Visit Socotra
Privacy Policy
How Visit Socotra collects, uses, protects, and shares customer information.
Effective June 2026
Information we collect
We collect information you provide when browsing, enquiring, booking, paying, onboarding, messaging our team, submitting documents, joining a waitlist, or requesting a private expedition.
This may include contact details, traveller names, nationalities, passport details, emergency contacts, dietary or accessibility notes, booking preferences, uploaded documents, payment records, messages, and technical information such as IP address and device metadata.
How we use information
We use your information to operate the booking flow, confirm payments, manage onboarding, prepare manifests and travel documents, send service emails, provide customer support, coordinate suppliers, prevent fraud, and comply with legal or accounting obligations.
We may also use aggregated, non-identifying information to improve expedition planning, website performance, and service quality.
Sharing and processors
We share information only where needed to deliver the trip or operate the platform, including with local operators, guides, accommodation partners, transport providers, payment gateways, email providers, storage providers, and professional advisers.
We do not sell personal information. Supplier sharing is limited to what is reasonably necessary for trip operation, safety, compliance, or customer service.
Documents and sensitive data
Passport and onboarding documents are used to prepare and verify travel arrangements. Access is limited to authorised staff and service providers who need the information to operate your trip.
You should not upload unnecessary sensitive information. If we receive information that is not required, we may delete it or ask you to provide a safer replacement.
Retention and security
We keep booking, payment, and operational records for as long as needed to deliver services, meet legal obligations, resolve disputes, and maintain accounting records.
We use technical and organisational safeguards such as authenticated access, role-based controls, storage policies, audit logging, and encrypted transport. No online service can guarantee absolute security.
Your choices
You can request access, correction, export, or deletion of personal information through your account tools or by contacting hello@visit-socotra.com. Some records may need to be retained where required for legal, safety, fraud-prevention, or accounting reasons.