Personal Data Protection Policy

The Personal Data Protection (PDP) Policy of Travelling Horse Ltd includes the following key points:

1. Transparency of the relevant PDP adoption, application, and compliance in the company.
2. Limiting the gathered and processed personal data to the necessary minimum.
3. Processing sensitive personal data only in cases carrying legal grounds for it.
4. Clients’ personal data gathering, processing, and storage only in regard to the company’s engagement to render high-quality travel services.
5. Informing clearly the clients about the types of personal data gathered and how it is utilized.
6. Treating the gathered personal data as strictly confidential and taking the necessary technical and organizational measures to protect it against loss, illegal processing, or unauthorized use.
7. Storing the personal data only for the necessary time period required to fulfill the purpose of its gathering or as required by applicable law.
8. Preliminary Impact Assessment should be carried out in cases where personal data processing might cause a high risk of violating clients’ freedoms and rights, and subsequent security measures should be applied to minimize it.
9. All personal data gathering, processing, and storage should be performed using licensed software products, secured with relevant passwords and other means, so that only authorized personnel have access to it.
10. Absolute restriction on Artificial Intelligence use and application in the process of personal data gathering, processing, and storage.
11. In cases where personal data processing is subcontracted to other legal entities or persons, contracts between the assignor and assignee should be signed to ensure diligent personal data protection.

PDP Manager: Mrs. Iva Dikova

Contact: Travelling Horse Ltd

Phone/WhatsApp/Viber: +359 884 942 844

Email: i.krasteva@5directions.com