Privacy Policy
Protecting Your Personal Information

Section 01

Information We Collect

1.1 Information You Provide Directly

When you inquire about or book services with RYDER Signature, we collect information you provide directly. The categories of information we collect are:

1.2 Information Collected Automatically

When you visit our website, we automatically collect certain technical information to improve functionality and user experience:

• Device information: IP address, browser type and version, operating system, device type, and screen resolution.
• Usage information: Pages visited, time spent, links clicked, referring websites, and navigation patterns.
• Location information: General geographic location inferred from IP address (country or region only). We do not track precise physical location through our website.
• Cookie data: Information collected through cookies and similar technologies, as detailed in our Cookie Policy.

1.3 Information from Third Parties

We may receive personal information from travel agent partners who book on your behalf, from accommodation and activity partners for service coordination purposes, and from public sources relevant to fraud prevention or compliance. Information received from third parties is treated with the same protections as directly provided data.

Section 02

How We Use Your Information

2.1 Service Delivery

We process your personal information primarily to deliver the travel services you request. This includes booking management, itinerary confirmation, accommodation reservations, park permit applications, and logistics coordination. It also includes providing your guides and operations team with the information necessary to deliver personalised service during your journey, including dietary requirements, health considerations, and special requests.

2.2 Communication

We use contact information to send booking confirmations, travel documents, pre-departure information, and operational updates essential for your journey. We will contact you about changes, requirements, or issues affecting your booking. Service-related communications are not subject to marketing opt-out preferences.

2.3 Safety and Emergency Response

Health information, emergency contacts, and location data may be used to respond to emergencies during your journey. In a genuine emergency, information may be shared with medical providers, rescue services, or evacuation partners including AMREF Flying Doctors. This processing is non-negotiable and cannot be opted out of, as it directly protects your safety.

2.4 Legitimate Business Interests

We also process personal information based on legitimate business interests, where such processing does not override your fundamental rights. These interests include service improvement through analysis of booking and operational data, quality assurance through feedback review and guide performance evaluation, accurate record-keeping for administration and dispute resolution, and security monitoring and fraud prevention.

2.5 Legal Basis for Processing (GDPR — EEA and UK Guests)

For guests residing in the European Economic Area or United Kingdom, our processing of personal information is grounded in the following legal bases under the General Data Protection Regulation:

2.6 Marketing Communications

With your consent, we may send marketing communications about our services, special offers, destination updates, and travel inspiration. You can withdraw this consent at any time through unsubscribe links in emails or by contacting us directly. We do not sell or rent your personal information to third parties for their marketing purposes, and we honor opt-out requests promptly.

2.7 Legal Obligations

We process certain information as required by law, including tax records and business compliance documentation, and may disclose information in response to lawful government requests, court orders, or regulatory requirements.

Section 03

Information Sharing and Disclosure

3.1 Essential Journey Partners

Delivering your safari experience requires sharing information with partners who help execute your journey. We share only the information necessary for specific purposes and require partners to handle your data appropriately:

• Accommodation providers — lodges and camps receive guest names, room requirements, arrival dates, dietary requirements, and special requests. Properties may have their own privacy policies governing information they collect directly.
• Transportation providers — airlines, transfer companies, and vehicle operators receive passenger manifests and relevant booking details. Air carriers are subject to aviation regulations requiring certain passenger data.
• Park and conservation authorities — TANAPA, NCAA, Kenya Wildlife Service, and other government bodies require visitor information for permits and entry. These entities operate under their own data frameworks.
• Activity providers — operators of balloon safaris, diving services, or cultural experiences receive participant information necessary for safe service delivery and may require health declarations.
• Medical and emergency services — in emergencies, health information and contact details may be shared with medical providers, evacuation services, and emergency responders. Our AMREF Flying Doctors partnership enables rapid air evacuation when needed.

3.2 Business Service Providers

We engage service providers who process personal information on our behalf under appropriate data protection agreements. These include secure payment platforms processing financial transactions in compliance with PCI-DSS, communication platforms and CRM systems enabling effective client correspondence, website hosting and cloud infrastructure providers with appropriate security certifications, and professional advisors (legal, accounting, insurance) bound by professional confidentiality obligations.

3.3 International Data Transfers

RYDER Signature operates in Tanzania and Kenya. When you provide personal information, it may be transferred to and stored in these countries, which may not have data protection laws equivalent to those in your home country.

For guests from the European Economic Area or United Kingdom, we implement appropriate safeguards for international transfers. These may include standard contractual clauses approved by relevant authorities. By booking with us, you consent to the transfer of your information as necessary for service delivery.

3.4 Legal and Safety Disclosures

We may disclose personal information when required by law, legal process, or government request, or when we believe disclosure is necessary to protect the rights, safety, or property of RYDER Signature, our guests, or others. This includes situations involving potential fraud, security threats, or illegal activities.

Section 04

Data Security

4.1 Security Measures

RYDER Signature implements technical and organisational measures to protect personal information from unauthorised access, loss, misuse, or alteration. Our security program includes:

4.2 Your Security Responsibilities

We encourage you to protect your account credentials, use strong passwords, and avoid sharing login information with others. Please contact us immediately if you suspect unauthorised access to your personal information.

Section 05

Data Retention

5.1 Retention Periods

We retain personal information for as long as necessary to fulfill the purposes for which it was collected. Specific retention periods are as follows:

5.2 Deletion and Anonymisation

When retention periods expire, we securely delete or anonymise personal information. Anonymised data that cannot identify individuals may be retained indefinitely for statistical and analytical purposes. We may retain certain records longer if required for ongoing legal matters or regulatory compliance.

Section 06

Your Privacy Rights

6.1 Rights Available to All Guests

Regardless of your location, RYDER Signature respects the following privacy rights:

• AccessYou may request confirmation of whether we process your personal information and, if so, access to that information along with details about our processing activities.
• CorrectionYou may request correction of inaccurate personal information or completion of incomplete information. We encourage you to notify us of any changes to your details.
• DeletionIn certain circumstances, you may request deletion of your personal information. We may need to retain some information for legal, contractual, or legitimate business reasons and will explain any such requirements.
• Marketing Opt-OutYou may opt out of marketing communications at any time. This right is absolute. Opting out of marketing does not affect essential service communications related to your booking.
• ComplaintYou may lodge complaints about our data processing with relevant supervisory authorities. We encourage you to contact us first so we can address your concerns directly.

6.2 Additional Rights for EEA and UK Residents

If you reside in the European Economic Area or United Kingdom, you have additional rights under the General Data Protection Regulation (GDPR) and UK GDPR:

• RestrictionYou may request restriction of processing in certain circumstances, such as when you contest data accuracy or object to processing based on legitimate interests.
• PortabilityYou may request transfer of your personal information in a structured, commonly used, machine-readable format where technically feasible and where processing is based on consent or contract performance.
• ObjectionYou may object to processing based on legitimate interests. We will cease processing unless we can demonstrate compelling legitimate grounds that override your interests and rights.
• Automated Decision-MakingYou have rights relating to automated decision-making and profiling. RYDER Signature does not make significant decisions about individuals based solely on automated processing.

6.3 Exercising Your Rights

To exercise any of the rights listed above, contact us using the details in Section 11. We may need to verify your identity before processing requests to protect against unauthorised access. We will respond to valid requests within the timeframes required by applicable law, typically thirty (30) days. Requests are generally fulfilled free of charge. We may charge a reasonable fee for manifestly unfounded, excessive, or repetitive requests, and will explain our reasoning if we are unable to fulfill a request in full.

Section 07

Children's Privacy

RYDER Signature services are not directed at children under eighteen (18) years of age. We do not knowingly collect personal information from anyone under eighteen without verifiable parental or guardian consent. When families book journeys including minors, a parent or legal guardian provides information on the child's behalf and consents to all related processing.

If we discover we have inadvertently collected information from a child under eighteen without appropriate consent, we will delete that information promptly. Please contact us at africa@rydersignature.com if you believe we may have collected information from a minor inappropriately.

Section 08

Cookies and Tracking Technologies

Our website uses cookies and similar technologies to enhance functionality, analyse usage, and support marketing activities. Our Cookie Policy provides comprehensive information about the tracking technologies we use, their specific purposes, and the controls available to you.

You can manage cookie preferences through the consent mechanism displayed when you first visit our website. Browser settings also allow you to block or delete cookies, though some website features may not function properly without essential cookies enabled.

Section 09

Third-Party Links

Our website may contain links to third-party websites, including accommodation partners, activity providers, and travel resources. We are not responsible for the privacy practices or content of these external sites. Links to third-party sites do not imply endorsement of their privacy practices, and your interactions with those sites are governed by their own terms and policies. We encourage you to review the privacy policies of any third-party sites you visit.

Section 10

Policy Updates

We may update this privacy policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. Updated versions will be posted on our website with revised effective dates.

For significant changes affecting how we handle personal information, we will provide more prominent notice, which may include direct email notification. Continued use of our services after policy updates constitutes acceptance of the revised terms. We encourage periodic review of this policy to stay informed about our practices.

Section 11

Contact Information

For questions about this privacy policy, concerns about our data practices, or to exercise your privacy rights, please contact us. We aim to respond to privacy inquiries within five (5) business days and to complete valid rights requests within thirty (30) days.