Privacy Policy – TREKZ Travel Solutions GmbH

Effective: October 2025

1. Controller

TREKZ Travel Solutions GmbH
Bahnhofstr. 2a, 82296 Schöngeising, Germany
E-mail: privacy@trekz.io | Website: www.trekz.io

2. Principles of Data Processing

We process personal data solely in accordance with the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG).
Processing purposes include:

●      performance and fulfilment of travel and event contracts,

●      communication with customers, creators, and partners,

●      fulfilment of legal obligations,

●      direct marketing of similar in-house services where permitted by law.

3. Categories of Data Processed

●      Master data: name, address, contact details, date of birth

●      Contract data: booking, payment and travel information

●      Communication data: emails, contact forms, chat messages

●      Marketing data: newsletter subscriptions, consent records, tracking data

●      Usage data: IP address, device information, cookies

4. Legal Basis

Processing is based on:

●      Art. 6 (1)(b) GDPR – performance of a contract or pre-contractual measures

●      Art. 6 (1)(a) GDPR – consent (e.g. newsletter, cookies)

●      Art. 6 (1)(c) GDPR – legal obligations

●      Art. 6 (1)(f) GDPR – legitimate interests (IT security, customer communication, marketing)

5. Data Recipients

Data are shared only where necessary for the stated purposes or where required by law.
Possible recipients:

●      service providers (hotels, DMCs, airlines, event partners)

●      technical providers (hosting, CRM, payment, email, analytics)

●      insurance companies, banks, public authorities, tax advisors

Transfers to non-EU countries occur only where appropriate safeguards are in place (e.g. EU Standard Contractual Clauses).

6. Cookies & Tracking

Our website uses cookies and similar technologies for:

●      ensuring technical functionality of booking processes,

●      measuring reach and website performance,

●      enabling marketing and analytics (e.g. Google Analytics 4, Meta Pixel).

Processing is based on your consent (Art. 6 (1)(a) GDPR), which can be withdrawn at any time via the cookie-consent tool.
Essential cookies are used on the basis of legitimate interests (Art. 6 (1)(f) GDPR).

7. Storage Period

Data are stored only as long as necessary for the stated purposes or for legal retention periods. Afterwards, the data will be deleted or anonymised.

8. Rights of Data Subjects

You have the following rights under the GDPR:

●      right of access (Art. 15)

●      rectification (Art. 16)

●      erasure (Art. 17)

●      restriction (Art. 18)

●      data portability (Art. 20)

●      objection (Art. 21) – especially against direct marketing

●      withdrawal of consent (Art. 7 (3))

To exercise these rights, contact privacy@trekz.io.
You may also lodge a complaint with a supervisory authority (e.g. Bavarian Data Protection Authority).

9. Data Security

We apply technical and organisational security measures to protect personal data against loss, misuse or unauthorised access, continuously reviewed in line with current technology.

10. Changes to this Policy

We reserve the right to amend this policy to reflect legal or operational changes. The version published on our website applies.