Privacy Policy

TGA Tour and Travel LLC ("Company", "we", "our", or "us") respects the privacy of our customers and is committed to protecting personal information collected during the booking and travel service process.

This Privacy Policy explains how we collect, use, store, and share personal information when customers use our services.

1. Company identity

This Privacy Policy applies to services provided by:

TGA Tour and Travel LLC

The trade name Marefat Pilgrimage is a brand operated by TGA Tour and Travel LLC.

All personal data collected under the name Marefat Pilgrimage is processed and controlled by TGA Tour and Travel LLC.

Data controller

For the purposes of applicable data protection laws, including the General Data Protection Regulation (GDPR), TGA Tour and Travel LLC acts as the data controller responsible for the processing of personal information described in this Privacy Policy.

2. Information we collect

We may collect personal information necessary to provide travel services.

This information may include:

Personal identification information:

• Full name
• Date of birth
• Gender
• Nationality

Contact information:

• Phone number
• Email address
• Residential address

Travel documentation:

• Passport copies
• Residence permit copies
• Visa documents
• Identification photos
• Vaccination records where required
• Government-issued identification

Travel details:

• Travel itinerary
• Flight information
• Hotel reservations
• Transportation bookings
• Pilgrimage registration information

Payment information:

• Payment confirmation details
• Transaction information
• Billing information
• Cryptocurrency wallet addresses and transaction identifiers (where applicable)

3. Purpose of data collection

Personal information is collected and used for the following purposes:

• Processing travel bookings
• Coordinating reservations with airlines, hotels, and suppliers
• Processing pilgrimage travel registration
• Assisting with visa applications
• Communicating travel information and updates
• Managing customer service requests
• Processing payments and refunds
• Complying with legal or regulatory obligations

The Company collects only the personal information reasonably necessary to provide travel services and fulfill legal or contractual obligations.

3.1 Legal basis for processing (GDPR)

If the Customer is located in the European Union, personal data is processed on the following legal bases:

• Performance of a contract – to provide requested travel services
• Legal obligations – to comply with applicable laws and regulations
• Legitimate interests – to manage bookings, improve services, and prevent fraud
• Consent – where required for specific processing activities such as marketing communications

Where consent is required, Customers may withdraw consent at any time, subject to legal or contractual limitations.

4. Sharing of personal data

To provide travel services, personal information may be shared with third parties when necessary.

Travel service providers:

• Airlines
• Hotels
• Transportation providers
• Cruise companies
• Tour operators
• Charter aviation providers

Government authorities:

• Immigration authorities
• Visa issuing authorities
• Border control agencies
• Pilgrimage authorities including the Saudi Ministry of Hajj and Umrah

Other service partners:

• Payment processors
• Travel insurance providers
• Travel management partners

Information will only be shared to the extent necessary to perform the requested services.

Personal data may also be shared with service providers or partners where necessary to fulfill contractual obligations or comply with legal requirements.

5. Visa processing data

If visa assistance is provided by the Company, customers may be required to submit documentation including:

• Passport copies
• Residence permits
• Identification photos
• Supporting travel documents

These documents may be transmitted to visa authorities, embassies, or authorized visa processing partners.

The Company has no control over the processing, decision, or storage of personal data once it is submitted to government authorities.

6. Media and marketing consent

During group travel or pilgrimage tours organized by Marefat Pilgrimage, photos, videos, or audio recordings may be taken.

These recordings may include travelers participating in travel activities or group events.

By participating in these programs, customers grant permission for TGA Tour and Travel LLC to use such media for:

• Marketing materials
• Promotional campaigns
• Social media content
• Website content
• Advertising materials

Customers who do not wish to appear in media recordings must notify the Company in writing before the start of the travel program. Once marketing materials have been published, the Company may not be able to remove previously published content.

7. Data security

TGA Tour and Travel LLC takes reasonable administrative and technical measures to protect personal data from unauthorized access, disclosure, or misuse.

However, no system of data storage or transmission can be guaranteed to be completely secure.

8. Data incidents

In the event of a data security incident that affects personal information, TGA Tour and Travel LLC will take reasonable steps to investigate the incident and, where required by applicable law, notify affected individuals and relevant authorities.

9. Online data transmission

Customers acknowledge that information transmitted over the internet may not be completely secure.

While we take reasonable steps to protect personal data, we cannot guarantee the absolute security of information transmitted electronically.

Customers transmit personal data to the Company at their own risk.

10. Data retention

Personal data will be retained only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, including legal, accounting, and reporting requirements.

• Complete travel services
• Maintain booking records
• Comply with legal or regulatory obligations
• Resolve disputes
• Enforce contractual agreements

Once data is no longer required, the Company will take reasonable steps to delete or securely store such information.

11. International data transfers

Because TGA Tour and Travel LLC operates internationally, personal information may be transferred to and processed in countries outside the customer's country of residence, including the United States and other jurisdictions where travel suppliers or government authorities are located.

By using the Company's services, customers acknowledge and agree that their personal information may be transferred internationally as necessary to provide travel services.

All such transfers will be performed in accordance with applicable legal requirements where relevant.

Where required by law, appropriate safeguards such as contractual protections may be implemented for international data transfers.

Where required, data transfers will rely on appropriate legal mechanisms such as Standard Contractual Clauses.

12. European Union privacy rights (GDPR)

Customers located within the European Union may have the following rights:

• Right of access to personal data
• Right to correct inaccurate data
• Right to request deletion (right to be forgotten)
• Right to restrict processing
• Right to data portability
• Right to object to processing
• Right to lodge a complaint with a supervisory authority

Requests may be submitted to the Company for review and processing where legally applicable.

Requests regarding personal data may be submitted using the contact information provided in Section 16 of this Privacy Policy.

13. California privacy rights (CCPA)

Residents of California may have rights under the California Consumer Privacy Act (CCPA).

These rights may include:

• The right to know what personal information is collected
• The right to request deletion of personal information
• The right to request disclosure of how personal data is used
• Opt-out of the sale or sharing of personal information (where applicable)
• Not be discriminated against for exercising their privacy rights

Requests may be submitted to the Company and will be processed in accordance with applicable laws.

The Company does not sell personal information to third parties.

14. Third-party websites

The Company's website or communications may contain links to third-party websites.

The Company is not responsible for the privacy practices or policies of such third-party websites.

Customers are encouraged to review the privacy policies of those websites separately.

14.1 Cookies and website data

The Company's website may use cookies or similar technologies to improve user experience, analyze website usage, and support service functionality.

Customers may control cookie settings through their browser preferences.

Additional details may be provided in a separate Cookie Policy where applicable. See our Cookie Policy.

15. Policy changes

TGA Tour and Travel LLC reserves the right to update or modify this Privacy Policy at any time.

Updated policies may be published on the Company website or provided during booking processes.

Continued use of the Company's services constitutes acceptance of the updated Privacy Policy.

Continued use of the Company's services after any updates to this Privacy Policy constitutes acceptance of the revised terms.

16. Contact information

Questions regarding this Privacy Policy or requests related to personal data may be directed to:

TGA Tour and Travel LLC
Customer Service Department
Address: 404 NW 68th Ave, Plantation, FL 33317, USA
Email: info@tgatourandtravel.com
Phone: +1 (954) 330-8904

The Company will make reasonable efforts to respond to privacy-related inquiries in accordance with applicable privacy laws.