GDPR and Data Protection Policy
Personal Data Controller
The personal data controller is More Sailing AB. The protection of your personal data is important to us. Data protection is subject to the General Data Protection Regulation, or GDPR. Below you can read more about how your personal data is processed and the purpose of said processing.
You are welcome to contact us by email if you would like to know more about how we handle your data: booking@moresailing.com
What personal data is processed
The personal data that is processed includes the details you provide while booking your trip, subscribing to our brochure or newsletter, by telephone, when ordering from our vendors, by email, via our website or while visiting us in person. This includes your name, date of birth, address, email address, telephone number, passport number and place of birth.
We may also handle other personal data where necessary, such as information concerning special diets or information specific to you prior to the trip which is relevant for the purposes of your trip.
Giving your consent for the use of non-essential cookies on our website means that we may process data about your use of our website, which pages you have visited, and how you interact with the website. Below you can view details of which cookies are used, how long they are stored for, and the purpose of each cookie. Cookie declaration.
Purpose of personal data processing
The personal data you provide in order to make a booking is processed in order to allow us to meet our obligations with regard to the trips and additional products you have ordered, and keep you up to date on current trips and similar matters. Your personal data may also be collected in order for us to comply with our obligations under the law and regulations, as well as to handle matters relating to your trips.
The purpose of processing data after you consent to non-essential cookies on our website is to improve our marketing and risk assessment, and to analyse statistics and use of our website in order to offer better travel deals and a better service. See below cookie declaration for the reasons for each cookie
Personal data may be used in direct marketing in order to provide various offers of our services and/or products. If you do not want us to use your personal data in direct marketing, you can unsubscribe from our marketing lists at any time using the link in the newsletter.
Legal basis for personal data processing
The legal basis for the processing of personal data when you book a trip is fully compliant with the conditions (6(1)(b) of the GDPR)
When booking trips and other services, we are required to share your data with our partners in order to fulfil the commitments we made in connection with the trip reservation. The objective of the processing cannot be fulfilled without our partners accessing and using the personal data.
When you subscribe to our newsletter, we process the personal data you have provided in the contact form according to the legal basis of consent (article 6(1)(a) of the GDPR).
Personal data obtained from non-essential cookies is processed with your consent. Furthermore, we have a legitimate interest (article 6(1)(f) of the GDPR) in having this data processed by our partners in order to fulfil the purpose of the processing. When assessing this legitimate interest, a decision has been assessed based on the fact that third-party suppliers may gain access to anonymised personal data in order to improve their own and others’ marketing. The use of cookies that enable the processing of personal data requires consent from users, and the personal data processed does not comprise sensitive data. Furthermore, the purpose of the processing cannot be fulfilled without our partners accessing and using the personal data.
Storage of personal data
We store personal data as long as is necessary to fulfil the aforementioned purposes. We normally store your personal data for 2 years from the date of your last trip or from the last time you were otherwise in contact with us. When you subscribe to receive newsletters and offers from us, we will store your data until further notice. You can simply contact us whenever you wish to unsubscribe and have your personal data removed, either via the link in the newsletter or via the email address provided above.
In certain cases, we may need to store data for a longer period if this is required by law (for example, the Bookkeeping Act of Sweden).
Who may process personal data?
Your personal data is processed by our staff and by our system service administration partners with whom we have an agreement on the protection of personal data, a personal data processing agreement.
Your personal data may also be processed within the travel industry, for example by airlines, bus companies, hotels and local corporate travel partners. Only information that is essential for us to fulfil our commitments to you will be stored on each such occasion.
Personal data processing in countries outside the EU and EEA
Depending on where your travel destination is located and which corporate partners are used, your personal data may be processed outside the EU and EEA. Even if the final destination of a trip is within the EU/EEA, transport companies and hotels, for example, may be based outside the EU/EEA. Only information that is necessary for the organisation of the trip and other services will be provided to corporate partners outside the EU/EEA.
Giving your consent for the use of non-essential cookies on our website means that information about your use of our website may be processed by analytics and advertising partners outside the EU/EEA.
To protect personal data processed outside the EU/EEA, we ensure that our partners who process personal data satisfy either of the following requirements in accordance with GDPR:
– The EU commission considers that the country has an adequate level of personal data protection
– The transfer is necessary for us to fulfil our contract with you (article 49(1)(b) of the GDPR)
Your rights regarding information about you.
You have the right to withdraw your consent to our processing of the information you have provided to us, at any time. You can do this by sending us an email: booking@moresailing.com
This means that you can also request the correction or deletion of your personal data. Such requests should be made in writing to us at the email address provided above. Your data will then be corrected or deleted within one month. If you have a current trip that has not been either taken or completed, or you have an ongoing claim or similar, the data will be deleted within one month of this being completed.
You can also contact us to request access to the registered information we have about you, which we will provide within one month.
If you believe that we have processed your personal data incorrectly, you can lodge a complaint with the Swedish Authority for Privacy Protection (IMY) on their website, imy.se
Would you like to know more about the General Data Protection Regulation (GDPR)?
You can find more information on the General Data Protection Regulation (GDPR) on the Swedish Authority for Privacy Protection’s website, imy.se.