Privacy Policy

Your privacy matters to us

Last Updated: 19 November 2025

Deux Travel ("we", "our", or "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you interact with our websites, mobile applications, or other online services. It complies with the General Data Protection Regulation (EU Regulation 2016/679 - GDPR).

Legal Entity Information

Deux Travel operates internationally under the following registered entities:

  • TEA FOR TWO ESTATE & TRAVEL S.R.L, registered in Romania — Bucuresti Sectorul 1, Drumul PĂDUREA NEAGRĂ, Nr. 62B, BI CORP B, Etaj 3, Ap. 10
  • Tea For Two Ltd, registered in North Cyprus — Hz. Omer Ave. Mavi Plaj St. No.8, Kyrenia, CYPRUS

For any privacy-related queries, please contact: [email protected]

1. Data We Collect

  • Identification details (name, gender, date of birth, nationality)
  • Contact information (address, email, phone number, social media username)
  • Passport and visa information for travel arrangements
  • Booking and payment information
  • Travel preferences, dietary and health-related assistance requests
  • Account credentials (username, password)
  • Data from Google, Meta (Facebook/Instagram), or Apple when signing in using third-party authentication
  • Communications with us via email, social media, or phone
  • Technical data such as IP address, browser type, and device information
  • Marketing preferences and browsing behavior (through cookies and analytics tools)

2. How We Collect Data

  • Directly from you when you make inquiries, register, or book services
  • Automatically through cookies and similar technologies
  • From third-party travel agents, partners, or authorized representatives
  • Through third-party authentication platforms (Google, Meta, Apple)
  • From analytics and advertising tools (Google Analytics, Google Ads, Meta Pixel)

3. How We Use Your Data

  • Manage bookings and provide travel-related services
  • Communicate booking confirmations, itineraries, and updates
  • Authenticate and manage your account
  • Process payments and issue invoices
  • Improve our services and personalize user experiences
  • Conduct analytics, marketing, and customer satisfaction surveys
  • Protect our systems against fraud and misuse

4. Third-Party Login (Google, Meta, Apple)

If you choose to sign in using Google, Meta (Facebook/Instagram), or Apple, we access limited profile data such as your name, email address, and profile picture. This information is used exclusively for authentication and account creation purposes. We do not access any additional data from your account or use it for advertising purposes.

OAuth tokens are stored temporarily and deleted automatically when you log out or after 30 minutes of inactivity. You may revoke our access at any time through Google, Meta, or Apple account settings.

5. Data Sharing

We share your data only when necessary and under lawful conditions (e.g., with airlines, hotels, payment providers, or authorities). We never sell or rent personal data for marketing purposes.

6. Cookies, Analytics, and Advertising

We use cookies and tools such as Google Analytics, Google Ads, and Meta Pixel to improve functionality and personalize content. You can manage preferences via your browser or the opt-out links provided by Google and Meta.

7. Data Storage and Security

All personal data is securely stored on servers located in the European Union (AWS Frankfurt) with TLS/SSL encryption in transit and AES-256 encryption at rest.

8. Data Retention and Deletion

Booking and accounting data is retained up to 10 years for legal compliance. You may request deletion at any time by contacting us.

9. International Data Transfers

Transfers between our EU entities comply with GDPR Standard Contractual Clauses and requirements.

10. Your Rights (GDPR & PDPA)

You have the right to access, correct, delete, restrict, or port your data, withdraw consent, and lodge a complaint with a supervisory authority.

11. Children Data

Our services are not directed to individuals under 18 years old.

12. Changes to This Policy

We may update this policy periodically. Changes will be posted here with a new "Last Updated" date.

13. Contact

If you have questions or requests regarding this Privacy Policy, please contact us.