Protecting Your Information at JEX TRAVEL AND TOURS USA LLC
1. INTRODUCTION
JEX Travel and Tours USA LLC (“JEX Travel,” “Company,” “we,” “us,” or “our”) is committed to protecting personal data in accordance with applicable U.S. and international privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA).
This Policy explains how we collect, use, disclose, and safeguard your personal information.
2. DATA CONTROLLER
JEX Travel and Tours USA LLC is the Data Controller for purposes of GDPR.
For EU/UK users, you may contact us at:
bookings@jextravel.com
(If required, an EU/UK representative can be designated upon expansion of operations.)
3. PERSONAL DATA WE COLLECT
We collect the following categories of personal data:
A. Identifiers
Name, email, phone number, address
Passport and ID details
B. Commercial Information
Booking history
Travel preferences
C. Financial Information
Payment details (processed via third-party processors)
D. Internet/Technical Data
IP address, device data, browsing activity
E. Sensitive Data (Limited Use)
Health or dietary needs (only where required for travel services)
4. PURPOSES OF PROCESSING
We process personal data to:
Provide and manage travel services
Process bookings and payments
Communicate with clients
Comply with legal obligations
Improve services and user experience
5. LEGAL BASES (GDPR)
Under GDPR, we rely on the following lawful bases:
Contractual Necessity – to fulfill bookings
Legal Obligation – regulatory compliance
Legitimate Interests – business operations and service improvement
Consent – marketing and optional services
6. YOUR RIGHTS (GDPR – EU/UK USERS)
If you are located in the EU/EEA or UK, you have the right to:
Access your personal data
Rectify inaccurate data
Erase data (“Right to be Forgotten”)
Restrict Processing
Data Portability
Object to Processing
Withdraw Consent at any time
You also have the right to lodge a complaint with your local data protection authority.
7. CALIFORNIA PRIVACY RIGHTS (CCPA/CPRA)
If you are a California resident, you have the following rights:
7.1 Right to Know
Request disclosure of:
Categories of personal data collected
Sources of data
Purpose of collection
Third parties with whom data is shared
7.2 Right to Delete
Request deletion of personal data (subject to legal exceptions).
7.3 Right to Correct
Request correction of inaccurate personal information.
7.4 Right to Opt-Out of Sale/Sharing
JEX Travel does not sell personal data.
If this changes, a “Do Not Sell or Share My Personal Information” link will be provided.
7.5 Right to Limit Use of Sensitive Personal Information
Sensitive data is used only as necessary for travel services.
7.6 Non-Discrimination
You will not be discriminated against for exercising your rights.
8. HOW TO EXERCISE YOUR RIGHTS
To submit a request, contact:
bookings@jextravel.com
We will:
Verify your identity
Respond within 30 days (GDPR) or 45 days (CCPA/CPRA)
9. DATA SHARING & DISCLOSURE
We may share personal data with:
Airlines, hotels, and travel suppliers
Payment processors
IT and hosting providers
Government authorities where required
We do not sell personal data.
10. INTERNATIONAL DATA TRANSFERS (GDPR)
Personal data may be transferred outside the EU/EEA (e.g., to the United States or Ghana).
We implement safeguards such as:
Standard Contractual Clauses (SCCs)
Secure processing agreements with partners
11. DATA RETENTION
We retain personal data for:
Service delivery
Legal and tax compliance
Dispute resolution
Typical retention: 3–7 years, unless longer retention is required by law.
12. DATA SECURITY
We implement:
Encryption and secure systems
Access control restrictions
PCI-compliant payment processing
13. COOKIES & TRACKING
We use cookies for:
Website functionality
Analytics
Marketing (with consent where required)
EU users will be presented with a cookie consent banner.
14. CHILDREN’S DATA
We do not knowingly collect personal data from children under 13 without parental consent.
15. DATA BREACH NOTIFICATION
In the event of a data breach:
We will notify affected individuals where legally required
We will comply with GDPR and U.S. breach notification laws
16. AUTOMATED DECISION-MAKING
JEX Travel does not use automated decision-making or profiling that produces legal or significant effects on users.
17. THIRD-PARTY LINKS
We are not responsible for the privacy practices of third-party websites linked on our platform.
18. UPDATES TO THIS POLICY
We may update this Policy periodically. Updates will be posted with a revised “Last Updated” date.
19. CONTACT INFORMATION
JEX Travel and Tours USA LLC
910 S Main St
Stillwater OK 74074
+1 (572) 271-5199
