Last updated: January 2025
We collect personal data necessary to provide travel management services: traveller names, passport details, visa information, travel preferences, emergency contact information, and payment data. We also collect contact details submitted through our website enquiry forms.
Personal data is used to fulfil travel bookings, manage duty-of-care obligations, produce programme reporting, and comply with regulatory requirements. We do not sell personal data to third parties under any circumstances.
We share traveller data with airlines, hotels, and ground transport providers solely for the purpose of completing bookings. We may share data with government authorities where required by law, such as immigration and customs.
Traveller data is retained for the duration of the client engagement plus seven years to meet audit and regulatory requirements. Enquiry data submitted through our website is retained for two years.
All personal data is stored on secure, encrypted systems. We maintain strict access controls and conduct regular security reviews. In the event of a data breach, we will notify affected individuals and relevant authorities as required by law.
Travellers and contacts have the right to access, correct, and request deletion of their personal data. Requests should be directed to data@yarntravels.com. We will respond within 30 days.
Our website uses minimal cookies for basic functionality. We do not use tracking cookies or third-party advertising cookies.
For any data protection enquiries, contact us at data@yarntravels.com or write to Yarn Travels, Kathmandu, Nepal.