legal.privacyTitle

Last updated: June 19, 2026

This Privacy Policy outlines how we collect, process, and secure your personal data. We are committed to protecting your privacy in compliance with the General Data Protection Regulation (GDPR) and the Turkish Protection of Personal Data Law (KVKK).

1. Personal Data We Collect

To complete and secure travel bookings, we require:

• Identity Details: First name, last name, date of birth, nationality, and passport number.
• Contact Details: Email address, phone number, and physical address.
• Payment Details: Cardholder name, credit card number, expiry date, CVV code, and bank-issued 3D Secure verification OTP.
• Travel Preferences: Dietary restrictions, medical requirements, or special hotel requests.

2. Payment Security & Encryption

We utilize industry-standard Secure Socket Layer (SSL) technology. To accommodate future billing hand-offs to physical point-of-sale (POS) systems, card numbers and CVV codes are stored securely in our database using advanced AES-256-CBC symmetric encryption, which utilizes a private environment key.

3. Data Sharing and Protection

Your passport and identity details are shared only with official airline agencies, certified hotel blocks, and licensed guides managing entry gates. We never sell or distribute your data to third-party marketing companies.