Machu Picchu is a historic Inca fortress situated in the Andes Mountains of Peru. It stands as one of the world’s most renowned archaeological complexes and is frequently known as the “Inca Empire’s Hidden City.” This remarkable structure was constructed in the 15th century at the peak of the Inca Empire’s power and is thought to have functioned as either a royal residence or a spiritual sanctuary for Inca monarchs.
The Inca Trail is a famous trekking route in Peru that leads to the ancient Inca city of Machu Picchu. It’s renowned for its stunning natural beauty, historical significance, and the sense of adventure it offers to travelers.
Cusco, also known as Cuzco or Qosqo in Quechua, is a city located in southeastern Peru. It is famous for being the ancient capital of the Inca Empire and for its impressive archaeological and architectural heritage..
PERSONAL DATA PROTECTION AND PROCESSING POLICY
PURPOSE OF THIS POLICY
The objective of this policy is to publicize the way in which COSMO EXPEDITIONS protects and treats the personal data of customers, passengers, suppliers, tour operators, travel agencies and collaborators, from the moment they are collected through the different channels, whether physical or digital, for the duly communicated purposes.
COSMO EXPEDITIONS is a company whose purpose is to provide services related to individual and group travel, by air, sea or land, the organization of trips or excursions, accommodation and any other activity directly related to tourism. To do this, it collects, uses, manages, transfers, stores and processes information, which may be associated with data belonging to natural persons in the development of its activities. Such as: name, ID, telephone number, email address, country of residence, among others, through various physical and digital formats.
COSMO EXPEDITIONS, in accordance with Peruvian Law No. 29733 -Personal Data Protection Law- and its Regulation No. 003-2013-JUS; as well as the General Data Protection Regulation GDPR (EU 2016/679), undertakes to guarantee and adopt information security measures through the best international practices, taking into account the confidentiality, integrity and availability of the personal data provided. .
DEFINITIONS
such as the collection, registration, organization, modification, consultation, use, dissemination or any other form of access, reconciliation or combination, limitation, erasure or destruction of personal data.
COSMO EXPEDITIONS processes user data:
This policy applies to personal data relating to customers, passengers, suppliers, tour operators, travel agencies and employees, provided by them, in use of their freedom, voluntarily. aware. The information collected and stored includes the basic data entered in the registration forms, contact forms or the like; such as, for example, name, identity document, passport, gender, age, telephone number, email address, country of residence, among others, the data collected through the different channels managed by the company, necessary for the provision of tourist services of COSMO EXPEDITIONS. In any case, users will be able to see which data is essential for the correct provision of the service and which are of an accessory nature before sending their personal data.
The user is solely responsible for the veracity and accuracy of the data provided. Only those over 18 years of age and/or those with sufficient legal capacity can be users. Likewise, the user is solely responsible for the data provided by third parties, as well as for ensuring that they have been informed of this privacy policy and have obtained their express consent.
GUIDING PRINCIPLES
COSMO EXPEDITIONS will take into account the following principles in the process of processing personal data.
COSMO EXPEDITIONS will use the personal data provided by users for the following purposes
passengers
Workers and collaborators:
Tour operators and suppliers:
The personal data you provide will be stored in the databases described in Annex 2 of this document.
The owner of personal data has the following rights:
DATA PROCESSING CONDITIONS
In order for COSMO EXPEDITIONS to carry out any personal data processing action, the prior and informed authorization of the owner is required, which must be obtained by any means that can be consulted later. These mechanisms may be predetermined by technical means that facilitate the automated manifestation of the holder or may be written or oral.
COSMO EXPEDITIONS will adopt the necessary procedures to request, at the latest at the time of data collection, the consent of the Holder for the treatment of the same and will inform about the personal data that will be collected, as well as about all the specific purposes of the data. treatment for which consent is obtained.
Personal data found in publicly accessible sources may be processed by COSMO EXPEDITIONS to the extent that they are public data by nature. In the event that there are substantial changes in the content of the data processing policies of COSMO EXPEDITIONS in relation to the identification of the person in charge and the purpose of the processing of personal data, which affect the content of the authorization, COSMO EXPEDITIONS will communicate these changes to the holders, before or at the latest at the time of the implementation of the new policies, and will also obtain a new authorization from the holder when the change refers to the purpose of the treatment. For the communication of changes and authorization, technical means may be used to facilitate this activity.
The information requested by the owner will be provided by COSMO EXPEDITIONS in the same way in which the request was made.
COSMO EXPEDITIONS, At the time of requesting authorization from the owner, it clearly and expressly informs you of the following:
Holders may apply at any time to COSMO EXPEDITIONS. the deletion of your personal data and / or revoke the authorization granted for the treatment of the same, by submitting a request, in accordance with the provisions of Law 29733 of 2011 and the Regulation of DS Nº 003-2013-JUS of 2013.
The request for deletion of data or the revocation of the authorization will not be processed when the owner has a contractual obligation to remain in the COSMO EXPEDITIONS database.
The information about the personal data processed by COSMO EXPEDITIONS can be provided to the following people:
SECURITY OF PERSONAL DATA
COSMO EXPEDITIONS complies with the personal data protection measures required by law and has adopted the reasonably required measures according to current technical knowledge and good information custody and management practices to prevent loss, misuse, alteration, illegitimate intrusion and theft of personal data provided by users.
PROCEDURES
The owner or his assignees have the right to present to COSMO EXPEDITIONS queries and/or claims, after verifying your identity, by writing to the following address at any time, withdraw your consent to the processing of personal data and/or you may exercise your rights of access, information, rectification, opposition, cancellation, limitation, forgetting, portability and not being subject to individualized decisions, by writing to COSMO EXPEDITIONS “PERSONAL DATA” to the following addresses
COSMO EXPEDITIONS will respond to the request and/or claim in the same way in which it was made:
Inquiries (Access / Information)
Those responsible for the treatment or their successors in title may consult the personal information of the person responsible for the treatment contained in the COSMO EXPEDITIONS database, which will provide the applicant with all the information contained in its databases, related to the identification of the person responsible for the treatment.
The owner may consult their personal data free of charge when there are substantial changes in the data processing policies of COSMO EXPEDITIONS
All requests will be processed by the same means that were submitted within a period of 5 working days from their submission. To exercise this right, the interested party or their assignees must submit the access form, which is included in the annex to this policy.
Claims (requests / petitions)
The Holder or his successors in title who consider that the information contained in a database must be rectified, canceled or opposed, or when they notice the alleged violation of any of the duties contained in Law 29733 of 2011, may submit a request to the Holder of the Personal Data Bank or the person in charge of processing COSMO EXPEDITIONS In order to comply with these rights, the Owner of the data or their assignees must submit the respective form, which is found in the annex to this policy.
If the application does not meet the established requirements, the applicant is obliged, within five (5) days from receipt of the application, to correct the defects. If this period elapses without the correction being made, the request will be deemed not submitted.
In the event that the information provided in the application is insufficient or erroneous in a way that does not allow its attention, COSMO EXPEDITIONS may require, within a period of seven (7) days from receipt of the application, additional documentation from the holder of personal data to respond to it.
Within ten (10) days after receipt of the request, from the day following its receipt, the owner of the personal data must attach the additional documents that they consider pertinent to substantiate their request. Otherwise, the application will be considered not submitted.
The maximum terms to respond to claims, in accordance with the provisions of the law, are as follows:
With the exception of the term established for the exercise of the right to information, the terms corresponding to the response or attention of the other rights may be extended only once, and for a maximum of an equal period, provided that the circumstances justify it. The justification for the extension of the term must be communicated to the owner of the personal data within the term to be extended.
procedure requirement
The interested party or the assignee may only file a claim with the National Authority for the Protection of Personal Data after having exhausted the consultation or claim procedure with COSMO EXPEDITIONS
COSMO EXPEDITIONS FUNCTIONS IN DATA PROCESSING
OBLIGATIONS OF THE RESPONSIBLE FOR DATA PROCESSING
Those responsible for data processing are required to comply with the following obligations, without prejudice to the other provisions of the law and other provisions that regulate their activity:
SECURITY MEASURES
COSMO EXPEDITIONS adopts all reasonable precautions and measures of a technical, administrative and organizational nature to guarantee the security of the personal data of the Holders, mainly those aimed at preventing its alteration, loss and unauthorized treatment or access.
The application of security measures aims to guarantee the conservation, confidentiality, integrity and availability of the data.
COSMO EXPEDITIONS’s security guidelines are based on COSMO EXPEDITIONS’s information security policies, which have been prepared in accordance with the best practices and existing security standards and in compliance with current regulations.
These policies are strictly respected by direct and indirect employees who work at COSMO EXPEDITIONS.
DATA RETENTION
COSMO EXPEDITIONS will keep the personal data of the users for different periods depending on the purpose of the treatment, thus the data will be kept while a contractual relationship for the supply of products and services between COSMO EXPEDITIONS and the users is in force and/or while the users do not request the cancellation of personal data to COSMO EXPEDITIONS. Likewise, users understand and accept that some personal data must be kept by COSMO EXPEDITIONS by virtue of the legal provisions and according to the terms established by law.
CHANGES IN POLICY
COSMO EXPEDITIONS may modify and update this policy based on new developments or legislative and jurisprudential requirements and/or the needs of the company.
Therefore, it is recommended that users consult this policy regularly and/or each time they access the company’s website. COSMO EXPEDITIONS