malduk adventures tours croatia
Privacy & Cookie Policy — Malduk Adventures
Legal · Malduk Adventures

Privacy & Cookie Policy

Last updated: March 2026  ·  Omiš, Croatia  ·  GDPR compliant

This Malduk Adventures Privacy & Cookie Policy sets out the basis on which we process all personal data collected from you, or that you provide to us, together with our Terms and Conditions and any other documents referred to therein. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.
🛡️ Malduk Adventures is committed to protecting your personal data and respecting your privacy in accordance with the EU General Data Protection Regulation (GDPR) and Croatian data protection law.
Section 01

Information We Collect

When you contact us, make a booking, or use our website, we may collect the following types of personal information:

Information you give us directly

  • Your name and contact details (email address, phone number)
  • Booking information including tour preferences, travel dates, and group size
  • Health and medical information relevant to your participation in adventure activities (disclosed voluntarily or as required for safety)
  • Payment information — processed securely through our booking system, never stored on our servers
  • Correspondence — emails, WhatsApp messages, or enquiry form submissions

Information collected automatically

  • Technical data including your IP address, browser type, and operating system
  • Usage data such as pages visited, time spent on site, and referral sources
  • Cookie and tracking data (see the Cookies section below)
Section 02

When We Collect Information

We collect information from you when you:

  • Submit an enquiry through our contact form or via email
  • Make a booking for a day tour or multi-day package
  • Subscribe to our newsletter
  • Send us a message via WhatsApp, phone, or social media
  • Browse our website (automatically via cookies and analytics)
  • Fill in a pre-trip health or waiver form before your activity
Section 03

How We Use Your Information

We use the information we collect in the following ways:

  • To process and confirm your booking and send you relevant pre-trip information
  • To communicate with you before, during, and after your adventure
  • To ensure your safety by being aware of any relevant health considerations
  • To send our newsletter if you have opted in (you can unsubscribe at any time)
  • To follow up after your trip and invite you to leave a review
  • To improve our website, services, and marketing based on usage patterns
  • To comply with our legal obligations under Croatian and EU law
ℹ️ We will never use your data for purposes beyond what is described here, and we will never sell your personal information to third parties.
Section 04

How We Protect Your Information

The security of your personal data is important to us. We take the following measures to protect it:

  • Our website uses SSL (Secure Socket Layer) encryption — look for the padlock icon in your browser
  • Personal data is stored on secured servers and accessible only to authorised Malduk Adventures staff
  • Payment information is processed through our secure booking gateway and is never stored on our servers
  • We conduct regular security reviews of our systems and data practices
  • Staff with access to personal data are required to keep it confidential
🔒 You will never be asked to enter credit card numbers directly on our website. All payments are processed through our secure third-party booking system.
Section 05

Third-Party Disclosure

We do not sell, trade, or otherwise transfer your personally identifiable information to outside parties, except in the following limited circumstances:

  • Service providers — trusted third parties who assist in operating our website or conducting our business (e.g. booking platforms, email services), provided they agree to keep your information confidential
  • Legal requirements — when disclosure is required by law, regulation, or court order
  • Safety — when we believe disclosure is necessary to protect the safety of our guests, staff, or the public

All third-party service providers we use are required to treat your data with the same level of protection we apply.

Section 06

Cookies

Yes, we use cookies. Cookies are small text files placed on your device by your web browser when you visit a website. They enable us to recognise your browser and remember certain information about your visit.

We use cookies to:

  • Remember your preferences and settings for future visits
  • Understand how visitors use our website (pages visited, time on site, traffic sources)
  • Improve the overall user experience and content on our site
  • Track the performance of our marketing and advertising

We may also use trusted third-party services (such as Google Analytics) that set their own cookies to track this information on our behalf.

Section 07

Types of Cookies We Use

Essential
Strictly Necessary Cookies
Required for the website to function. These enable core features like page navigation, secure areas, and the booking process. The site cannot function properly without them.
Analytics
Performance & Analytics Cookies
Help us understand how visitors interact with our site — which pages are most visited, how long people stay, and where they come from. We use Google Analytics for this.
Functional
Functionality Cookies
Allow the website to remember choices you make (such as your preferred language or region) and provide enhanced, personalised features during your visit.
Marketing
Targeting & Marketing Cookies
Used to track visitors across websites and display relevant ads. May be set by our advertising partners such as Facebook (Meta Pixel) and Google Ads.
Section 08

Managing & Disabling Cookies

You can control and manage cookies in several ways:

  • Browser settings — most browsers allow you to refuse or delete cookies. Check your browser's Help menu for instructions specific to your browser
  • Opt-out tools — you can opt out of Google Analytics tracking at tools.google.com/dlpage/gaoptout
  • Cookie consent — you may be presented with a cookie consent banner when you first visit our site, where you can manage your preferences
⚠️ Please note: disabling cookies may affect the functionality of our website and some features may not work correctly. You will still be able to browse the site and contact us.
Section 09

Third-Party Cookies

In addition to our own cookies, we use cookies set by trusted third-party services. These include:

  • Google Analytics — tracks how visitors use our site, including pages visited, time on site, and traffic sources. See Google's privacy policy for more information.
  • Meta Pixel (Facebook) — helps us measure the effectiveness of our Facebook advertising and understand user actions on our site. See Meta's privacy policy.
  • Google Ads — used to track conversions from our advertising campaigns and to enable remarketing to previous visitors.
  • Web3Forms — our contact and newsletter forms use Web3Forms to process submissions. Your email is transmitted securely but is subject to their privacy policy.

These third parties have their own privacy policies governing the use of the data they collect. We recommend reviewing their policies if you have concerns.

Section 10

Your Rights Under GDPR

As a resident of the EU or EEA, you have the following rights regarding your personal data:

👁️
Right of Access
You can request a copy of the personal data we hold about you at any time.
✏️
Right to Rectification
You can ask us to correct any inaccurate or incomplete data we hold about you.
🗑️
Right to Erasure
You can request that we delete your personal data, subject to certain legal exceptions.
Right to Object
You can object to us processing your data for direct marketing or other purposes.
📦
Right to Portability
You can request your data in a structured, machine-readable format to transfer to another service.
⏸️
Right to Restrict Processing
You can ask us to restrict how we use your data in certain circumstances.
📧 To exercise any of your rights, please contact us at [email protected]. We will respond within 30 days.
Section 11

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including satisfying any legal, accounting, or reporting requirements.

  • Booking and customer data is retained for up to 7 years as required by Croatian accounting law
  • Marketing and newsletter data is retained until you unsubscribe or request deletion
  • Enquiry data from non-booking contacts is retained for up to 2 years
  • Health and waiver information collected before tours is retained for 2 years after the activity date
Section 12

Changes to This Policy

Malduk Adventures reserves the right to update this Privacy & Cookie Policy at any time. When we make changes, we will update the "Last updated" date at the top of this page.

We encourage you to review this policy periodically to stay informed about how we are protecting your information. Continued use of our website after changes are posted constitutes your acceptance of the updated policy.

Contact Us

Questions about your data?

If you have any questions about this Privacy & Cookie Policy, or wish to exercise any of your data rights, please contact us directly:

🏢
Malduk Adventures — Omiš, Split-Dalmatia, Croatia
MALDUK ADVENTURES, obrt za turizam i usluge. MBO: 98397079
✉️
[email protected]
📞
+385 95 553 72 44
📞
+385 95 834 03 66
💬
Chat on WhatsApp
🕐
Daily 8am–8pm (April–October)  ·  Mon–Fri 9am–5pm (November–March)

Copyright © 2021 – 2026 Malduk Adventures. All Rights Reserved.

← Back to maldukadventures.com