Privacy Policy

Privacy Policy

Last updated: March 17th, 2025

Thank you for choosing Clou Travel. We value your trust and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and disclose your information when you use our services or visit our website.

1. General Information

1. Scope

• This Privacy Policy applies to all individuals who use Clou Travel’s services (including trip bookings, travel-related inquiries, and our website).
• We adhere strictly to the relevant data protection regulations, including the EU General Data Protection Regulation (EU Regulation No. 679/2016 – “GDPR”), the Bhutan, Nepal, India, China, and Vietnam Data Protection Authority (BDPA) guidelines, and applicable national laws.

2. Data Controller

• Name of the Responsible Person:
• Mr. Sonam Therchen, Founder & Promoter
• Contact Information:
  • Email: [email protected] | [email protected]
  • Phone: +975 77111115
• Address:
  Taba Wom-6,
  Kinley Penjor Building,
  Flat No. 08,
  Taba, ThimThrom,
  Thimphu, Bhutan 11001

3. Age Requirement

• By using our services and consenting to this Privacy Policy, you confirm that you are at least 14 years old or that you have obtained valid consent from a parent, guardian, or legal representative.

2. Personal Data & Information (Article 13 GDPR)

1. Types of Data Collected

We may collect and process the following personal data:

• Basic Contact Details: Name, address, email address, phone number.
  Travel Document Details: Passport number, date of birth, issuing authority, expiry date.
  Payment Information: Credit/debit card details, bank account information.
  Trip Details: Destinations, hotels, duration of stay, special requests (e.g., dietary needs, health requirements, frequent flier numbers).
  Special Categories of Data: Health data, dietary specifications, special needs, marriage/partnership status, etc.

2. Purpose of Data Processing

• To provide travel booking services, including flights, accommodations, transfers, tours, rentals, and insurance.
• To handle payments, billing, and account management.
• To facilitate customer support and respond to inquiries.
• To meet legal obligations, resolve disputes, or enforce agreements.

3. Legal Basis

We process your personal data based on:

• Contractual Necessity: Fulfilling our pre-contractual and contractual obligations (e.g., completing trip bookings).
• Consent: Where you have expressly given consent (e.g., for marketing newsletters).
• Legal Obligations: Compliance with accounting, tax, or other legal requirements.
• Legitimate Interests: Improving customer service (including direct advertising) and exercising or defending legal claims.

4. Storage Duration

• We retain your data only as long as needed to fulfill the purposes stated above and to meet any legal or contractual obligations (e.g., retention periods under tax or customs law).
• If we have a recurring business relationship, we may keep relevant information to ensure we can provide continuous, personalized services based on your previous requests and preferences.

3. Data Collection on Our Website

1. Website Data Processing

• Automatic Collection: When you visit our website, our server automatically logs certain data (e.g., pages viewed, date/time of access, IP address, browser type, operating system). This information is used for internal statistics, security measures, and site optimization.
• User-Provided Information: You may provide data directly via contact forms, live chats, emails, or other interactive features. By doing so, you consent to our storage and processing of these details to address your inquiries or service requests.

2. Account Creation

• If you create an online account with Clou Travel, please store your access credentials securely. We are not liable for unauthorized access resulting from mishandling of your login details.
• Account data is transferred over an encrypted internet connection (HTTPS).

3. Data Security

• We implement industry-standard security measures (SSL/TLS encryption) to protect your information from unauthorized access. However, no data transmission over the internet can be guaranteed 100% secure.
• We assume no liability for data loss or third-party access if we have taken all required and reasonable security precautions.

4. Usage Analysis

• Part of the data we collect is used to analyze how visitors interact with our website so that we can continuously improve our services.
• Where possible, we use aggregated or anonymized data for such analyses.

4. Transmission to Third Parties / Contract Processors

1. Within Clou Travel

• Your data may be shared internally among our authorized personnel and departments, strictly on a need-to-know basis.

2. Service Providers & Third Countries

• We may share data with external service providers (e.g., airlines, hotels, software providers) to fulfill your booking or provide associated services.
• In some cases, these providers may be located in countries outside your jurisdiction. If local data protection standards differ, we will seek to implement appropriate safeguards (such as standard contractual clauses or obtaining your explicit consent).

3. Legal Disclosures

• We may disclose personal data if required to do so by law or if such action is necessary to comply with legal processes, orders from authorities, or to protect our rights and interests in legal proceedings.

5. General Points & Mandatory Information

1. Data Protection Principles

• We treat your personal data confidentially and in accordance with legal data protection regulations and this Privacy Policy.

2. Contact for Data Protection

• For any inquiries regarding data protection, please contact our designated person:
• Email: [email protected]
• Phone: +975 77111115

3. Revoking Consent

• You can revoke any previously granted consent at any time. Simply send an email to [email protected].
• Revocation of consent does not affect the lawfulness of data processing prior to the revocation.

4. Right to Lodge a Complaint

• If you believe your data has been processed unlawfully, you have the right to file a complaint with the relevant supervisory authority. In Bhutan, this is the Bhutan Data Protection Authority (BDPA), Thimphu, Bhutan 11001.(Nest our other destinations, applies as per country's law)

5. SSL or TLS Encryption

• Our website employs SSL or TLS encryption for the secure transmission of confidential data such as inquiries or orders. You can recognize an encrypted connection by “https://” and a lock icon in your browser’s address bar.

6. Information, Blocking, Deletion

• You have the right to request information about your stored personal data, its origin, recipients, and the purpose of data processing. You can also request the correction, blocking, or deletion of this data, provided there are no overriding legal obligations to retain it.

7. Objection to Advertising

• We expressly object to the use of any published contact data on this site for unsolicited advertising. We reserve the right to take legal action in such cases (e.g., spam emails).

6. Cookies

1. What Are Cookies?

• Cookies are small text files stored on your device to help websites function more efficiently and remember certain user preferences.

2. Why We Use Cookies

• To recognize you on subsequent visits and make our website faster, more user-friendly, and more secure.
• To analyze user behavior for optimizing our online services.

3. Cookie Types

• Session Cookies: Automatically deleted after your visit.
• Persistent Cookies: Remain on your device until they expire or you manually delete them.

4. Cookie Management

• You can configure your browser to inform you about cookies, only accept them in specific cases, or disable them altogether.
• Disabling cookies may limit some functionalities of our website.

5. Legal Basis

• Cookies required for electronic communications or certain functions (e.g., shopping cart) are stored based on Art. 6(1)(f) GDPR (legitimate interest).
• Other cookies (e.g., for analysis) are treated separately in this policy.

7. Third-Party Providers & Integrations

1. External Content

• Our website may include embedded third-party resources such as Google Maps, YouTube videos, RSS feeds, or social media widgets.
• For technical reasons, these third parties receive your IP address. We have no control over their data usage. Please review the respective providers’ Privacy Policies.

2. Server Log Files

• Our hosting provider automatically collects information that your browser transmits to us in “server log files” (e.g., browser type, operating system, referrer URL, hostname of accessing computer, IP address, time of request).
• This data is used for security, troubleshooting, and statistical analysis, and is not merged with other data sources.

8. Contact Form, Registration, & Comment Function

1. Contact Form

• If you submit a request through our contact form, we store the data provided (including your IP address for security purposes) to process and address any follow-up questions.
• This processing is based on your consent (Art. 6(1)(a) GDPR), which you can revoke at any time.

2. Registration on Our Website

• If you register to access special features, the data you submit will be used solely for providing those services.
• We may use your email address to inform you of critical changes (e.g., technical updates).
• Your data will remain stored until you request deletion, revoke consent, or the storage purpose ceases.

3. Comment Function

• When you leave comments, we collect your comment, timestamp, and possibly your IP address.
• This is to protect us in case of illegal or offensive content.
• Comments are stored based on your consent and remain until removal is requested or required by law.

9. Social Media Plugins

1. Facebook, LinkedIn, Bluesky

• Our website may integrate social media buttons or plugins (e.g., Facebook “Like” button, Bluesky “Tweet” button, LinkedIn widget).
• When you interact with these plugins, certain data may be transmitted to the respective social media provider.
• If you do not want social media networks to link your visits to our site with your user account, log out of those accounts beforehand.
• For more details, please review each platform’s Privacy Policy.

10. Analytics & Advertising

1. Google Analytics

• We use Google Analytics (by Google Inc.) to analyze website usage. Google Analytics sets cookies that gather usage data.
• IP anonymisation is enabled so that your IP address is shortened within the EU/EEA.
• You can prevent data collection by Google Analytics using a browser plugin or by clicking an opt-out link if provided.

2. Google Analytics Re-marketing

• This feature enables cross-device ad display by linking Google Analytics with Google Ads/DoubleClick.
• You can opt out by disabling personalized ads in your Google account.

3. Google AdWords & Conversion Tracking

• We use Google AdWords to serve ads and track conversions via cookies.
• This data is used to compile conversion statistics (e.g., number of clicks, successful bookings), without personally identifying users.

4. Facebook Pixel

• We employ Facebook Pixel to measure ad effectiveness. Data is processed by Facebook and can be linked to your Facebook profile for targeted advertising.
• More details can be found in Facebook’s Data Policy. You may adjust your ad settings within your Facebook account.

11. Newsletter

1. Subscription

• You can subscribe to our newsletter by providing a valid email address and consenting to receive it.
• We use a double opt-in process: after signing up, you will receive an email confirmation link to finalize your subscription.

2. Usage of Data

• Your email address is used exclusively for delivering the requested newsletter. We do not share it with third parties without your consent.

3. Unsubscribing

• You can unsubscribe at any time via the “unsubscribe” link provided in every newsletter or by emailing us at [email protected].
• Data processed before your request to unsubscribe remains lawful.

12. Plugins & Tools

1. Google Web Fonts

• We use Google Web Fonts to ensure consistent and visually appealing text display.
• Your browser connects to Google servers to load these fonts, transmitting your IP address.

2. Google Maps

• We embed Google Maps for location information. Google may collect your IP address and other usage data.
• Using Google Maps is based on our legitimate interest in offering a helpful, easy-to-use website.

13. Cookie Preference

• You may choose or modify your cookie settings at any time in your browser.
• Disabling certain cookies may impact the functionality of our website.

14. Your Rights

Under applicable data protection laws (including GDPR), you have the right to:

• Access: Request information about whether and which personal data we hold about you.
• Rectification: Request correction of inaccurate or incomplete data.
• Erasure: Ask us to delete your personal data unless prevented by legal obligations.
• Restriction: Limit the processing of your data in certain circumstances.
• Data Portability: Obtain your data in a structured, commonly used, and machine-readable format if applicable.
• Objection: Object at any time to the processing of your data based on legitimate interests, including direct marketing.

To exercise these rights, please contact us at:

• Email: [email protected]
• Phone: +975 77111115

15. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in legal requirements or our data processing practices. Any modifications will be posted on our website with a new “Last updated” date. We encourage you to review this page regularly.

If you have any questions or concerns regarding our Privacy Policy or your personal data, please contact us at [email protected]. We are here to help and appreciate your trust in Clou Travel.

Thank you for choosing Clou Travel. We wish you a pleasant and secure experience with us!