Welcome to Hans Wander. Hans Wander (“Company”, “we”, “us”, or “our”) is deeply committed to safeguarding the privacy and security of the personal information entrusted to us by our clients, partners, and digital users. We understand that booking travel—whether it involves customized domestic and international tour packages, hotel accommodations, cruise services, or extensive bus transportation networks—requires the sharing of sensitive personal information.

This Comprehensive Privacy Policy (“Policy”) meticulously details our protocols regarding the collection, utilization, storage, sharing, and protection of your data when you access our website (hanswander.com), utilize our mobile platforms, communicate with us via booking channels (including WhatsApp, SMS, and email), or otherwise interact with our services. Furthermore, this document explicitly outlines your fundamental rights and choices regarding your personal data under applicable domestic and international data protection regulations.

Scope and Applicability of This Policy

This Policy applies to a wide spectrum of individuals and entities interacting with Hans Wander, including but not limited to:

• Customers and Travellers: All individuals, both domestic (within India) and international (foreign nationals), who enquire about, book, or participate in any customized tour, group package, cruise, event, or ground transportation service organized, facilitated, or brokered by Hans Wander.

• Digital Platform Users: Any visitors, browsers, or users who access our website, interact with our digital marketing campaigns, fill out online enquiry forms, or engage with our social media channels.

• Prospective Clients: Individuals who provide their personal data during promotional campaigns, travel expos, or preliminary enquiries, regardless of whether a final booking is executed.

• Associated Third Parties: Guardians or parents providing legally mandated information for minors, or individuals listed as emergency contacts or nominees by our primary travelling clients.

By continuing to access our digital platforms, communicating with our representatives, or retaining our travel services, you acknowledge that you have thoroughly read, fully understood, and explicitly consented to the comprehensive data practices described within this Policy.

1. Detailed Definitions

To ensure absolute clarity and transparency, the following terms utilized throughout this Policy are defined as follows:

• “Personal Data” (or “Personal Information”): Any information that relates to an identified or identifiable living natural person. This includes, but is not limited to, full legal names, physical addresses, contact numbers, email addresses, and online identifiers (such as IP addresses).

• “Sensitive Personal Data”: A subset of Personal Data that carries a higher risk of harm if mishandled. For the purposes of travel facilitation, this includes passport details, national identification numbers, financial and payment instrument details, health or medical records, dietary restrictions linked to religious beliefs, and data pertaining to minors.

• “Processing”: Any manual or automated operation performed on Personal Data, including collection, recording, organization, structuring, storage, adaptation, retrieval, consultation, use, disclosure by transmission, dissemination, restriction, erasure, or destruction.

• “Data Controller”: The entity that determines the purposes and means of the processing of Personal Data. For the services provided herein, Hans Wander acts as the primary Data Controller.

• “Cookies and Tracking Technologies”: Small digital text files or embedded code (like pixels and web beacons) stored on your device’s browser to track usage patterns, recognize repeat users, and enhance digital functionality.

• “Minor”: Any natural person under the legally defined age of adulthood in their respective jurisdiction (typically under 18 years of age).

2. Comprehensive Methods of Data Collection

Hans Wander employs a multi-tiered approach to data collection to ensure we can provide fully customized and seamless travel experiences. We gather information through the following mechanisms:

A. Information You Voluntarily Provide The majority of the data we process is directly supplied by you during the lifecycle of our relationship. This occurs when you:

• Submit an online enquiry or request a quote for a customized domestic or international tour package.

• Finalize a booking for flights, hotels, cruises, or bus transportation networks.

• Communicate with our sales representatives or customer support via WhatsApp, email, or telephone.

• Fill out mandatory pre-departure forms, visa application assistance documents, or health declarations.

• Participate in customer satisfaction surveys, contests, or promotional events.

B. Information Collected Automatically When you navigate our website or digital platforms, our servers and integrated third-party analytics tools automatically record specific technical data to optimize performance and security. This includes:

• Device Information: Hardware models, operating systems, unique device identifiers, and mobile network information.

• Log Data: IP addresses, browser types, Internet Service Providers (ISPs), referring/exit pages, date and time stamps, and clickstream data.

• Location Data: Approximate geographical location derived from your IP address to provide currency and destination-specific content.

C. Information from Third-Party Sources While we unequivocally do not purchase data from third-party data brokers, we may receive information about you from alternative sources, such as:

• Lead Generation Partners: Digital advertising platforms (e.g., Google Ads, Meta Ads) that route your voluntarily submitted contact forms into our Customer Relationship Management (CRM) system.

• Co-Travellers: If a lead passenger is booking a group tour, cruise cabin, or family package on your behalf, they may provide your necessary travel details to us.

3. Exhaustive Categories of Data Processed

To deliver our diverse range of travel services, Hans Wander processes the following specific categories of Personal Data:

• Primary Contact & Identity Information: Full legal name (as per passport/ID), permanent and current residential addresses, primary and secondary email addresses, mobile and landline telephone numbers, and designated emergency contact details.

• Travel Documentation & Compliance Data: Passport numbers, issuance and expiry dates, passport copies, government-issued identification (e.g., Aadhaar, PAN, SSN where applicable for visas), nationality, citizenship status, date of birth, gender, and visa application history.

• Financial & Transactional Information: Billing addresses, transaction histories, and limited payment instrument details. Note: Hans Wander utilizes secure, PCI-DSS compliant third-party payment gateways. We do not store full credit card numbers or CVV codes on our native servers. We also collect tax-related information required by law, such as PAN details for Tax Collected at Source (TCS) declarations under the Liberalized Remittance Scheme (LRS).

• Granular Travel & Booking Preferences: Specific destinations of interest, comprehensive travel itineraries, airline and flight class preferences, hotel room requirements, cruise cabin selections, specific bus seating preferences, frequent flyer or loyalty program numbers, and past booking history with Hans Wander.

• Health, Medical, & Dietary Information: Dietary restrictions (e.g., vegan, halal, gluten-free), pre-existing medical conditions that may affect travel insurance or suitability for specific activities (e.g., high-altitude trekking, adventure sports), wheelchair or mobility assistance requirements, and vaccination status where mandated by destination countries or cruise lines.

• Minors’ Information: When minors are included in a travel itinerary, we collect their names, ages, and identity documents strictly for the purpose of fulfilling the booking and ensuring compliance with airline, hotel, and border control regulations. This data is only processed with the explicit, verified consent of the legal parent or guardian.

4. Advanced Cookie Policy and Digital Tracking

Our digital infrastructure relies on Cookies and similar tracking technologies (such as web beacons, tags, and scripts) to ensure a secure, efficient, and personalized user experience.

Categories of Tracking Technologies Utilized:

1. Strictly Necessary Cookies: Essential for the core operation of hanswander.com. These allow you to log into secure areas, utilize the shopping cart for bookings, and securely process payments. Our website cannot function optimally without these.

2. Performance and Analytics Cookies: We utilize industry-standard tools, including Google Analytics, Mixpanel, and Google Tag Manager, to gather aggregated, anonymized data regarding website traffic, page load times, and user navigation paths. This data is pivotal for identifying technical bottlenecks and improving website architecture.

3. Functionality Cookies: These allow our platform to remember your past choices, such as your preferred language, currency, or previously searched customized tour packages, to streamline your next visit.

4. Targeting and Advertising Cookies: We deploy pixels from platforms like Facebook and Google to understand the effectiveness of our marketing campaigns. These cookies track your browsing habits to deliver tailored advertisements for Hans Wander services on third-party websites.

User Control: You retain full control over your cookie preferences. You may configure your web browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. Please be advised that disabling essential cookies may render certain booking functionalities inoperable.

5. Primary and Secondary Purposes of Data Processing

Hans Wander does not collect data indiscriminately. Every piece of information processed is tied to a specific, lawful business purpose:

A. Core Service Delivery (Contractual Necessity)

• To seamlessly execute bookings for customized domestic and international packages.

• To secure reservations with airlines, cruise operators, international hotel chains, and domestic bus transportation networks.

• To facilitate the complex processing of tourist and transit visas.

• To provide crucial pre-trip documentation, real-time travel alerts, and 24/7 on-ground operational support during your journey.

B. Legal and Regulatory Compliance

• To comply with mandatory financial reporting, auditing, and taxation laws (including GST and TCS requirements).

• To respond to lawful requests from border control agencies, immigration authorities, or national security mandates.

C. Business Operations and Legitimate Interests

• To conduct internal data analysis, demographic profiling, and market research to design new tour packages and cruise offerings.

• To maintain the integrity and security of our digital systems through fraud detection, IP monitoring, and cybersecurity audits.

• To manage customer grievances, process refunds, and resolve legal disputes.

D. Marketing and Promotional Communication (Consent-Based)

• To dispatch our digital newsletter, exclusive travel offers, and personalized itinerary recommendations via email, SMS, or WhatsApp. You maintain the absolute right to opt-out or withdraw consent for marketing communications at any time without affecting your core travel bookings.

6. Third-Party Sharing and Global Data Disclosures

To architect complex, multi-destination travel experiences, it is an operational imperative that we share your Personal Data with carefully vetted third-party service providers.

Who We Share Your Data With:

• Primary Travel Suppliers: Airlines, cruise lines, hotel networks, domestic and international bus transportation companies, and railway operators who require your identity and health data to confirm your reservations and permit boarding.

• Destination Management Companies (DMCs) & Local Operators: Ground handlers, local tour guides, and transfer companies operating in your destination country who require your itinerary and contact details to provide on-the-ground services.

• Ancillary Service Providers: Travel insurance underwriters and specialized visa processing agencies.

• Technology & Infrastructure Partners: Cloud hosting providers, CRM software vendors, and secure payment gateway processors who host and manage our digital databases.

International Cross-Border Transfers: Because Hans Wander offers international tour packages and global cruise services, your data will inevitably be transferred to, and processed in, countries outside your country of residence. We ensure that any international transfer of Personal Data is safeguarded by stringent contractual clauses and adheres to the data protection standards required by the destination country and international frameworks (such as the GDPR).

Strict Non-Sale Clause: Hans Wander categorically does not sell, rent, lease, or commercially monetize your identifiable Personal Data to third-party data brokers, advertising networks, or external marketing agencies.

7. Rigorous Data Storage, Security, and Retention Protocols

A. Technical and Organizational Security Measures We treat your Personal Data with the highest degree of confidentiality. Hans Wander implements a robust matrix of technical, administrative, and physical security protocols:

• Encryption: Utilization of Secure Socket Layer (SSL) and Transport Layer Security (TLS) encryption for all data transmitted between your browser and our servers.

• Access Control: Strict Role-Based Access Control (RBAC) ensuring that only authorized marketing, technology, and operations personnel have access to specific data points required for their immediate job functions.

• System Integrity: Continuous intrusion detection monitoring, regular vulnerability scanning, and secure API logging to detect and neutralize potential cyber threats.

B. Data Retention Lifecycles We do not retain your Personal Data in perpetuity. Data is kept only for the duration strictly necessary to fulfill the purposes outlined in this Policy.

• Active Customers: Data is retained throughout the duration of your trip and subsequent post-trip support periods.

• Statutory Retention: Financial transaction records, invoices, and taxation data are retained for a minimum of seven (7) years to comply with national corporate and tax laws.

• Marketing Data: Retained until you explicitly request removal or unsubscribe from our mailing lists. Once the retention period expires, your data is subjected to secure, irreversible cryptographic deletion or total anonymization.

8. Comprehensive User Rights and Privacy Choices

Depending on your jurisdiction, including the applicability of the Indian Digital Personal Data Protection Act, 2023, and the European Union’s General Data Protection Regulation (GDPR), you are entitled to a robust suite of rights regarding your data:

1. Right to Access: You may request a comprehensive digital copy of the Personal Data we currently hold about you.

2. Right to Rectification: You may request the immediate correction of any inaccurate, outdated, or incomplete data (e.g., updating a passport number before a trip).

3. Right to Erasure (“Right to be Forgotten”): You may request the deletion of your Personal Data, provided there are no overriding legal or statutory obligations compelling us to retain it.

4. Right to Restrict Processing: You may request a temporary halt on the processing of your data under specific circumstances, such as during a dispute over the data’s accuracy.

5. Right to Data Portability: Where technically feasible, you may request your data be transferred directly to another Data Controller in a structured, commonly used, and machine-readable format.

6. Right to Object: You possess the absolute right to object to the processing of your data for direct marketing purposes or automated decision-making processes.

To exercise any of these rights, users must submit a formal request via our designated support channels. Hans Wander reserves the right to verify your identity before executing any data-related requests to prevent unauthorized access.

9. Protection Standards for Overseas and International Clients

Hans Wander actively services a global clientele. While our primary operations are governed by the legal frameworks of the Republic of India (specifically the Information Technology Act, 2000, and the Digital Personal Data Protection Act, 2023), we proactively extend equivalent privacy safeguards to our international clients.

For clients residing in the European Economic Area (EEA), the United Kingdom, or regions with similarly stringent privacy laws, Hans Wander acts in full alignment with the principles of transparency, purpose limitation, and data minimization as mandated by the GDPR. Overseas data is processed solely on the legal bases of contractual necessity (fulfilling your global travel booking) and explicit consent.

10. Media Licensing, Photography, and Digital Testimonials

Travel is a highly visual experience. During Hans Wander’s customized group tours or exclusive events, our operational team, local guides, or authorized digital content creators may capture photographs, drone footage, or video recordings for quality assurance and promotional utility.

By actively participating in our itineraries, you grant Hans Wander a non-exclusive, royalty-free license to utilize such media—which may feature your identifiable image—across our website, social media platforms (Instagram, Facebook, LinkedIn), digital brochures, and physical marketing collateral (including potential branding on our affiliated bus networks).

Opt-Out Provision: We deeply respect your personal privacy. Should you wish to be excluded from any media capture or promotional materials, you must submit a written opt-out notification to our operations team or your tour manager strictly prior to the commencement of your travel itinerary.

11. Policy Modifications and Version Control

The digital and legal landscape is constantly evolving, as are our travel service offerings. Consequently, Hans Wander reserves the unilateral right to update, modify, or completely overhaul this Privacy Policy at any time.

Any material changes—specifically those that alter the scope of data collected or the manner in which it is shared—will be prominently communicated via a banner notification on our website homepage and directly emailed to our active customer database. The “Last Updated” timestamp at the top of this document will always reflect the most current version. Continued use of our services following any modifications constitutes your formal acceptance of the revised Policy.

12. Contact Information and Official Grievance Redressal

Hans Wander has appointed a dedicated Grievance Officer to oversee data protection compliance and address any concerns, questions, or formal complaints you may have regarding this Comprehensive Privacy Policy or our data handling practices.

We are committed to resolving all privacy-related inquiries transparently and efficiently. Please direct all correspondence to:

Hans Wander Grievance Officer

• Official Email Address: support@hanswander.com

• Direct Contact Number: +91-9993212349