Privacy Policy

Timeless Trails France SAS

Timeless Trails France SAS (“we”, “us”, “our”) is committed to protecting your personal data and respecting your privacy.
This Privacy Policy explains how we collect, use, store and protect your personal data, in accordance with the General Data Protection Regulation (GDPR) and applicable French data protection laws.

1. Data Controller

The data controller is:

Timeless Trails France SAS
Registered office: 775 ave georges coupois saillans 26340
Email: enquiries@timelesstrailsfrance.co.uk
Telephone: 06 56 69 82 74
RCS: 101 185 767 RCS Romans

For any questions relating to personal data, you may contact us at the above email address.

2. Personal Data We Collect

We may collect and process the following categories of personal data:

• Identity data: name, date of birth, nationality

• Contact details: postal address, email address, telephone number

• Booking information: travel details, accommodation, preferences

• Administrative data: invoice details, payment references

• Travel documents: passport or ID details (where required for bookings)

• Special category data: dietary requirements, medical information only where necessary for the organisation of the trip

• Marketing data: newsletter subscription preferences

• Technical data: IP address, browser type, cookies (see Cookie Policy)

3. Purpose and Legal Basis of Processing

Your personal data is processed only where legally permitted, for the following purposes:

You may withdraw your consent at any time where processing is based on consent.

4. Data Recipients

Your personal data may be shared strictly on a need-to-know basis with:

• Accommodation providers

• Transport providers

• Local guides and activity providers

• IT service providers (hosting, email, booking systems)

• Payment service providers

• Accountants, auditors, or legal authorities where required by law

We do not sell your personal data to third parties.

5. Data Transfers Outside the EU

Where personal data is transferred outside the European Union, we ensure that appropriate safeguards are in place (such as adequacy decisions or standard contractual clauses).

6. Data Retention

We retain personal data only for as long as necessary:

• Booking and accounting data: 10 years

• Customer correspondence: 3 years

• Marketing data: until consent is withdrawn or after prolonged inactivity

• Technical data and cookies: see Cookie Policy

7. Data Subject Rights

In accordance with GDPR, you have the right to:

• Access your personal data

• Rectify inaccurate or incomplete data

• Request erasure (“right to be forgotten”)

• Restrict processing

• Data portability

• Object to processing

• Withdraw consent at any time

To exercise your rights, please contact us at: enquiries@timelesstrailsfrance.co.uk

You also have the right to lodge a complaint with the CNIL (French Data Protection Authority):
www.cnil.fr

8. Data Security

We implement appropriate technical and organisational measures to protect your personal data against loss, misuse, unauthorised access or disclosure.

In the event of a personal data breach posing a risk to your rights and freedoms, we will notify the CNIL and affected individuals in accordance with legal requirements.

9. Cookies

Our website uses cookies and similar technologies.
Details regarding the use of cookies, consent and preferences are available in our Cookie Policy.

10. Images and Marketing

Photographs or videos taken during trips may be used for promotional purposes unless you object in writing.
You may withdraw your consent at any time.

11. Changes to This Policy

We reserve the right to update this Privacy Policy at any time.
The applicable version is the one published on our website at the date of consultation.

12. Contact

For any questions relating to this Privacy Policy or your personal data, please contact:

enquiries@timelesstrailsfrance.co.uk