OceanAir Travels

Privacy policy

How we handle your data.

Our operations are compliant with relevant data protection laws, ensuring confidentiality, lawful processing, and data security.

Last updated · Jul 1, 2026

1. Preamble

This policy governs OceanAir Travels — also known as OceanAir Travel and Tourism LLC ("OceanAir") — registered in the Dubai Court and Department of Economy and Tourism under license number 647907, based in Dubai, UAE. It outlines how we collect, use, and protect personal data obtained through contracts and website usage.

2. Data collection

OceanAir collects personal data through two channels: direct input from customers (including WhatsApp, Chat, and other Meta platforms), and interactions with our website and booking systems.

Types of data collected include name, email, phone number (during contract initiation or fulfilment), and data from website visits such as IP address and browser information. Additional data may be collected from booking system usage — device information and location data — to personalise and improve our services.

3. Purposes and legal bases

We process personal data on the following legal bases: booking, payment, fulfilment and customer service for a tour you have booked — performance of a contract; tax and accounting records — compliance with a legal obligation; fraud prevention, site security and error monitoring — our legitimate interests in running the service safely; support and CRM follow-up — our legitimate interest in customer relationship management (unless it is marketing, which requires consent); and analytics cookies — your consent in the EU, EEA and UK, and legitimate interest / notice with an opt-out in other regions.

Any future marketing emails or advertising/retargeting would be based on your consent, and we would not enable them until a separate marketing consent option is live.

We use cookies and similar technologies as detailed in our Cookie Policy (oceanairtravels.com/support/cookie-policy). They support website functionality, prevent misuse, and — where you consent — help us understand and improve how the site is used.

Social media plugins from Facebook, LinkedIn and similar platforms may transmit data to those servers subject to their own privacy policies.

4. WhatsApp API integration

Data collected through WhatsApp and other Meta platforms is managed in compliance with Meta’s policies.

Personal data from WhatsApp interactions may be shared with third parties (such as IT service providers or contractors) solely to manage customer interactions and improve service delivery.

5. International data transfers

International data transfers (including data from WhatsApp) comply with relevant data protection regulations — GDPR for EU clients, UAE data protection laws otherwise.

Transfers outside the EU/EEA are based on adequacy decisions, standard contractual clauses, or other legally recognised mechanisms.

6. Data security

We implement encryption, access controls, and regular security audits to protect personal data against unauthorised access, use, or disclosure.

7. Cookies and tracking

Essential cookies (security, your session, your cart, and your saved cookie choice) are always active because the site cannot function without them. Analytics cookies, which help us understand how the site is used, run only with your consent.

In the EU, EEA and UK we ask for your consent before any analytics cookies are set. In other regions analytics run by default and you can opt out at any time. You can review or change your choice whenever you like via the “Cookie settings” link in the footer of every page.

Full details — including the specific tools we use and how long cookies last — are in our Cookie Policy (oceanairtravels.com/support/cookie-policy).

8. Data retention

We keep personal data only for as long as it is needed for the purpose it was collected for, or for as long as we are legally required to keep it. When data is no longer needed, it is deleted or anonymised.

Booking, invoice, payment and tax-related records: retained for 7 years from the end of the relevant tax/accounting period, to meet UAE tax and accounting obligations.

Customer contact records: retained for 7 years where tied to a booking or invoice, otherwise up to 3 years from the last interaction.

Support and contact-form inquiries: retained for up to 3 years after the inquiry is closed, unless a longer period is required.

Analytics data: retained for up to 12 months.

Cookie consent records: retained for up to 5 years to demonstrate compliance, or longer where needed to establish or defend a legal claim.

9. Children’s data

Our services are not directed to children as website users. Where a booking includes a child, the adult making the booking may provide limited child guest information needed to arrange the tour — for safety, ticketing, access, or legal requirements. The adult confirms they have the authority to provide that information.

10. EU representative

Where required under Article 27 GDPR for our processing of EU residents’ data, OceanAir will appoint an EU representative and publish their name and EU address here. [EU representative: to be appointed — pending legal confirmation.]

11. Your rights

Depending on where you live, you have rights over your personal data, including: the right to access the data we hold about you; to correct inaccurate data; to have it deleted; to restrict or object to processing; to data portability; and, where processing is based on consent, to withdraw that consent at any time.

Where you have consented to analytics cookies, you can withdraw that consent at any time using the “Cookie settings” link in the footer — withdrawing is as easy as giving consent.

If you are in the EU/EEA or UK, you may lodge a complaint with your local data protection supervisory authority — including the authority in the country where you live, work, or where you believe an infringement occurred. For Croatia, this is the Croatian Personal Data Protection Agency (AZOP). To exercise any of these rights, contact us using the details below; requests related to WhatsApp data can be made through the same channels.

12. Updates and notifications

OceanAir will notify users of any material changes to this policy, particularly concerning data handling practices, cookies, or WhatsApp API integration. The “last updated” date above always reflects the current version.

13. Contact

For questions or concerns regarding privacy practices or data protection, or to exercise any of your rights, contact us at support@oceanairtravels.com or call +971 4 584 0404.

Privacy policy · OceanAir