mauritiusevents.com
Effective date: 11.22.2025
This Privacy Policy provides clear and transparent information to visitors and customers of the website mauritiusevents.com (hereinafter: “Website”) about how we process personal data in compliance with the EU General Data Protection Regulation (GDPR) and applicable Hungarian data protection laws.
By using the Website or submitting a booking or inquiry, you acknowledge and accept the terms of this Privacy Policy.
1. Data Controller
Data Controller:
Code of Joy Events & Programs
Company Registration Number: 13-09-239231
Registered Office: 2030 Érd, Fűtő utca 39., Hungary
Tax Number: 32766242-1-13
European Identifier (EUID): HUOCCSZ.13-09-239231
E-mail: info@codeofjoy.com
Phone: +36 70 243 0083
Website: https://mauritiusevents.com
The Data Controller is not required to appoint a Data Protection Officer.
2. Scope of This Privacy Policy
This Privacy Policy applies to all data processing activities carried out through mauritiusevents.com, including:
- browsing the Website and use of cookies
- inquiries sent via contact forms, email, or WhatsApp
- booking of tours and activities through WooCommerce
- newsletter subscription (if enabled)
3. Legal Basis for Data Processing
Personal data is processed based on the following legal grounds under GDPR Article 6:
- Performance of a contract or steps prior to entering into a contract
(e.g., booking a tour, requesting an offer) - Compliance with legal obligations
(invoicing, accounting, mandatory data retention) - Consent of the data subject
(newsletters, marketing cookies) - Legitimate interests of the Data Controller
(communication, customer service, security, analytics, dispute handling)
4. Personal Data Processed, Purpose, and Retention
4.1. Website Browsing and Cookies
We use technical, functional, analytical, and—if consent is given—marketing cookies.
Data processed:
- IP address
- browser type and operating system
- date and time of visit
- visited pages
- WooCommerce session information (e.g., shopping cart)
Purpose:
- proper functioning of the Website
- analytics and user experience improvement
- remarketing and advertising (only with consent)
Legal basis:
- essential cookies: legitimate interest
- non-essential cookies: consent
Retention:
- session cookies: until browser is closed
- analytics/marketing cookies: 1–24 months depending on type
4.2. Contact Forms, Email, WhatsApp
Data processed:
- name
- email address
- phone number / WhatsApp
- message content
- selected tour and travel dates
- any other voluntarily provided information
Purpose:
- answering inquiries
- providing offers and tour information
- pre-contract communication
Legal basis:
- steps prior to contract
- legitimate interest in customer communication
Retention:
- up to 1 year after the communication ends (unless legal claims justify longer retention)
4.3. Online Bookings (WooCommerce)
Data processed:
- full name
- billing address
- phone number
- number of adults/children
- travel dates, accommodation name (if provided)
- selected tour details
- payment information (transaction ID, amount, date)
Purpose:
- creating and managing bookings
- invoicing and accounting
- communication and updates
- dispute handling
Legal basis:
- performance of a contract
- legal obligation (accounting and tax rules)
Retention:
- invoicing-related data: 8 years
- booking data: 5 years (statute of limitations)
No registration is required; only essential data is collected.
4.4. Newsletter (If Enabled)
Data processed: name, email address
Purpose: sending travel tips, promotions, island updates, and news.
Legal basis: consent
Retention: until consent is withdrawn (unsubscribe link included in every email)
5. Data Transfers and Processors
Personal data may be shared only where necessary with:
- Hosting provider
[insert provider name] - Email service provider
(e.g., Gmail or hosting email service) - Payment service providers
(e.g., PayPal, Stripe, depending on activation) - Accounting service providers
[insert accountant name] - Newsletter platforms (if used: Mailchimp, MailerLite, etc.)
- Mauritius-based partner tour operators
(only name, booking date, group size, and special requests are shared)
Local Mauritius partners act as independent data controllers for their services.
If data is transferred outside the EU, it is only done with proper legal safeguards (e.g., EU Standard Contractual Clauses).
6. Data Security
We apply appropriate technical and organizational measures:
- controlled access to stored data
- secure, encrypted connection (HTTPS)
- firewall and malware protection
- regular updates and backups
- strong passwords and two-factor authentication where applicable
7. Rights of the Data Subject
You have the following rights under GDPR:
- Right to information about the processing of personal data
- Right of access to your data
- Right to rectification of inaccurate data
- Right to erasure (“right to be forgotten”)
- Right to restriction of processing
- Right to data portability
- Right to object to processing based on legitimate interests
- Right to withdraw consent at any time (for consent-based processing)
Requests may be submitted by email to info@codeofjoy.com.
We respond within 1 month.
8. Right to Lodge a Complaint
If you believe your personal data has been processed unlawfully, you may contact:
8.1. The Data Controller (recommended first step)
info@codeofjoy.com
+36 70 243 0083
8.2. Hungarian Data Protection Authority (NAIH)
National Authority for Data Protection and Freedom of Information
Address: 1363 Budapest, Pf. 9., Hungary
Phone: +36 (1) 391 1400
Email: ugyfelszolgalat@naih.hu
Website: www.naih.hu
8.3. Courts
You may initiate legal proceedings before a competent court in Hungary.
9. Automated Decision-Making and Profiling
mauritiusevents.com does not use automated decision-making or profiling that has legal or similarly significant effects on individuals.
10. Amendments to This Policy
We may update this Privacy Policy at any time due to legal or operational reasons.
Updates become effective upon publication on mauritiusevents.com.