Privacy Policy for M G M Travel and Tourism Co LLC
Effective Date: 01 AUG 2023Welcome to the Privacy Policy of M G M Travel and Tourism Co LLC. We prioritize protecting your personal information and are committed to transparency regarding how we collect, use, and safeguard your data. This privacy policy outlines our practices and your rights concerning your data.
1. Who We Are
The terms “we,” “us,” “our,” and “M G M Travel” refer to M G M Travel and Tourism Co LLC, a limited liability company based in Dubai, UAE. “You” refers to customers visiting our Website or booking services with us. By using our Website (the “Website”), you consent to the practices described in this policy.
2. Information We Collect
We collect various types of information, including:
- Personal Details: Username, password, email address, and contact numbers.
- Demographic Information: Gender, age/date of birth, and nationality.
- Transactional Information: Travel itineraries, payment details, and service requests.
- Browsing Activity: Data about your Website use, including device information and usage data.
3. How We Use Your Information
We use your information to:
- Process transactions and bookings.
- Personalize your experience on our Website.
- Improve services based on feedback and usage patterns.
- Communicate updates and promotions.
- Comply with legal obligations.
4. Sharing Your Information
We may share your information with:
- Travel partners such as airlines and hotels.
- Legal authorities for compliance.
- Third-party service providers for analytics and fraud prevention.
5. Data Security
We implement reasonable measures to protect your information, including encryption technology. However, no transmission over the internet is entirely secure.
6. Your Rights
You have the right to:
- Access and request a copy of your data.
- Request corrections to inaccurate information.
- Request deletion of your data under certain conditions.
7. Cookies and Tracking Technologies
We use cookies and similar technologies to enhance your experience on our Website. You can manage your cookie settings through your browser.
8. Third-Party Links
Our Website may contain links to third-party websites. We do not control these sites and are not responsible for their privacy practices.
9. Children’s Privacy
Our services are not directed to individuals under 16. We do not knowingly collect personal information from children.
10. International Data Transfers
Your information may be transferred to and processed in countries outside of your own. We ensure that such transfers comply with applicable data protection laws.
11. Data Retention
We retain your personal information only as long as necessary to fulfill the purposes outlined in this policy or as required by law.
12. Marketing Communications
You may receive marketing communications from us. You can opt out of these communications by following the instructions in our emails.
13. Legal Basis for Processing
We process your data based on legitimate interests, contractual obligations, and compliance with legal requirements.
14. Data Breach Notification
We will notify you as required by applicable laws in case of a data breach affecting your personal information.
15. User Consent
By providing your personal information, you consent to collecting, using, and sharing your data as outlined in this policy.
16. Changes to Your Information
You are responsible for keeping your personal information accurate and up-to-date. Please notify us of any changes to your information.
17. User Rights Under GDPR
If you are a resident of the European Union, you have specific rights under the General Data Protection Regulation (GDPR).
18. Automated Decision-Making
We do not engage in automated decision-making that significantly affects you.
19. Employee Training and Access
We train our employees on data protection and privacy policies. Access to personal data is limited to those who need it to perform their job functions.
20. Feedback and Complaints
Please contact us if you have any feedback or complaints regarding our privacy practices. We will respond promptly.
21. Data Minimization
We only collect the minimum amount of personal information necessary to provide our services effectively.
22. Data Anonymization
Where possible, we anonymize your data to protect your privacy.
23. Consent Management
We provide clear options for you to manage your consent preferences.
24. Data Access Requests
We have a streamlined process for handling data access requests. Please contact us if you wish to access, correct, or delete your personal information.
25. Data Accuracy
We strive to maintain accurate and up-to-date records of your personal information.
26. Data Protection Impact Assessments
We conduct Data Protection Impact Assessments (DPIAs) for significant data processing activities.
27. Third-Party Processors
We carefully select third-party processors who handle your data on our behalf.
28. User Account Security
We encourage you to protect your account by using strong passwords and enabling two-factor authentication.
29. Data Portability
You can receive your data in a structured, commonly used, and machine-readable format.
30. Privacy by Design
We incorporate privacy considerations into the design and development of our services.
31. Data Subject Rights
You have the right to object to processing your data and withdraw your consent at any time.
32. Data Processing Agreements
We enter into Data Processing Agreements (DPAs) with third parties who process personal data on our behalf.
33. Data Protection Audits
We regularly conduct audits of our data protection practices.
34. Privacy Shield
We comply with the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks for international data transfers.
35. Data Backup and Recovery
We regularly back up your data to prevent loss in case of system failures.
36. Data Encryption
We use advanced encryption methods to protect your data.
37. User Responsibilities
You are responsible for maintaining the confidentiality of your account information.
38. Data Processing Outside the EEA
If your data is processed outside the European Economic Area (EEA), we ensure appropriate safeguards are in place.
39. Privacy Policy Updates
We will notify you of any significant changes to this privacy policy.
40. Contact Information for Data Protection Inquiries
For inquiries related to data protection, you can contact our dedicated data protection team at:
M G M Travel and Tourism Co LLC
Office 626, Ascon House
Salah Al Din St, Deira
Dubai, UAE
Phone: +971 4 228 1422
Email: [email protected]
41. Data Protection Certifications
We adhere to industry standards for data protection and privacy.
42. Data Breach Response Plan
We have a detailed plan in place to address any data breaches promptly.
43. User Consent Withdrawal
You can withdraw your consent for data processing by contacting us.