Privacy Policy

We respect your privacy. Here’s how we collect, store, and use your data.

Article 1. Purpose and Scope of Application

This Policy sets out how Chôm Chôm Travel Company Limited (“the Company”, “we”, “us”) collects, uses, stores, shares,
and protects the personal data of customers, partners, and users when accessing our website or using our services.

This Policy applies to:

  • All customers who use the Company’s services;
  • Individuals who access the website or contact us through official communication channels;
  • Any parties providing personal data to the Company in any form.

Article 2. Legal Basis

This Policy is developed in accordance with the applicable laws and regulations of Vietnam, including but not limited to:

  • Decree No. 13/2023/ND-CP on Personal Data Protection;
  • Cybersecurity Law 2018;
  • Decree No. 52/2013/ND-CP on E-commerce;
  • Civil Code 2015 and related legislative instruments.

Article 3. Types of Personal Data Collected

We may collect the following categories of personal data, depending on the specific services used:

  • Full name, date of birth, gender, nationality;
  • Contact information: phone number, email address, physical address;
  • Identification documents: Citizen Identity Card, passport, temporary residence card;
  • Personal preferences, dietary requirements, and relevant medical conditions;
  • Payment information, invoices, and electronic transaction records;
  • Device information, browser type, IP address, and user behavior on our website (via cookies and tracking tools).

Note: For the personal data of children under the age of 16, we only collect and process such data upon obtaining the valid consent of a parent or legal guardian.

Article 4. Timing and Methods of Data Collection

We collect your personal data at specific times and through the following means:

  • When you provide information directly via our website or application: such as filling out registration forms, tour bookings, quotation requests, or other contact forms;
  • When you contact us via support channels: including email, phone, or messaging platforms such as WhatsApp, Zalo, Messenger, etc.;
  • When you enter into a contract or carry out service booking procedures: personal data may be collected through contracts, registration forms, surveys, or other transactional documents;
  • When you access our website or application: certain technical data such as IP address, device type, and browsing behavior are automatically collected via cookies and analytical tools such as Google Analytics and Facebook Pixel;
  • When you use services from third-party partners affiliated with us: such as travel agencies, payment platforms, online booking systems, or other service providers, within the scope of your consent to share information.

Article 5. Purpose of Data Processing

Your personal data is processed for the following purposes:

  1. To provide consultation, planning, and personalized travel itineraries;
  2. To book services (accommodation, transportation, insurance, etc.);
  3. To contact you in case of emergencies or changes to your itinerary;
  4. To manage customer relationships and provide after-sales support;
  5. To send offers, news, and promotional materials (subject to your consent);
  6. To comply with legal obligations or requests from competent authorities.

Article 6. Data Storage and Security

  • Personal data is stored on cloud-based systems that comply with international security standards;
  • All internal data access is subject to authorization and access control protocols;
  • We implement technical and organizational measures to prevent unauthorized access, data loss, or data breaches;
  • Data is retained for as long as necessary for the purposes stated, unless deletion is requested by the data subject or required by law.

Article 7. Data Sharing and Transfer

We do not sell, trade, or disclose customers’ personal data to any third party for commercial purposes.
However, to ensure efficient service delivery and legal compliance, personal data may be shared with the following categories of recipients:

  • Service partners within the travel supply chain, including but not limited to: accommodation providers, transport companies,
    tour guides, tour operators, insurance companies, restaurants, or special service providers as requested by the customer;
  • Payment, accounting, and IT solution providers for the purposes of processing transactions, data storage, invoicing, customer support, and CRM system management;
  • Government agencies and competent authorities, upon lawful request or for compliance with legal obligations,
    dispute resolution, inspection, audit, or judicial proceedings;
  • Technology and marketing partners, such as user behavior analytics platforms, email marketing services, online advertising providers,
    or customer feedback tools — within the scope of the stated purposes and subject to user consent, where applicable.

All data recipients are required to sign confidentiality agreements, process personal data only within the necessary scope,
and adhere to applicable data protection regulations.

Article 8. Cookies and Analytics Tools

Our website uses cookies to:

  • Remember user preferences and session information;
  • Optimize user experience;
  • Measure site performance and user behavior.

You may manage or disable cookies through your browser settings. However, doing so may affect certain website functionalities.

Article 9. Data Breach and Incident Response

In the event of a personal data breach or security incident, Chôm Chôm Travel commits to:

  • Notify affected data subjects within 72 hours;
  • Coordinate with relevant parties to mitigate and resolve the incident;
  • Report the breach to the Personal Data Protection Authority in accordance with legal requirements.

Article 10. Rights of Data Subjects

You have the right to:

  • Request confirmation as to whether we are processing your personal data;
  • Access, copy, correct, or update your personal data;
  • Request erasure or restriction of processing;
  • Withdraw previously given consent (except where continued processing is required by law);
  • File complaints regarding unlawful data processing. All requests will be received and responded to within 72 working hours
    via the contact details provided below.

Article 11. Amendments to This Policy

We may update this Personal Data Privacy Policy from time to time.
Significant changes will be communicated to you via the email address you provided or through a prominent notice on our website.

Article 12. Contact Information

For any requests, questions, or concerns related to this Policy, please contact:

CHÔM CHÔM TRAVEL COMPANY LIMITED

📩 Email: info@chomchomtravel.com

📞 Hotline: +84 833 886 750

📍 Office Address: 11 Trần Văn Sắc, An Khánh Ward, Hồ Chí Minh City, Vietnam.