# Privacy Policy
## 1. Introduction
We, **Infinity Voyage s.r.o** ("we", "us", "our"), respect your privacy and are committed to protecting your personal data in compliance with applicable laws, including the European Union's General Data Protection Regulation (GDPR). This Privacy Policy explains how we collect, use, and safeguard your personal data, as well as your rights in relation to the processing of your data.
## 2. Data We Collect
We may collect and process the following categories of personal data:
- **Identification Information:** name, surname, contact details (email address, phone number).
- **Financial Information:** payment details (including credit card number) necessary for transactions.
- **Website Visit Information:** IP address, browser details, visit history, cookies, geolocation data.
- **Voluntary Information:** feedback, messages, reviews.
## 3. Purposes of Data Processing
We collect and use your personal data for the following purposes:
- To provide services and fulfill contracts.
- To process payments and complete orders.
- To improve our website and user experience.
- To respond to your inquiries and provide technical support.
- For marketing communications (with your consent).
- To ensure security and prevent fraud.
## 4. Legal Basis for Processing
We process your data on the following legal bases:
- **Contract performance:** where necessary to fulfill our obligations to you.
- **Consent:** when your explicit consent is required (e.g., for sending marketing materials).
- **Legitimate interests:** to improve our services, prevent fraud, and protect our rights.
- **Legal obligations:** to comply with legal requirements.
## 5. Sharing Data with Third Parties
We do not share your personal data with third parties, except in the following cases:
- When necessary to complete an order (e.g., sharing data with payment processors).
- When we work with third-party service providers (IT providers, analytics services) that support our website and services.
- When required by government authorities or to comply with legal obligations.
All third parties are required to maintain the confidentiality and security of your data.
## 6. Data Transfers Outside the European Economic Area (EEA)
If your data is transferred outside the EEA, we ensure that appropriate safeguards are in place, such as the use of standard contractual clauses approved by the European Commission or compliance with the third party’s privacy policy.
## 7. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected or as required by law. When your data is no longer needed, we ensure its secure deletion or anonymization.
## 8. Your Rights
You have the following rights regarding your personal data:
- The right to access your data.
- The right to correct inaccurate data.
- The right to request the deletion of your data ("right to be forgotten").
- The right to restrict the processing of your data.
- The right to data portability.
- The right to object to data processing (e.g., for marketing purposes).
- The right to withdraw consent at any time (where processing is based on consent).
To exercise your rights, please contact us using the information provided below.
## 9. Data Security
We take appropriate technical and organizational measures to protect your personal data from unauthorized access, loss,
