Privacy Policy

Welcome to Wanderlust Escapes' Privacy Policy. This policy outlines how we collect, use, and protect your personal information. We are committed to maintaining the privacy and security of your data.

1. Introduction

Wanderlust Escapes, located at 45 Wall Street, Asheville, NC 28801, is dedicated to providing exceptional travel experiences while ensuring the privacy of our clients. This Privacy Policy applies to all personal information collected by Wanderlust Escapes through our website, mobile applications, and other services. By using our services, you consent to the practices described in this policy.

Eleanor Vance, the founder and data protection officer of Wanderlust Escapes, is committed to ensuring that your personal information is handled with utmost care and in compliance with applicable data protection laws, including the California Consumer Privacy Act (CCPA) and the General Data Protection Regulation (GDPR) where applicable. Our policy is designed to be transparent and easily understandable to provide you with a clear understanding of how we manage your data.

2. Data Collection

We collect various types of information to provide and improve our services. This includes:

• Personal Information: Name, email address, phone number, postal address, date of birth, and passport information. We collect this information when you create an account, book a trip, or subscribe to our newsletter. This data allows us to personalize your travel plans and provide you with tailored recommendations.
• Payment Information: Credit card details, billing address, and other payment-related information. This information is collected to process your bookings and ensure secure transactions. We use PCI-compliant payment processors to protect your financial data.
• Travel Preferences: Dietary restrictions, accommodation preferences, activities of interest, and other travel-related preferences. This information helps us to customize your travel itineraries and provide you with the best possible travel experiences.
• Device Information: IP address, browser type, operating system, and device identifiers. This information is collected automatically when you visit our website or use our mobile application to help us improve user experience and prevent fraud.
• Cookies and Tracking Technologies: We use cookies and similar technologies to track your activity on our website and mobile application. This helps us to understand your preferences, personalize your experience, and deliver targeted advertising. You can manage your cookie preferences through your browser settings.
• Communications: Records of your communications with us, including emails, phone calls, and chat logs. This data helps us to improve our customer service and address your queries and concerns effectively.

3. Data Usage

The information we collect is used for various purposes, including:

• Providing and Improving Services: To process bookings, customize travel itineraries, provide customer support, and improve our website and mobile application functionality. Your personal information is essential to ensure that we can deliver the high-quality travel experiences that you expect.
• Personalization: To personalize your experience on our website and mobile application, provide tailored recommendations, and display relevant content. By understanding your travel preferences, we can offer you personalized suggestions for destinations, accommodations, and activities.
• Marketing Communications: To send you newsletters, promotional offers, and information about our services. You can opt-out of receiving these communications at any time by following the unsubscribe instructions provided in our emails.
• Analytics: To analyze user behavior, track trends, and measure the effectiveness of our marketing campaigns. This data helps us to understand how our users interact with our website and mobile application and to make informed decisions about improvements and new features.
• Legal Compliance: To comply with applicable laws and regulations, respond to legal requests, and prevent fraud. We may need to disclose your personal information in response to a court order or other legal process.
• Improving Customer Experience: By understanding your preferences and past travel experiences, we aim to provide you with an increasingly personalized and satisfying travel planning experience. This includes tailored communication and proactive support to address your unique needs.

4. Data Security

We take data security seriously and implement appropriate technical and organizational measures to protect your personal information from unauthorized access, disclosure, alteration, or destruction. These measures include:

• Encryption: We use encryption to protect your personal information during transmission and storage. This includes the use of SSL certificates for secure communication over the internet.
• Access Controls: We restrict access to your personal information to authorized personnel only. Our employees are trained on data protection best practices and are required to adhere to strict confidentiality obligations.
• Regular Security Assessments: We conduct regular security assessments to identify and address potential vulnerabilities. This includes penetration testing and vulnerability scanning to ensure that our systems are secure.
• Incident Response Plan: We have an incident response plan in place to address any data breaches or security incidents promptly and effectively. This includes notifying affected users and relevant authorities as required by law.
• Data Minimization: We only collect and retain the minimum amount of personal information necessary to fulfill the purposes outlined in this Privacy Policy. We regularly review our data retention policies to ensure that we are not retaining data longer than necessary.
• Employee Training: Our employees receive regular training on data privacy and security practices to ensure they are aware of their responsibilities and can handle personal information securely.

5. Contact

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:

Wanderlust Escapes
45 Wall Street
Asheville, NC 28801
Email: [email protected]
Phone: (828) 555-7878

You have the right to access, correct, or delete your personal information. You may also have the right to object to or restrict the processing of your personal information, as well as the right to data portability. To exercise these rights, please contact us using the contact information provided above. We will respond to your request within a reasonable timeframe and in accordance with applicable laws.

6. Updates to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our data practices or legal requirements. We will post any changes on our website and update the “Last Updated” date at the top of this policy. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.

7. Your Rights Under CCPA (California Residents)

If you are a resident of California, you have specific rights regarding your personal information under the California Consumer Privacy Act (CCPA). These rights include:

• Right to Know: You have the right to request information about the categories and specific pieces of personal information we have collected about you, the sources of the information, the purposes for collecting it, and the categories of third parties with whom we share it.
• Right to Delete: You have the right to request that we delete the personal information we have collected from you, subject to certain exceptions.
• Right to Opt-Out: You have the right to opt-out of the sale of your personal information. Wanderlust Escapes does not sell your personal information.
• Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights.

To exercise your CCPA rights, please contact us using the contact information provided above. We will verify your identity before processing your request and will respond within the timeframe required by law.

8. GDPR Compliance (European Union Residents)

If you are a resident of the European Union, you have specific rights regarding your personal information under the General Data Protection Regulation (GDPR). These rights include:

• Right to Access: You have the right to request access to your personal information and information about how we process it.
• Right to Rectification: You have the right to request that we correct any inaccurate or incomplete personal information we have about you.
• Right to Erasure: You have the right to request that we erase your personal information, subject to certain exceptions.
• Right to Restriction of Processing: You have the right to request that we restrict the processing of your personal information in certain circumstances.
• Right to Data Portability: You have the right to receive your personal information in a structured, commonly used, and machine-readable format and to transmit it to another controller.
• Right to Object: You have the right to object to the processing of your personal information in certain circumstances.
• Right to Withdraw Consent: If we are processing your personal information based on your consent, you have the right to withdraw your consent at any time.

To exercise your GDPR rights, please contact us using the contact information provided above. We will verify your identity before processing your request and will respond within the timeframe required by law.

Last Updated: October 26, 2025