Privacy Policy

Information We Collect

At BlueWave Adventures, we collect information to provide you with exceptional outdoor adventure experiences. We gather personal information when you book our services, contact us for inquiries, or interact with our website. This includes your name, email address, phone number, and payment information necessary for processing reservations.

We also collect technical information through cookies and similar technologies, including your IP address, browser type, device information, and website usage patterns. This helps us improve our website functionality, understand user preferences, and provide personalized content that enhances your adventure planning experience.

When you participate in our outdoor activities, we may collect additional information related to your fitness level, medical conditions, and emergency contacts to ensure your safety during surfing lessons, kayaking tours, and coastal hiking trips.

How We Use Your Information

Your personal information is used primarily to deliver our adventure services effectively and safely. We process your data to confirm bookings, send important updates about weather conditions or schedule changes, and provide pre-activity briefings that ensure you're properly prepared for your chosen adventure.

We use your contact information to send newsletters about new adventure packages, seasonal promotions, and safety tips for outdoor activities. You can unsubscribe from marketing communications at any time while continuing to receive essential service-related messages.

Technical data helps us analyze website performance, identify popular services, and optimize our booking system for better user experience. We may also use aggregated, anonymized data for research purposes to improve our adventure programs and develop new offerings.

In emergency situations during our guided activities, we may need to share your emergency contact information with local authorities or medical services to ensure your safety and well-being.

Data Protection and Security

We implement robust security measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction. Our website uses SSL encryption for all data transmissions, ensuring that your booking information and payment details remain secure during online transactions.

Payment information is processed through PCI DSS compliant payment processors, and we do not store complete credit card details on our servers. Our staff receives regular training on data protection protocols and privacy best practices to maintain the highest standards of information security.

We regularly review and update our security measures to address emerging threats and comply with current data protection regulations. Access to personal information is restricted to authorized personnel who need it to provide our services or support your adventure bookings.

In the unlikely event of a data breach, we will notify affected individuals and relevant authorities within the timeframes required by applicable privacy laws, providing clear information about the incident and steps taken to address it.

Sharing and Disclosure

BlueWave Adventures does not sell, trade, or rent your personal information to third parties for marketing purposes. We only share your information when necessary to provide our services, comply with legal obligations, or protect the safety of our clients and staff.

We work with trusted service providers, including payment processors, booking software providers, and insurance companies, who may have access to your information solely for the purpose of supporting our adventure services. These partners are contractually bound to maintain confidentiality and use your data only as instructed.

We may share anonymized, aggregated data with tourism boards, conservation organizations, or research institutions to support marine wildlife protection efforts and sustainable tourism development in Byron Bay, without revealing any personally identifiable information.

In legal situations, we may disclose personal information if required by law, court order, or government regulation, or when we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

Your Privacy Rights

You have significant control over your personal information and how we use it. You can access, update, or correct your personal details at any time by contacting our customer service team or logging into your account if you have created one on our website.

You have the right to request deletion of your personal information, subject to certain exceptions such as legal retention requirements or legitimate business needs related to completed bookings. You can also request a copy of all personal information we hold about you in a portable format.

You can opt out of marketing communications while continuing to receive essential booking confirmations and safety updates. You can also request restrictions on how we process your information or object to certain uses of your data.

If you have concerns about how we handle your personal information, you can file a complaint with relevant privacy authorities. We are committed to working with you to resolve any privacy concerns promptly and transparently.

Cookies and Tracking Technologies

Our website uses cookies and similar technologies to enhance your browsing experience and provide personalized content. Essential cookies are necessary for basic website functionality, including maintaining your booking session and remembering your preferences during the reservation process.

We use analytics cookies to understand how visitors interact with our website, which pages are most popular, and how we can improve the user experience. This information helps us optimize our content and make it easier for you to find information about our adventure offerings.

Marketing cookies help us display relevant advertisements and track the effectiveness of our promotional campaigns. You can control cookie settings through your browser preferences or by using the cookie consent banner that appears when you first visit our website.

Third-party services integrated into our website, such as Google Maps for location services and social media plugins, may place their own cookies. Please refer to their respective privacy policies for information about their data practices.

Data Retention

We retain your personal information only as long as necessary to fulfill the purposes for which it was collected and to comply with legal, regulatory, and business requirements. Booking information is typically retained for seven years to meet tax and business record obligations.

Marketing communication preferences are maintained until you unsubscribe or request deletion. Technical data and website analytics are usually retained for up to 26 months to provide meaningful insights for service improvement.

Safety-related information, including medical conditions and emergency contacts, is securely stored only for the duration of your adventure activities and a brief period afterward for insurance and liability purposes, then permanently deleted unless legal requirements mandate longer retention.

When retention periods expire, we securely delete or anonymize your personal information using industry-standard data destruction methods to ensure it cannot be recovered or reconstructed.

International Data Transfers

As an Australian-based adventure tourism company, we primarily store and process your personal information within Australia, which provides strong data protection standards. However, some of our service providers may be located overseas, particularly for cloud hosting and payment processing services.

When we transfer personal information internationally, we ensure appropriate safeguards are in place, including contractual protections that require overseas recipients to maintain privacy standards equivalent to Australian privacy laws.

We work only with reputable international service providers who demonstrate strong privacy and security practices. Any data transfers comply with Australian Privacy Principles and applicable international data protection requirements.

Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or service offerings. When we make significant changes, we will notify you through email if you have an account with us, or through a prominent notice on our website.

We encourage you to review this Privacy Policy regularly to stay informed about how we protect your personal information. The "Last Updated" date at the top of this policy indicates when the most recent changes were made.

Continued use of our services after policy updates constitutes acceptance of the revised terms. If you disagree with changes, you may contact us to discuss concerns or request account deletion where applicable.

Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please don't hesitate to contact us. Our privacy team is committed to addressing your inquiries promptly and transparently.

You can also reach out to us during our regular business hours (7:00 AM - 7:00 PM daily) for immediate assistance with urgent privacy concerns or to discuss your data protection rights in detail.