Privacy Policy

Last updated: [DATE]

[Legal Entity Name], Inc. (“Seventh Sail”, “we”) respects your privacy. This policy explains what we collect, why, and your rights. Because we serve travellers in the EU and elsewhere, we aim to comply with the GDPR and applicable US privacy laws (e.g. CCPA/CPRA).

What we collect

You give us: name, email, phone, and trip details when you enquire or book; messages you send us.
Automatically: device/browser info, IP address, and usage data via cookies and analytics (see our Cookie Policy).
We do not collect or store charter payment-card details — payments are handled directly by the charter Operator.

How we use it

To pass your enquiry/booking to the relevant charter Operator and facilitate your charter.
To operate, secure, and improve the site.
To respond to you and, where permitted, send service or marketing messages (you can opt out).

Legal bases (GDPR)

We rely on: performance of a contract (handling your booking), legitimate interests (running and improving the service), consent (marketing, non-essential cookies), and legal obligations.

Who we share it with

The charter Operator you book with (to fulfil your charter), and service providers (hosting, analytics, email). We do not sell your personal information. Some providers may be outside your country; we use appropriate safeguards for international transfers.

Retention

We keep personal data only as long as needed for the purposes above or as required by law, then delete or anonymise it.

Your rights

Depending on where you live, you may have rights to access, correct, delete, port, or object to processing of your data, and to withdraw consent. EU/UK residents may lodge a complaint with a supervisory authority; California residents have rights under the CCPA/CPRA. To exercise any right, contact privacy@[yourdomain.com].

Children

The service is not directed to children under 16, and we do not knowingly collect their data.

Contact

[Legal Entity Name], Inc. · privacy@[yourdomain.com] · [TBD — US registered address]