Privacy Policy

Last updated: November 19, 2025

1. Introduction

Best Travel International SRL respects the confidentiality of your personal data and is committed to protecting it in accordance with the General Data Protection Regulation (GDPR - EU Regulation 2016/679) and applicable Romanian legislation.

This Privacy Policy explains what personal data we collect, how we use it, with whom we share it, and what your rights are.

2. Data Controller

The personal data controller is:
Best Travel International SRL
Registration: J40/2109/2002
VAT: RO14522942
Address: Str. Amiral Horia Macelariu, No. 83, Sector 1, Bucharest, ROMANIA
Email: office@besttravel.ro
Phone: +40 (21) 317 83 30 / +40 (21) 317 83 31

3. What personal data we collect

3.1 Data provided by you

When you make a booking or contact us, we may collect:

  • Identification data: first name, last name
  • Contact data: email address, phone number, postal address
  • Travel data: destination, travel dates, preferences
  • Payment data: details necessary for payment processing (we do not store card data)
  • Document data: passport number, CNP (when necessary for bookings)
  • Other information: dietary preferences, medical requirements (if relevant for travel)

3.2 Automatically collected data

When you visit our site, we automatically collect:

  • Technical data: IP address, browser type, operating system
  • Usage data: pages visited, time spent on site

Important: We DO NOT use external tracking tools or third-party cookies. We DO NOT use Google Analytics or other similar analytics services.

4. Purpose of data processing

We process your personal data for the following purposes:

  • Booking processing: to organize and confirm your trips
  • Contract execution: to fulfill contractual obligations
  • Communication: to contact you regarding your bookings
  • Legal obligations: to comply with legal requirements (tax, accounting)
  • Marketing (with consent): to send you offers and promotions (only if you have given consent)
  • Service improvement: to improve customer experience

5. Legal basis for processing

We process your data based on the following legal grounds:

  • Contract execution: for processing bookings and providing services
  • Legal obligation: for compliance with tax and accounting obligations
  • Consent: for marketing communications (can be withdrawn at any time)
  • Legitimate interest: for service improvement and site security

6. To whom we disclose your data

We may share your data with:

  • Tourism service providers: airlines, hotels, car rental agencies
  • Payment processors: for transaction processing (according to PCI-DSS standards)
  • Insurance companies: when you purchase insurance through us
  • Authorities: when required by law (tax authorities, police, courts)
  • Contractual partners: only to the extent necessary for service execution

We do not sell or rent your personal data to third parties for marketing purposes.

7. International data transfer

When you book international travel, your data may be transferred to providers outside the European Union. We ensure these transfers comply with GDPR requirements through:

  • Use of standard contractual clauses approved by the European Commission
  • Verification that the destination country offers adequate data protection
  • Obtaining your explicit consent when necessary

8. How long we retain data

We retain your personal data only as long as necessary for specified purposes:

  • Booking data: 5 years (according to tax and accounting legislation)
  • Marketing data: until consent withdrawal or 3 years of inactivity
  • Communication data: 2 years from last interaction
  • Technical data: maximum 90 days

9. Data security

We implement technical and organizational measures to protect your data:

  • SSL/TLS encryption for data transmission
  • Restricted access to personal data (only authorized personnel)
  • Security protocols for our servers
  • Regular and secure backups
  • Strict confidentiality policies for employees
  • Elimination of external cookies and third-party tracking

10. Your rights

Under GDPR, you have the following rights:

10.1 Right of access

You have the right to obtain confirmation that we process your data and to access a copy of it.

10.2 Right to rectification

You have the right to correct inaccurate data or complete incomplete data.

10.3 Right to erasure ("right to be forgotten")

You have the right to request data deletion in certain circumstances, except when we have legal retention obligations.

10.4 Right to restriction of processing

You may request limitation of data processing in certain situations.

10.5 Right to data portability

You have the right to receive data in a structured, commonly used, and machine-readable format.

10.6 Right to object

You may object to data processing for marketing purposes or based on legitimate interest.

10.7 Right to lodge a complaint

You have the right to lodge a complaint with the National Supervisory Authority for Personal Data Processing (ANSPDCP):

Website: www.dataprotection.ro
Email: anspdcp@dataprotection.ro
Address: B-dul G-ral. Gheorghe Magheru 28-30, Sector 1, Bucharest

11. How to exercise your rights

To exercise any right, please contact us:

  • Email: office@besttravel.ro (with subject "GDPR Request")
  • Phone: +40 (21) 317 83 30 or +40 (21) 317 83 31
  • Letter: Str. Amiral Horia Macelariu, No. 83, Sector 1, Bucharest, ROMANIA

We will respond to your request within 30 days. In complex cases, we may extend the term by another 60 days, informing you of this.

12. Marketing and newsletter

You can receive marketing communications only if:

  • You have checked the newsletter subscription option
  • You have given explicit consent for promotional communications

You can unsubscribe at any time using the unsubscribe link in emails or by contacting us directly.

13. Minors

Our services are not intended for persons under 18 years old. We do not knowingly collect data from minors without parental or legal guardian consent.

14. Links to other sites

Our site may contain links to external sites (airlines, hotels). We are not responsible for the privacy policies of these sites and recommend reading their policies before providing personal data.

15. Policy changes

We reserve the right to update this Privacy Policy. Important changes will be communicated via email or site notification. The last update date is displayed at the top of this document.

16. Contact

For any questions about the processing of your personal data:

Best Travel International SRL
Data Protection Officer: office@besttravel.ro
Phone: +40 (21) 317 83 30 / +40 (21) 317 83 31
Address: Str. Amiral Horia Macelariu, No. 83, Sector 1, Bucharest, ROMANIA