent data controllers. Please note that these partners may also contact you whenever necessary to obtain additional information about you, in accordance with their own separate privacy policy.
Our group companies may process your personal information, as indicated above, for internal reasons related to the centralization of management. In any event, the practices they will follow in doing so must be at least as restrictive as those described in this Privacy Policy.

III. Third-party service providers (e.g., companies that provide us with IT and server services, customer support providers, web analytics, payment and financial service providers for billing, fraud detection, prevention, etc.) process your personal data on our behalf and on our instructions for the purposes described above, acting as data processors or as autonomous data controllers. When third party service providers have access to information, they will only collect the information they need to perform their functions. They are not authorized to share or use the information for any other incompatible purpose.

Business Partners. Some of the services on our website may be provided in whole or in part by our business partners, so some of the personal information you provide to us (for example, e-mail address or payment information and other important information) will be forwarded to the relevant business partner to perform and manage the service. Important information may be shared in order to perform necessary customer services or for the reasons stated above. Since business partners operate as autonomous data controllers, their separate privacy policy or a specific version thereof will also apply. You may view the link before booking services.
Social media providers. When you log in with your social networks, when you click on the “like” button of one of your social networks integrated via plugins on our website or when you use any social network service to interact with us, personal data may be shared between us and the social network providers (e.g. your usernames, e-mail address, profile pictures, your contacts…). Since the social media providers will act as autonomous data controllers, their separate privacy policy will also apply. In addition, you can manage your privacy settings on your social network accounts.
Competent authorities. We disclose personal data for law enforcement purposes to the extent possible, as required by law or as strictly necessary for the prevention, detection or prosecution of criminal acts and fraud, or if we are otherwise required to do so. We may need to disclose personal data to the competent authorities to protect and defend your rights or property, or the rights and property of third parties.
VII. Others, with your consent to disclosure.

How do we protect your personal data?

Among other measures (e.g., protocols, internal policies, awareness, etc.), we group below the main protection measures we carry out:

Security measures. While no online service can guarantee absolute security, we implement reasonable procedures to protect the confidentiality, integrity and availability of your personal data (e.g., by preventing unauthorized access to or misuse of your data, employing technical and physical restrictions on access to and use of personal data, using firewalls, etc.).
If you believe or have reason to believe that your account credentials have been lost, stolen or compromised, or in case of any actual or suspected unauthorized use of your account, or any other problem you consider important, please contact us by clicking here .

Retention Procedures. We will retain your personal data for as long as we deem necessary for you to use our services, to provide our services to you, to comply with applicable law, to resolve disputes with third parties, or as otherwise necessary for us to conduct our business (including, but not limited to, detecting and preventing fraud or other illegal activities). All personal data we retain is subject to this Privacy Policy. If you have questions about any specific retention period for certain types of personal data we have collected, please contact us.
For example, if you provide us with your contact e-mail address but then are unable to finalize your reservation, we will retain your e-mail address only temporarily and, in any event, for a maximum period of seven days, to assist you with your reservation if you are still interested.

III. International Data Transfers. Our servers are located in the European Union. However, in order to facilitate our worldwide operations (performed by third party service providers) the transmission of personal data to the recipients described above may include international transfers of personal data to countries whose data protection regulations are not as comprehensive as those of countries within the European Union. In these situations, as required, we make contractual arrangements to ensure that your personal data remains protected in accordance with European standards.

How can you control the personal data you have provided to us?

We want you to be able to control how we use your personal data. You can do this in the following ways:

Managing your information. You can access and update some of your information through your account settings or Customer Services.
You have the right to ask us to correct personal information about you that is incorrect or incomplete (and that you cannot update yourself in your account settings or through Customer Service).
III. Access to Data. You may request information regarding your personal data and copies of such data.

Data Portability. You also have the right to request copies of the personal information you have provided to us in a structured, commonly used, machine-readable format, where technically feasible.
Deletion of data. You may request deletion of your personal information. We may not be able to carry out such deletion if such data processing is necessary for the performance of our contract, for our legal business interests (fraud prevention and security enhancement) or to comply with our legal obligations (legal reporting, audit obligations…). In any case, we will delete them as soon as possible.
We protect our services against accidental or malicious loss or destruction, so there may be residual copies of your personal information that is not deleted from our backup systems for a limited period of time (within one week).

Opposition and limitation to data processing. You may request that we do not process your personal information for certain specific reasons (including, but not limited to, profiling), where such data processing is based on legitimate interests, for example, direct marketing. If you object to such processing, we will stop processing your personal information for such purposes unless we can demonstrate compelling legitimate grounds for such processing or such processing is necessary for the exercise or defense of legal claims.
VII. Withdrawal of Consent. If we are processing your personal information on the basis of your consent, you may withdraw such consent at any time by specifying which consent you are withdrawing. Please note that withdrawal of your consent does not affect the lawfulness of any data processing activities on the basis of such consent prior to its withdrawal.

To exercise your rights, click here or send your request by post to the following address: Olibon Travel – Data Protection Officer – Avenida Maria Cristina, 1 – 46001 Valencia, Spain. In your request you must clearly indicate your identity, specifying your full name and the e-mail address you used to make the purchase or create an account, and the rights you wish to exercise.

We will respond to you as soon as possible, within a maximum of one month after receiving your validated request, unless we need more time to process your request, in which case we will inform you accordingly.

Please note that we may ask you to verify your identity and your request before taking any action on your request. You may also contact the Spanish Data Protection Agency (https://www.aepd.es/) or other applicable supervisory bodies, if you wish.

The exercise of these rights is free of charge unless you make unjustified or excessive use of it. In such a case, we shall be entitled to charge you a reasonable fee based on administrative costs.