Last updated: 01.04.2026
Go East Travels (registry code [insert Estonian registry code], registered address [insert address in Estonia], email: [insert email], phone: [insert phone]) (“we”, “us”, “GoEastTravels”, “Company”) operates the website goeasttravels.com.
This Privacy Policy explains how we collect, use, disclose and safeguard your personal data in accordance with the EU General Data Protection Regulation (GDPR) and Estonian Personal Data Protection Act.
- Data we collect
- Contact and booking data: name, email, phone, address, passport/ID details, date of birth, travel preferences.
- Payment data: processed via secure third-party providers (we do not store full card details).
- Technical data: IP address, browser type, cookies (see Cookie Policy).
- Marketing data: consent for newsletters.
- Legal basis and purposes
- Performance of contract (Art. 6(1)(b) GDPR) – processing bookings and journeys.
- Legal obligations (Art. 6(1)(c)) – accounting, tax, anti-money laundering.
- Legitimate interests (Art. 6(1)(f)) – fraud prevention, website improvement.
- Consent (Art. 6(1)(a)) – marketing emails (can be withdrawn anytime).
- Sharing data
We share data with: suppliers (hotels, guides, transport providers), payment processors, and authorities when required by law. All third parties are bound by GDPR.
- Your rights
Access, rectification, erasure, restriction, objection, portability, withdrawal of consent, complaint to the Estonian Data Protection Inspectorate or your local authority.
- Data retention
We keep data as long as necessary for the contract + 7 years for accounting/tax purposes (Estonian law).
- International transfers
Data may be transferred outside EEA only with appropriate safeguards.
- Security
We use industry-standard encryption and security measures.