Data protection protocol for clients
Updated: december 2022
The purpose of this policy is to inform you how we gather, use, and store your personal details. It is also to inform you, how you can enforce your legal rights. At Sensen Travel we have the utmost respect for our customers privacy and personal data, and we see it as our responsibility to protect the data in our custody. All proper precautions are taken to safeguard your personal data according to current legislation.
Sensen Travel (Sensen Travel sp/f) is the data controller for any processing of your personal data at our travel agency. Personal data may be transferred internally, if necessary, mainly for administrative purposes.
The legal entity in control of the processing of your personal data is:
Sensen Travel sp/f
J. H. Schrøtersgøta 7
Tlf: +298 61 80 80
If you have any questions regarding our processing of your personal data, please contact us at the e-mail listed above.
Collection of personal data
Personal data means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, by reference to an identifier, such as name, address, e-mail, and telephone number. It can also be a ticket number, passport number and other sorts of electronic data as IP-address, if these can be used to identify a natural person.
We collect personal data in different ways, but most often directly from you.
• When you book a trip, a hotel, a rental car etc., via the telephone/email, or at our office, we collect certain data from you. This is data that is necessary for your booking. Depending on the service, we will collect your name, birthday, age and gender of all travelers, and the address and payment information of the person making the booking.
Data collected from third parties
When a client requests services from Sensen Travel and shares his personal information, then this is to be consider as consent for Sensen Travel to share the data with the necessary sub supplier for the requested services.
If a third person requests a service over phone or email, he simultaneously confirms having gathered the necessary consent to share the data of the mentioned travelers with Sensen Travel and our sub suppliers.
We might also receive information about you from banks, and other payment- or service providers, when you use your payment cards or other payment service. We use this information to process payments only.
Processing and retention of personal data
All our processing of personal data is made in compliance with applicable laws, and is based on the following:
We have your consent to process your personal data for a specific purpose
Processing is necessary for the performance of a contract with you
You have made a booking
We have a legal obligation to process under:
Personal data law
Processing is necessary for the purposes of the legitimate interests pursued by Sensen Travel. These interests can be statistics or marketing.
Administration of your booking
For use to deliver the services you have booked from us; we will use your personal data. We will use the data to issue tickets and other travel documentation, book hotels and payment of these services. Administration also covers the use of your personal data for accounting, settling, auditing, payment and more.
Once you have booked a trip, hotel room, rental car, or other service from us, we will use your personal data to send you a confirmation, important information about your trip, and relevant offers. This will be sent to the e-mail address you gave us upon booking.
During your trip we may send you important information via SMS to the mobile phone number you gave us upon booking. This might be information about weather, delays, changes, and other information relevant for your trip or destination. Reminders are sent via e-mail.
Your personal data may be processed by us, so that we comply with legal requirements, such as safety and notice requirements.
We keep your personal data if it is necessary for the purpose for which it is collected and intended. All data is normally stored for 5 years. This is mainly to comply with legal requirements regarding financial statements.
Sharing personal data
We may share your personal data with third parties in some instances. This can include authorities, if we are legally required to do so, or external partners, if we have your consent, or we have a legal obligation to do so.
Partners and IT suppliers
We use many different IT services and systems, and some of these contain personal data. Some systems are hosted locally, and other are hosted by the supplier or cloud-services, such as booking systems and payment services. We always make sure that your rights are secured, and that the necessary security measures are taken in connection with data transmissions.
We have many travel partners around the world, so that we can provide you with the travel services you need. In most cases we need to share your personal data with them for us to provide you with the requested service. This might include:
Under data protection law, you have rights we want to make you aware of. The rights available to you depend on our reason for processing your information.
You are not required to pay any charge for exercising your rights. We have one month to respond to you.
Your right of access
You have the right to ask us for copies of your personal information. This right always applies. There are some exemptions, which means you may not always receive all the information we process.
Your right to rectification
You have the right to ask us to rectify information you think is inaccurate. You also have the right to ask us to complete information you think is incomplete. This right always applies.
Your right to erasure
You have the right to ask us to erase your personal information in certain circumstances.
Your right to restriction of processing
You have the right to ask us to restrict the processing of your information in certain circumstances.
Your right to object to processing
You have the right to object to processing if we can process your information because the process is in our legitimate interests.
Your right to data portability
This only applies to information you have given us. You have the right to ask that we transfer the information you gave us from one organization to another or give it to you. The right only applies if we are processing information based on your consent or under, or in talks about entering a contract and the processing is automated.
Contact and complaints
You are always welcome to contact us if you have any questions regarding your rights and our processing of your personal data. You can contact us at:
J. H. Schrøtersgøta 7
Tlf.: +298 61 80 80
If you wish to complain about our processing of your personal data, you can submit your complaint to the Faroese Data Protection Agency. You will find their contact information on www.dat.fo