Book Now
Book Now
HomePrivacy policy

Privacy policy

Contact Us

Privacy Policy

Last Updated: October 2, 2025

At MorTours, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your data when you visit our website, book a tour, or interact with our services. By using our website or services, you consent to the practices described in this policy. We are fully compliant with the General Data Protection Regulation (GDPR) for users in the European Union and European Economic Area.

If you have any questions about this Privacy Policy, please contact us at [email protected], by phone at +(212) 664 096 436, or via our booking inquiry form on the website.

1. Information We Collect

We collect information to provide personalized travel experiences and improve our services. The types of information we may collect include:

Personal Information

  • Contact Details: Name, email address, phone number, and mailing address provided when you inquire about or book a tour.
  • Booking Information: Travel preferences, dates, group size, special requests (e.g., dietary needs or accessibility requirements), and payment details (processed securely via third-party providers).
  • Communication Data: Information you provide when contacting us, such as messages, feedback, or reviews.

Non-Personal Information

  • Usage Data: IP address, browser type, device information, pages visited, time spent on the site, and referral sources. This is collected automatically via cookies and analytics tools.
  • Location Data: Approximate location based on IP address, used to tailor destination recommendations (e.g., for Morocco-specific tours).

We do not collect sensitive personal information (e.g., racial or ethnic origin, political opinions, religious beliefs, or health data) unless it is voluntarily provided in the context of customizing your tour and with your explicit consent, as required under GDPR Article 9.

2. Legal Basis for Processing (GDPR Compliance)

Under GDPR, we process personal data based on the following legal grounds:

  • Consent (Article 6(1)(a)): When you provide explicit consent, such as for marketing emails or special category data (e.g., dietary requirements for tour planning).
  • Contractual Necessity (Article 6(1)(b)): To fulfill bookings, coordinate tours, and deliver services you request (e.g., arranging a camel trek in the Sahara).
  • Legitimate Interests (Article 6(1)(f)): For analytics, website improvement, and fraud prevention, provided your rights and freedoms are not overridden.
  • Legal Obligation (Article 6(1)(c)): To comply with laws, such as health and safety regulations for travel.

We will always inform you of the specific legal basis when collecting your data and ensure processing is lawful, transparent, and limited to what is necessary.

3. How We Use Your Information

We use the collected information to:

  • Process and fulfill tour bookings, including coordinating with guides, drivers, and local partners.
  • Communicate with you about your inquiries, bookings, updates, and promotional offers (with your consent, as per GDPR Article 7).
  • Personalize your experience by recommending destinations (e.g., Fes, Ouarzazate, or Tangier) based on your interests.
  • Improve our website and services through analytics and feedback.
  • Comply with legal obligations, such as health and safety requirements for travel.

We ensure data minimization (GDPR Article 5(1)(c)) by only collecting and processing data necessary for these purposes.

4. How We Share Your Information

We do not sell your personal information. We may share it in limited circumstances:

  • Service Providers: With trusted third parties who assist us, such as payment processors (e.g., Stripe or PayPal), email services (e.g., Mailchimp), or local tour operators in Morocco. These providers are contractually obligated to protect your data via Data Processing Agreements (DPAs) compliant with GDPR Article 28.
  • Legal Requirements: If required by law, such as in response to a court order or to protect our rights, safety, or property, in accordance with GDPR Article 6(1)(c).
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred with safeguards as per GDPR requirements.

We ensure all sharing complies with GDPR and other applicable data protection laws.

5. Cookies and Tracking Technologies

Our website uses cookies and similar technologies to enhance functionality and user experience:

  • Essential Cookies: Necessary for site operation (e.g., session management).
  • Analytics Cookies: To track site usage (e.g., via Google Analytics).
  • Marketing Cookies: To show relevant ads (if applicable).

We obtain your consent for non-essential cookies via a cookie banner, as required by GDPR Article 6(1)(a) and the ePrivacy Directive. You can manage cookie preferences through your browser settings or our cookie consent tool. Disabling cookies may limit site features.

6. Data Security

We implement reasonable administrative, technical, and physical safeguards to protect your information, including encryption for sensitive data and secure servers, in line with GDPR Article 32. However, no method of transmission over the internet is 100% secure, so we cannot guarantee absolute security.

7. Your Rights and Choices (GDPR Compliance)

As an EU/EEA resident, you have the following rights under GDPR:

  • Right to Access (Article 15): Request a copy of your personal data.
  • Right to Rectification (Article 16): Correct inaccurate or incomplete data.
  • Right to Erasure (Article 17): Request deletion of your data (subject to legal obligations).
  • Right to Restrict Processing (Article 18): Limit how we process your data.
  • Right to Data Portability (Article 20): Receive your data in a structured, machine-readable format.
  • Right to Object (Article 21): Object to processing based on legitimate interests or for direct marketing.
  • Right to Withdraw Consent (Article 7): Withdraw consent at any time, without affecting prior processing.
  • Right to Lodge a Complaint (Article 77): Contact a supervisory authority (e.g., in your EU/EEA country) if you believe we’ve violated GDPR.

To exercise these rights, contact us at [email protected] or +(212) 664 096 436. We will respond within one month, as required by GDPR, or sooner if feasible.

You can also unsubscribe from marketing emails via the link in any promotional message.

8. Data Retention

We retain personal data only as long as necessary for the purposes outlined (e.g., to fulfill bookings or comply with legal obligations), in line with GDPR Article 5(1)(e). For example:

  • Booking data is kept for the duration of the tour and up to 7 years for accounting/tax purposes.
  • Marketing data is retained until you withdraw consent.
  • Analytics data is anonymized or deleted after 26 months (Google Analytics default).

Upon request, we will delete your data unless we are required to retain it (e.g., for legal compliance).

9. Children’s Privacy

Our services are not directed to children under 16. We do not knowingly collect personal information from children. If we become aware of such data, we will delete it promptly, in compliance with GDPR Article 8.

10. International Data Transfers

As a Morocco-based company, we may transfer data to countries outside the EU/EEA (e.g., to the US for analytics or payment processing). We use appropriate safeguards, such as Standard Contractual Clauses (SCCs) or adequacy decisions, to ensure compliance with GDPR Articles 44-46.

11. Third-Party Links

Our website may contain links to external sites (e.g., TripAdvisor for reviews). We are not responsible for their privacy practices. Please review their policies.

12. Changes to This Privacy Policy

We may update this policy periodically. Changes will be posted here with the “Last Updated” date. For significant changes, we will notify EU/EEA users via email or website notice, as required by GDPR Article 13. Continued use of our services after changes constitutes acceptance.

13. Contact Us

For privacy concerns or to exercise your GDPR rights:

You may also contact our Data Protection Officer (DPO) at [email protected] for GDPR-related inquiries.

Thank you for trusting MorTours with your travel adventures. We value your privacy as much as your unforgettable memories in Morocco.

Join our team

Contact

[email protected]

+(212) 664 096 436

Marrakech Morocco

© Mortours right reserved 2025