Privacy Policy
WAI-LEGAL-PRIV-v1-20260316 | Effective March 2026
522 W Riverside Ave, Suite 7220 | Spokane, WA 99201 | walkingadventures.com
1. Overview
Walking Adventures International takes privacy seriously. This policy explains plainly what information we collect, why we collect it, how we use it, and your rights regarding your data. We do not sell your personal information.
Walking Adventures International, Inc. (“WAI,” “we,” or “us”) is a Washington State corporation operating walking tours domestically and internationally. This Privacy Policy applies to:
- Our website at walkingadventures.com and any WAI booking platform;
- Tour registration, inquiry, and booking processes;
- Email communications and marketing (including through Brevo);
- Any mobile applications or online forms operated by WAI.
By using our website, submitting a tour inquiry, or registering for a tour, you agree to the collection and use of your information as described in this Policy.
2. Who We Are
| Legal name | Walking Adventures International, Inc. |
| Registered address | 522 W Riverside Ave, Suite 7220, Spokane, WA 99201, USA |
| Website | walkingadventures.com |
| Phone | 360.260.9393 |
| fun@walkingadventures.com | |
| Data controller role | WAI is the data controller for all personal information collected through its website and booking processes |
3. What Information We Collect
3.1 Information You Provide Directly
When you interact with WAI — by submitting an inquiry, registering for a tour, signing up for email updates, or contacting us — we collect:
- Identity data: full name, date of birth;
- Contact data: postal address, email address, phone number;
- Passport and travel document data: passport number, nationality, expiry date (collected at registration for international tours);
- Financial data: payment card details (processed through our payment processor; WAI does not store full card numbers);
- Health and medical data: conditions, medications, dietary restrictions, mobility information, and other health disclosures provided on our Medical Disclosure Form (see Section 6);
- Emergency contact information: name, relationship, and contact details;
- Tour preferences and special requests;
- Communications you send us by email, phone, or contact form.
3.2 Information Collected Automatically
When you visit our website, we and our third-party service providers may collect:
- Device and browser data: IP address, browser type and version, operating system, device identifiers;
- Usage data: pages visited, time on page, links clicked, referring URL;
- Cookie data: as described in Section 10 below.
3.3 Information from Third Parties
We may receive information about you from:
- Referral partners, travel agents, or affinity groups (name and contact details only);
- Payment processors confirming transaction status;
- Emergency services or medical providers if a medical incident occurs on tour.
4. How We Use Your Information
| Purpose | Data Used | Legal Basis (GDPR) |
|---|---|---|
| Booking and tour management | Identity, contact, passport, payment, health, emergency contact | Contract performance |
| Processing payments | Financial data | Contract performance |
| Safety planning and emergency response | Health data, emergency contact, identity | Vital interests; legitimate interests |
| Health data for on-tour management | Medical disclosure form data | Explicit consent |
| Email marketing and tour updates | Email address, name, preferences | Consent (opt-in via Brevo) |
| Responding to inquiries | Contact data, communications | Legitimate interests |
| Legal compliance | Passport, identity, health data | Legal obligation |
| Improving our website and services | Usage data, device data | Legitimate interests |
| Analytics (when activated) | Cookie data, usage data | Consent |
5. Who We Share Your Information With
WAI does not sell your personal information.
5.1 Tour Suppliers
To deliver services you have booked, WAI shares relevant personal information with third-party suppliers including hotels, ground transportation operators, local guides, airlines, and destination management companies. These suppliers receive only the information necessary for the services they are providing.
5.2 Service Providers
- Email marketing: Brevo (formerly Sendinblue);
- Payment processor: Stripe — card details handled entirely within Stripe’s PCI-compliant infrastructure;
- Website hosting: Netlify;
- Analytics providers: Google Analytics and Meta Pixel are not currently active. These will only be activated after cookie consent infrastructure is in place.
5.3 Legal and Safety Disclosures
WAI may disclose your information if required by law, court order, or governmental authority; or if necessary to protect the safety or vital interests of any person.
5.4 Business Transfers
If WAI is acquired, merged, or its assets are sold, your information may be transferred as part of that transaction. WAI will provide notice before your information becomes subject to a different privacy policy.
6. Health and Medical Information
Health data is a special category of personal information under GDPR and is afforded heightened protection. WAI collects health information only as necessary for participant safety. A separate, explicit consent is required — distinct from general T&C acceptance.
6.1 How Health Data Is Used
- To plan walks and activities appropriate for each participant’s disclosed conditions;
- To brief guide teams on medical considerations;
- To respond effectively in a medical emergency;
- To share with emergency medical services if a medical incident occurs.
Health data is not used for marketing and is not combined with marketing profiles.
6.2 Retention of Health Data
Health data is retained for the duration of the tour plus twelve (12) months, then securely deleted. Where longer retention is required by law, data will be retained for the legally required period only.
6.3 Consent Requirement
Separate, explicit consent is collected via the Medical Disclosure Form prior to tour departure. This consent is distinct from acceptance of the Terms and Conditions.
7. Email Marketing (Brevo)
- You will only receive marketing emails if you have affirmatively opted in;
- The opt-in checkbox is unchecked by default;
- Every marketing email includes a clear, functional unsubscribe link;
- Unsubscribe requests are processed within ten (10) business days;
- Operational communications related to a confirmed booking do not require separate marketing consent;
- WAI does not share your email address with third parties for their own marketing purposes.
8. Data Retention
| Data Category | Retention Period | Reason |
|---|---|---|
| Tour booking records | 7 years from tour date | Tax, accounting, and legal obligations |
| Payment records | 7 years | Financial record-keeping |
| Health / Medical Disclosure | 12 months post-tour | Post-tour insurance and incident reporting |
| Passport / travel documents | 12 months post-tour | Customs/immigration compliance |
| Marketing contact list | Until unsubscribe or 3 years of inactivity | Consent-based; inactivity review |
| Website usage/analytics | 26 months | Analytics and service improvement |
| Inquiry records (no booking) | 24 months | Follow-up and service improvement |
| Emergency contact data | 12 months post-tour | Post-tour safety period |
9. Data Security
WAI implements reasonable technical and organizational measures to protect your personal information, including:
- Encryption of data in transit (HTTPS/TLS on all WAI web properties);
- Access controls limiting data access to staff with a business need;
- Use of reputable third-party platforms (Brevo, Stripe, Supabase, Netlify) with their own security certifications;
- Secure deletion of personal data at the end of retention periods.
No method of data transmission or storage is completely secure. In the event of a data breach, WAI will notify affected individuals and relevant authorities as required by applicable law.
10. Cookies and Tracking Technologies
WAI’s website does not currently deploy analytics or advertising trackers. This section establishes the policy framework for when those trackers are added.
Cookies are small text files placed on your device when you visit a website. When you first visit, a cookie consent banner will ask for your preferences. You can accept all, reject non-essential, or customize by category. You may also manage cookies through your browser settings.
11. Your Privacy Rights
11.1 All Users
Regardless of your location, you may:
- Request a copy of the personal information WAI holds about you;
- Request correction of inaccurate personal information;
- Withdraw consent for marketing emails at any time;
- Request deletion of personal information no longer necessary (subject to legal retention obligations).
11.2 EU and UK Residents (GDPR)
- Right of access: obtain a copy of your personal data (Article 15);
- Right to rectification: correct inaccurate data (Article 16);
- Right to erasure: request deletion (Article 17);
- Right to restriction: limit how WAI uses your data (Article 18);
- Right to data portability: receive data in machine-readable format (Article 20);
- Right to object: object to processing based on legitimate interests (Article 21);
- Right to withdraw consent without affecting the lawfulness of prior processing.
To exercise any right, contact fun@walkingadventures.com. WAI will respond within thirty (30) days.
11.3 California Residents (CCPA / CPRA)
- Right to know: request disclosure of categories and specific personal information collected;
- Right to delete: request deletion of personal information;
- Right to correct: request correction of inaccurate information;
- Right to opt out of sale or sharing: WAI does not sell or share personal information for cross-context behavioral advertising;
- Right to non-discrimination.
To submit a CCPA request, contact fun@walkingadventures.com or call 360.260.9393.
12. International Data Transfers
WAI is a U.S.-based company. Personal information is stored and processed in the United States. For EEA/UK participants, WAI relies on Standard Contractual Clauses (SCCs), consent, and vital interests as transfer mechanisms.
13. Children’s Privacy
WAI tours are designed for adults. WAI does not knowingly collect personal information from individuals under 18. If you believe WAI has collected data from a minor, contact fun@walkingadventures.com.
14. Updates to This Policy
WAI may update this Privacy Policy from time to time. Material changes will be communicated by email (to registered participants) and by prominent notice on the website. Continued use following a material update constitutes acceptance of the revised Policy.
15. How to Contact Us
Privacy contact: fun@walkingadventures.com
Walking Adventures International, Inc., 522 W Riverside Ave, Suite 7220, Spokane, WA 99201
Phone: 360.260.9393
Response time: 30 days for data subject requests; 72 hours acknowledgment for breach notifications
WAI-LEGAL-PRIV-v1-20260316 | © 2026 Walking Adventures International, Inc. | All rights reserved.