PRIVACY POLICY

Last Updated: August 31, 2025

FAMBUL GLOBAL (“we,” “our,” “us”) respects your privacy and is committed to protecting the personal information you share with us. This Privacy Policy explains how we collect, use, and safeguard your data when you use our website, book travel experiences, or engage with our services.

1. Information We Collect

We may collect the following types of information:

  • Personal Information: Name, email address, phone number, date of birth, billing address, passport details (if required for bookings).
  • Payment Information: Processed securely by third-party providers (e.g., Stripe, Paystack). We do not store your full credit card details.
  • Booking Information: Travel preferences, room selections, special requirements.
  • Health and Insurance Information: Medical conditions, dietary needs, accessibility requirements, and proof of insurance, where required to facilitate safe and compliant travel. This information is encrypted in storage and access is restricted to staff who require it for operational safety, and it is handled in accordance with applicable privacy and health laws in your country of residence.
  • Technical Information: IP address, browser type, device information, cookies, and usage data.
  • Communications: Emails, messages, or feedback you send us.
  • Media Data: Photos or videos taken during trips, used only with your explicit consent for marketing. We comply with New York Civil Rights Law §§ 50–51 regarding the commercial use of likeness.

2. How We Use Your Information

We use your information to:

  • Process and manage bookings.
  • Communicate with you about trips, updates, and support.
  • Personalize your experience and improve our services.
  • Comply with legal obligations (e.g., health and safety requirements).
  • Assess health, insurance, and accessibility information solely to ensure safe participation in trips or to comply with legal requirements. This data will not be used for marketing, profiling, or unrelated purposes. These limits apply globally, regardless of where you are located.
  • Send marketing communications (only with your consent, where required by law).

3. Sharing of Information

We only share information with:

  • Service Providers & Partners: Hotels, tour operators, transport companies, and event organizers to fulfill bookings.
  • Payment Processors: To securely process your payments.
  • Healthcare providers, Insurers, and Local Authorities: Where required for medical, safety, or legal compliance purposes.
  • Legal Authorities: Where required by law or to protect our rights.

We require data-processing agreements (DPAs) with our service providers and obligate them to implement administrative, technical, and physical safeguards consistent with the New York SHIELD Act or equivalent local laws in their jurisdiction.

We do not sell or rent your personal data to third parties.

4. Cookies and Tracking

Our website uses cookies and similar technologies to:

  • Improve site functionality.
  • Analyze website traffic.
  • Provide personalized content and offers.

Where required by law (e.g., EU, UK, Singapore, Brazil, or other jurisdictions with consent requirements), we seek your consent before using non-essential cookies.

You can adjust your browser settings to decline cookies. Some features may not function without them. See our Cookie Policy for details.

5. Data Retention

We retain your personal information only as long as necessary to provide our services, comply with legal obligations, and resolve disputes.

Passport and visa details are deleted within 30 days after trip completion, unless legal obligations (e.g., immigration or tax compliance in the U.S. or abroad) require longer retention.

Medical and insurance information is retained only until the end of the trip, unless legally required to retain it for longer.

6. Data Security

We use appropriate technical and organizational measures to protect your personal data. While no system is completely secure, we take all reasonable steps to safeguard your information.

FAMBUL GLOBAL complies with the New York SHIELD Act and maintains administrative, technical, and physical safeguards that meet or exceed applicable international standards. These include encryption of sensitive data, regular risk assessments, employee training, contractual safeguards with vendors, secure disposal of data, and access-control protocols.

7. Security Incidents and Breach Notification

If we discover a data security incident affecting your personal information, we will notify you and relevant authorities in accordance with applicable breach-notification laws in your country or state of residence, including but not limited to New York General Business Law §899-aa for New York residents, U.S. federal and state requirements, UK and EU laws, and comparable global requirements.

8. Your Rights

Depending on your location, you may have rights under GDPR, U.S. state law, or other privacy frameworks, including the right to:

  • Access your personal data.
  • Correct inaccurate information.
  • Request deletion of your data.
  • Object to certain uses (e.g., marketing).
  • Withdraw consent where processing is based on consent.

U.S. residents may also have rights under state or federal law, and we honor these rights in accordance with applicable legal requirements. Depending on your location, you may also have rights under other national privacy laws (such as Brazil’s LGPD, Singapore’s PDPA, or Hong Kong’s PDPO), and we will respect these rights to the extent required by applicable law.

To exercise these rights, contact us at info@fambulglobal.com.

9. International Data Transfers

As FAMBUL GLOBAL operates internationally, your data may be transferred outside your home country.

Where personal data is transferred internationally (e.g., between the EU/UK and the U.S.), we use safeguards such as the European Commission’s modern Standard Contractual Clauses, the EU-U.S. Data Privacy Framework, and for the UK, the International Data Transfer Agreement (IDTA) or equivalent mechanisms. Legacy SCCs are not used for new or ongoing transfers.

10. Children’s Privacy

Our services are not intended for anyone under 21 years old. We do not knowingly collect personal data from minors.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted here with a revised “Last Updated” date.

12. Contact Us

For questions or concerns about this Privacy Policy, contact us at:

FAMBUL GLOBAL

Email: info@fambulglobal.com

13. Global Applicability

While FAMBUL GLOBAL is based in New York and complies with New York law, we serve clients worldwide. We apply this Privacy Policy consistently across all regions and will respect additional rights or obligations under the laws of your country of residence where applicable.