This Privacy Policy explains how D’Palawan Travel and Tours (“we,” “us,” “our,” or the “Agency”) collects, uses, stores, shares, and protects personal information obtained through our website, booking processes, communications, and related travel coordination services. We respect your privacy and are committed to handling personal data in a responsible, transparent, and lawful manner.
Because the Agency operates primarily as a travel/booking and coordination facilitator (and many services are delivered by independent third-party Providers), this Policy also explains why certain personal information may need to be shared with Providers and/or government authorities (for example, passenger manifests for sea travel, port authority compliance, and protected-area requirements).
IMPORTANT: If you do not agree to this Privacy Policy and the other Site Policies, please do not use the website and do not proceed with any booking, deposit, or payment.
1. Acceptance of Terms and Incorporation by Reference
By accessing this website, submitting an inquiry, requesting a quotation, making a reservation, submitting payment, paying any deposit, signing any waiver, replying “Confirmed/Agree/Yes,” or otherwise availing services of third parties through the Agency, the client (“Client” or “Renter”) acknowledges that they have read, understood, and agreed to this Privacy Policy, including this Site’s Terms of Service, Terms of Use, Disclaimer, Disclosure, and Refund Policy (collectively, the “Site Policies”), all of which are incorporated herein by reference.
If you do not fully agree to any provision of the Site Policies, you must not proceed with any booking, payment, waiver acceptance, or availment of services. If any term is unclear, you are encouraged to contact us for clarification before proceeding.
Legal compliance note: This Privacy Policy is intended to align with applicable Philippine privacy standards, including the principles of transparency, legitimate purpose, and proportionality, and good-faith data protection practices. Nothing in this Policy is intended to limit rights that cannot be lawfully limited under applicable law.
2. Who We Are
Our website address is: dpalawantravelandtours.com.
D’Palawan Travel and Tours operates as a travel and booking agency that facilitates booking and coordination of tours, transfers, rentals, accommodations, permits, entrance fees, and travel-related services performed by independent third-party operators.
Learn more by visiting our About Us page.
3. Our Role and Why We Collect Personal Information
D’PALAWAN TRAVEL AND TOURS IS A TRAVEL/BOOKING AGENCY AND NOT A TOUR OPERATOR, TRANSPORT OPERATOR, RENTAL OPERATOR, OR ACCOMMODATION OPERATOR unless explicitly stated in writing on an official booking confirmation.
Because we coordinate services on your behalf, we may need certain personal information to:
- confirm your identity and contact details for coordination;
- reserve seats/slots, rooms, vehicles, or boats under your name;
- prepare passenger manifests (especially for sea travel) and comply with port authority requirements;
- process and verify payments and issue confirmations/receipts where applicable;
- communicate changes, delays, safety notices, and official directives;
- assist with dispute documentation, incident reporting, and lawful compliance requirements when needed; and
- protect our business and Clients through basic records, fraud prevention, and security measures.
We aim to collect only what is reasonably necessary for legitimate coordination, service delivery, customer support, recordkeeping, and compliance requirements.
4. Information We Collect
We may collect personal information that you voluntarily provide when you:
- make inquiries or request quotations;
- make reservations or bookings;
- submit payments or deposits;
- sign waivers, booking forms, or acknowledgments;
- communicate with us via website forms, email, messaging apps, or phone;
- leave comments or interact with website features; and/or
- submit documents or identification for verification and compliance.
The information we collect may include (depending on the service requested):
- Identity and contact details: full name, phone number, email address, messaging app handles, nationality/citizenship, and address (when required for documentation or invoicing).
- Booking and itinerary details: travel dates, pickup/drop-off locations, routes, flight details (if you provide them for coordination), hotel/resort name, group size, and special requests.
- Manifest and compliance details: age, date of birth, gender (if required), identification numbers (when required), and other details needed for passenger manifests, protected-area permits, or port/authority requirements.
- Payment and transaction details: proof of payment reference numbers, transaction timestamps, payer name, and payment method information (note: card details are typically processed by payment providers and are not stored by us).
- Communications and records: messages you send us, confirmations, approvals, and media you provide (photos/screenshots/documents) for coordination and documentation purposes.
- Technical data (website usage): IP address, browser type, device information, cookies, and usage data as described in the WordPress section below.
Minimum necessary approach: If you decline to provide required information, we may be unable to complete the booking, comply with Provider/authority requirements, or provide coordination support.
5. How We Use Personal Information (Purposes and Lawful Bases)
We use personal data for legitimate business and operational purposes, including:
- Booking and coordination: processing reservations, confirming availability, coordinating itineraries, and communicating with Providers.
- Customer communications: sending confirmations, reminders, pickup instructions, itinerary changes, safety notices, and service-related updates.
- Compliance and documentation: preparing passenger manifests, submitting required details to port authorities/tourism offices/protected-area managers, and meeting lawful requirements.
- Payments and accounting: verifying payments, issuing receipts where applicable, fraud prevention, and basic recordkeeping.
- Support and dispute assistance: responding to concerns, documenting incidents, and keeping records needed to clarify what was agreed and what occurred.
- Security and quality improvement: protecting our systems, preventing misuse, and improving our website and customer experience.
Where applicable, we process information based on one or more lawful grounds such as: (a) performance of a contract/booking request, (b) compliance with legal obligations, (c) legitimate business interests (e.g., coordination, fraud prevention, records), and/or (d) your consent (particularly for optional communications, marketing, or non-essential cookies where applicable).
6. Sharing of Information with Third Parties (Providers and Service Delivery)
We share personal data with third parties only on a need-to-know basis and only to the extent necessary to deliver the services you requested. These third parties may include (without limitation) tour operators, transport providers, boat operators, vehicle/motorbike rental suppliers, accommodation providers, guides, venues, and travel coordinators (“Providers”).
Independent operations: Providers operate independently and may maintain their own privacy practices. Once your information is shared for service delivery purposes, the Provider’s handling of data is governed by their rules and obligations. While we choose Providers carefully when possible, the Agency is not responsible for how independent Providers collect, use, store, or protect your information after disclosure for legitimate service delivery and compliance purposes.
Practical examples of sharing:
- For boat transfers/island hopping, your name/age/nationality (and other details required by law) may be shared for passenger manifests and safety checks.
- For hotel bookings, your name and contact details may be shared to reserve rooms and confirm check-in policies.
- For vehicle/motorbike rentals, identification details may be shared if required by the Provider for verification, deposit arrangements, and lawful documentation.
Service-related disclosures: If you request special assistance (e.g., mobility support, dietary needs) and you ask us to coordinate such requests, you acknowledge that we may share the minimum necessary information with Providers to attempt to accommodate your request. We do not guarantee that any special request can be accommodated.
7. Disclosure to Government Authorities and Tourism Offices
Certain personal information (such as your full name, age, nationality, and other identifying details) may be shared with tourism offices, port authorities, local government units, protected-area management offices, or other authorized government agencies when required by law, regulation, official protocols, or safety procedures.
These entities operate under their own statutory obligations and policies. The Agency does not control how government authorities store, retain, or process information submitted under lawful requirements.
8. Identification Documents and ID Verification
In some cases, a copy or photo of a valid government-issued identification card may be requested. This may occur when:
- verifying identity for self-drive car or motorbike rentals (and checking eligibility or required documents);
- validating identity during boarding, manifest preparation, or security checks;
- confirming eligibility for discounted rates (e.g., senior citizen, student, resident discounts) where applicable; and/or
- meeting Provider or authority documentation requirements.
Purpose limitation: Identification data is collected only for verification, compliance, and service facilitation purposes and is shared only with authorized Providers or authorities when required.
Security note: Because messaging apps and email are practical tools in travel coordination, you acknowledge that sending ID images electronically carries some risk. We encourage you to send documents only through official channels and only when necessary for a confirmed booking or lawful requirement.
9. Communications, Messaging Apps, and Recordkeeping
Travel coordination often occurs via WhatsApp, Viber, WeChat, SMS, Messenger, and email. Messages, timestamps, and media exchanged through official channels may be retained to:
- confirm what was agreed (dates, times, inclusions, prices);
- document changes (weather reroutes, official directives, pickup adjustments);
- support customer service and dispute resolution; and
- comply with legal, regulatory, safety, and documentation needs.
Confidentiality reminder: Please do not send sensitive information unless it is necessary for booking and compliance. If you send sensitive data voluntarily, you acknowledge it may become part of coordination records.
No emergency channel: Our website and messaging channels are not guaranteed to be monitored 24/7. If you face a medical or safety emergency, contact local emergency services and/or the relevant authority immediately.
10. WordPress-Related Data Collection
10.1 Comments
When visitors leave comments on the site, we collect the data shown in the comments form, as well as the visitor’s IP address and browser user agent string to help with spam detection.
An anonymized string (hash) created from your email address may be provided to the Gravatar service to check if you use it. The Gravatar service privacy policy is available at https://automattic.com/privacy/. After approval of your comment, your profile picture may be visible to the public in the context of your comment.
10.2 Media
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website may be able to download and extract location data from images published on the site.
10.3 Cookies
If you leave a comment on our site, you may opt in to saving your name, email address, and website in cookies for convenience. These cookies last for one (1) year.
If you visit our login page, a temporary cookie will be set to determine whether your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we set cookies to save your login information and screen display preferences. Login cookies last for two (2) days, and screen options cookies last for one (1) year. If you select “Remember Me,” your login persists for two (2) weeks. Logging out removes login cookies.
If you edit or publish an article, an additional cookie is saved in your browser. This cookie contains no personal data and expires after one (1) day.
10.4 Embedded Content from Other Websites
Articles on this site may include embedded content (such as videos, images, or articles). Embedded content behaves in the same way as if you visited the other website directly.
These external websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with embedded content, especially if you have an account and are logged in to that website.
11. Data Retention
Comments: Comments and their metadata may be retained indefinitely to recognize and approve follow-up comments automatically.
User accounts (if applicable): If users register on our website (if applicable), we store the personal information provided in their user profile. Users may view, edit, or request deletion of their personal information at any time, except for usernames. Website administrators may also view and edit this information.
Bookings and transactions: Booking, payment, and coordination records may be retained as required for administrative, legal, regulatory, dispute support, fraud prevention, and security purposes. Because travel services may involve disputes or compliance checks after the service date, we may retain records for a reasonable period consistent with legitimate business needs and applicable law.
12. How We Protect Personal Information
We take reasonable administrative, technical, and organizational measures to protect personal data from unauthorized access, misuse, alteration, loss, or disclosure. These measures may include access controls, limited sharing on a need-to-know basis, secure account practices, and internal procedures for handling booking data.
No absolute security guarantee: No method of transmission or storage is 100% secure. While we take reasonable steps to protect your data, we cannot guarantee absolute security—especially when data is transmitted through third-party platforms (email, messaging apps, ad networks, embedded services) outside our direct control.
13. Your Rights Over Your Data
You may request, subject to verification and applicable limitations:
- an exported copy of certain personal data we hold about you;
- correction of inaccurate or incomplete data;
- deletion of personal data, subject to legal and regulatory retention requirements; and/or
- information about how your data is used or shared for booking coordination.
Requests may be denied or limited if the data must be retained for legal, administrative, security, fraud prevention, dispute support, or compliance obligations.
14. Where Your Data Is Sent
Visitor comments may be checked through automated spam detection services.
Operational booking data may be transmitted to Providers and authorities as required to fulfill your booking and comply with applicable laws, regulations, manifests, and official travel protocols.
15. Policy Updates and Changes
We may update this Privacy Policy from time to time to reflect changes in law, technology, business practices, or website features. Updates take effect once published on this page. Continued use of the website or our services after changes constitutes acceptance of the revised Privacy Policy.
For existing bookings, the version in effect at the time of booking will generally apply unless an update is required by law or expressly accepted by the Client.
16. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact D’Palawan Travel and Tours through our official channels.
UPDATED: January 3, 2026 (Philippines)
