Safaryar Holidays

Services

HotelsPremium PartnersMICETours
Technology

Company

AboutContact
Back OfficeAgency Portal

Privacy Policy

Last updated: March 23, 2026

1. Introduction

Safaryar Holidays (operating under Sindibad Turizm Ticaret Anonim Sirketi, hereinafter referred to as "we", "us", or "our") is committed to protecting the privacy and security of your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website at https://safaryarholidays.com, use our B2B booking platform (Agency Portal), or interact with our services.

We are headquartered at Cumhuriyet, Halaskargazi Cad. Selamet Apt No:93/9, Sisli, Istanbul 34371, Turkey and operate in compliance with the Turkish Personal Data Protection Law No. 6698 ("KVKK") and the European Union General Data Protection Regulation ("GDPR") where applicable.

2. Information We Collect

2.1 Information You Provide Directly

  • Account Registration: When you register as a partner agency, we collect your organization name, contact email, phone number, physical address, tax identification number, and authorized representative details.
  • Booking Data: Guest names, surnames, nationalities, passport numbers, dates of birth, and special requests submitted through hotel reservations.
  • Payment Information: Bank transfer details, transaction references, and billing information. Credit card payments are processed securely through Stripe — we do not store card numbers on our servers.
  • Communications: Emails, support requests, and any other correspondence you send us.

2.2 Information Collected Automatically

  • Usage Data: IP address, browser type, operating system, referring URLs, pages visited, time spent on pages, and clickstream data.
  • Device Information: Device type, screen resolution, language preferences, and unique device identifiers.
  • Cookies and Similar Technologies: See our Cookie Policy for detailed information.

2.3 Information from Third Parties

  • Hotel Suppliers: Booking confirmation details, cancellation information, and rate updates from our contracted hotel partners and distribution systems (e.g., Hotelbeds).
  • Payment Processors: Transaction status and verification data from Stripe and banking institutions.

3. How We Use Your Information

We use the collected information for the following purposes:

  • Service Delivery: Processing hotel reservations, managing bookings, generating vouchers and invoices, and providing customer support.
  • Account Management: Maintaining your agency account, managing balance and transactions, and providing access to the booking platform.
  • Communication: Sending booking confirmations, payment notifications, rate updates, and service-related announcements.
  • Compliance: Meeting legal, regulatory, and tax obligations, including guest registration requirements under Turkish law.
  • Improvement: Analyzing usage patterns to improve our platform, develop new features, and enhance user experience.
  • Security: Detecting, preventing, and responding to fraud, unauthorized access, and other security incidents.

4. Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Contractual Necessity: Processing required to fulfill our B2B service agreements and hotel booking contracts.
  • Legal Obligation: Compliance with Turkish commercial law, tax regulations, and guest registration requirements.
  • Legitimate Interest: Improving our services, ensuring platform security, and conducting business analytics.
  • Consent: Where explicitly obtained for marketing communications or optional data processing activities.

5. Data Sharing and Disclosure

We do not sell your personal data. We may share information with the following categories of recipients:

  • Hotels and Suppliers: Guest information necessary to fulfill reservations, including names, nationalities, and special requests.
  • Payment Processors: Stripe Inc. and banking partners for payment processing and verification.
  • Technology Providers: Cloud hosting (Vercel, AWS), email delivery services, and analytics tools that process data on our behalf under strict confidentiality agreements.
  • Legal and Regulatory Authorities: When required by law, court order, or governmental regulation.

6. International Data Transfers

As a B2B platform serving agencies worldwide, your data may be transferred to and processed in countries outside Turkey and the European Economic Area. We ensure appropriate safeguards are in place through Standard Contractual Clauses (SCCs), data processing agreements, and compliance with applicable data protection frameworks.

7. Data Retention

  • Account Data: Retained for the duration of your active partnership plus 5 years for legal and tax compliance.
  • Booking Records: Retained for 10 years as required by Turkish commercial and tax law.
  • Payment Records: Retained for 10 years per financial regulations.
  • Usage Logs: Retained for up to 2 years for security and analytics purposes, then anonymized or deleted.

8. Data Security

We implement industry-standard security measures to protect your personal data, including:

  • TLS/SSL encryption for all data in transit
  • Encrypted data storage at rest
  • Role-based access controls with multi-factor authentication
  • Regular security audits and vulnerability assessments
  • IP whitelisting for API access
  • PCI DSS compliance through Stripe for payment card processing

9. Your Rights

Under KVKK and GDPR (where applicable), you have the following rights:

  • Access: Request a copy of the personal data we hold about you.
  • Rectification: Request correction of inaccurate or incomplete data.
  • Erasure: Request deletion of your personal data, subject to legal retention requirements.
  • Restriction: Request limitation of processing in certain circumstances.
  • Data Portability: Receive your data in a structured, machine-readable format.
  • Objection: Object to processing based on legitimate interest or for direct marketing purposes.
  • Withdraw Consent: Withdraw previously given consent at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, contact us at info@safaryarholidays.com. We will respond within 30 days.

10. Children's Privacy

Our services are designed for business-to-business use and are not directed at individuals under 18 years of age. We do not knowingly collect personal data from minors except as part of hotel guest information provided by partner agencies for booking purposes.

11. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of those sites. We encourage you to read the privacy policies of any linked website you visit.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email to registered partner agencies or through a prominent notice on our website. Your continued use of our services after changes take effect constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data protection rights, please contact us:

  • Company: Sindibad Turizm Ticaret Anonim Sirketi
  • Email: info@safaryarholidays.com
  • Address: Cumhuriyet, Halaskargazi Cad. Selamet Apt No:93/9, Sisli, Istanbul 34371, Turkey