Privacy Policy | Watermelon Tours

Watermelon Tours OÜ (“Watermelon Tours”, “we”, “our”, or “us”) is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your information when you use our website or book tours with us.

We operate in accordance with the General Data Protection Regulation (GDPR) and applicable Estonian and EU data protection laws.

By using our website or submitting personal information, you agree to the practices described in this Privacy Policy.

1. Who We Are

Watermelon Tours OÜ

Registry code: 17371746

Registered address: Harju maakond, Tallinn, Kesklinna linnaosa, Tartu mnt 67/1-13b, 10115

Website: https://www.watermelontours.com

Email: info@watermelontours.com

We act as the data controller for the information you provide. When guides receive your contact information to operate the tour, they act as data processors.

2. What Personal Data We Collect

2.1 Information You Provide Directly

Full name
Email address
Phone number (if provided)
Country of residence
Passport details (if required for certain tours)
Billing address (for payment confirmation)
Any information shared in messages, inquiries, or booking forms

2.2 Booking & Payment Information

Tour details you select
Price and payment confirmation
Payment method (processed securely by Stripe; we do not store card details)

2.3 Automatically Collected Data

IP address
Browser and device information
Cookies and tracking data
General usage statistics

2.4 Guide Information (if you register as a guide)

Profile details
Tour descriptions
Languages spoken
Payment/payout information

3. How We Use Your Data

We use your personal data to:

Process and manage tour bookings
Connect you with the guide operating your tour
Send confirmations, receipts, and important updates
Communicate itinerary changes or operational notifications
Improve website performance and user experience
Prevent fraud and ensure security
Comply with legal and accounting requirements
Send marketing emails if you explicitly subscribe in the future

4. Legal Basis for Processing

We process your data under these GDPR legal bases:

Contractual necessity: to operate and manage your booking
Legitimate interest: improving services, ensuring safety, preventing misuse
Legal obligation: tax, accounting, and compliance requirements
Consent: for newsletters, cookies, and optional data you choose to provide

5. How We Share Your Data

We do not sell your data.

We share it only when necessary:

5.1 With Your Guide

Your name, contact information, and booking details are shared with the guide responsible for your tour.

5.2 With Service Providers

Such as:

Stripe (payment processing)
Hosting and email services
Analytics and website performance tools

All providers follow GDPR-compliant data protection standards.

5.3 With Authorities

Only if legally required.

6. Data Retention

We keep your personal data only as long as necessary:

Booking and payment records: up to 5 years
Emails and customer support messages: up to 2 years
Marketing data: until you unsubscribe
Guide profiles: while active on the platform

After these periods, data is anonymized or securely deleted.

7. Data Security

We take appropriate technical and organizational steps to protect your data, including:

Encrypted website connections (SSL)
Secure servers and restricted access
Regular monitoring and maintenance

While we aim to protect your information, no transmission method is completely secure.

8. International Data Transfers

Data is primarily stored in the EU.

If certain service providers process data outside the EU, this occurs only with GDPR-approved safeguards such as:

Standard Contractual Clauses
Adequacy decisions
Other legally accepted mechanisms

9. Your Rights

You have the following rights under GDPR:

Access your data
Correct inaccurate information
Request deletion (“right to be forgotten”)
Restrict processing
Object to processing
Withdraw consent
Request a copy of your data (data portability)

To exercise any of these rights, contact us at:
info@watermelontours.com

10. Cookies

Our website uses cookies to:

Enable core site functionality
Maintain sessions
Analyze general website usage

You can control cookies through your browser settings.

A separate Cookie Policy may be provided.

11. Third-Party Links

Our website may include links to external websites.

We are not responsible for their content or privacy practices.

12. Children’s Privacy

We do not knowingly collect data from minors without parental consent.

Parents or guardians booking tours for minors accept full responsibility for the information provided.

13. Changes to This Policy

We may update this Privacy Policy periodically.

Changes take effect immediately upon posting on our website.

14. Contact Us

For any privacy-related questions or requests, contact: