privacy policy

EnPerSo Leisure Travel is committed to providing quality services to you and this policy outlines our ongoing obligations to you in respect of how we manage your Personal Information.

We have adopted the Australian Privacy Principles (APPs) contained in the Privacy Act 1988 (Cth) (the Privacy Act). These principles govern the way in which we collect, use, disclose, store, secure and dispose of your Personal Information.

A copy of the Australian Privacy Principles may be obtained from the website of The Office of the Australian Information Commissioner at www.aoic.gov.au

What is Personal Information and why do we collect it? 

Personal Information is information or an opinion that identifies an individual. Examples of Personal Information we collect include names, addresses, email addresses, phone numbers.

This Personal Information is obtained in many ways including traveller onboarding, ongoing correspondence, telephone and email communication, via our website www.enpersoleisuretravel.com, from media and publications, from other publicly available sources, from cookies and from third parties. We cannot guarantee the privacy policies of authorised third parties.

We collect your Personal Information for the primary purpose of providing our services to you, providing information to our clients, and marketing. We may also use your Personal Information for secondary purposes closely related to the primary purpose, in circumstances where you would reasonably expect such use or disclosure.

You may unsubscribe from our mailing or marketing lists at any time by contacting us in writing or by using the unsubscribe option provided.

When we collect Personal Information, we will, where appropriate and where possible, explain to you why we are collecting the information and how we plan to use it. 

Sensitive Information

Sensitive information is defined in the Privacy Act to include information or opinion about such things as an individual’s racial or ethnic origin, political opinions, membership of a political association, religious or philosophical beliefs, membership of a trade union or other professional body, criminal record or health information.

Sensitive information will be used by us only:

  • For the primary purpose for which it was obtained
  • For a secondary purpose that is directly related to the primary purpose
  • With your consent, or
  • Where required or authorised by law.

 

Your Rights

If you wish to exercise any of your rights regarding the personal information we hold, please contact us at hello@enpersoleisuretravel.com.

Under the Australian Privacy Principles (APPs), you have the right to:

  • Access your Personal Information: Request access to the Personal Information we hold about you.
  • Correct your Personal Information: Request that we update or correct any inaccurate or incomplete information.
  • Complain about a breach of privacy: Lodge a complaint if you believe we have breached your privacy rights, and we will take steps to address your concerns. To learn more about how we handle complaints, please refer to our Complaints Handling Policy.

Additional Provisions for European Citizens:

If you reside in the EEA, you have additional rights and protections under the General Data Protection Regulation (GDPR).

Under GDPR, you have the following rights:

  • Right to be informed
  • Right of access
  • Right to rectification
  • Right to object
  • Right to restrict processing
  • Right to erasure (“right to be forgotten”)
  • Right to data portability
  • Right not to be subject to automated decision-making

We rely on lawful means for processing, such as:

  • Your express consent for specific purposes
  • Compliance with legal obligations or legitimate interests, such as ensuring security

Note that withdrawing consent or requesting certain actions may limit access to our services or prevent us from providing them altogether.

If you are an EEA resident, by providing us with your personal information, you consent to its use, including transfer to GDPR-compliant third parties outside the EEA. 

Third Parties

Where reasonable and practicable, we will collect your Personal Information only from you. However, in some circumstances we may be provided with information by third parties. In such a case we will take reasonable steps to ensure that you are made aware of the information provided to us by the third party.

Disclosure of Personal Information

Your Personal Information may be disclosed in a number of circumstances including the following:

  • Third parties where you consent to the use or disclosure; and
  • Where required or authorised by law.

 

Security of Personal Information

Your Personal Information is stored in a manner that reasonably protects it from misuse and loss and from unauthorised access, modification or disclosure.

When your Personal Information is no longer needed for the purpose for which it was obtained, we will take reasonable steps to destroy or permanently de-identify your Personal Information. However, most of the Personal Information is or will be stored in client files which will be kept by us for a minimum of seven years.

Cyber and Data Security Standards

We maintain robust cybersecurity standards, including but not limited to:

  • ISO 38500
  • NIST CSF
  • PCI-DSS
  • GDPR compliance

Our measures include encryption, pseudonymisation, and restricted access to authorised personnel only.

Accessing and Updating Your Personal Information

You may access the Personal Information we hold about you to update or correct it, subject to certain exceptions. If you wish to access your Personal Information, please contact us in writing.

We will not charge a fee for access requests but may charge an administrative fee for providing a copy of your Personal Information.

To protect your Personal Information, we may require identification before releasing the requested information. 

Maintaining the Quality of your Personal Information

It is important to us that your Personal Information is accurate and up to date. If you find that the information we have is not accurate, complete, or up to date, please let us know as soon as possible so we can correct it.

Complaints About Privacy or Our Services

If you have any concerns about how we handle your Personal Information or any dissatisfaction with our services, please refer to our Complaints Handling Policy for a detailed explanation of our process. You can also contact us directly at hello@enpersoleisuretravel.com.

Policy Updates

This Policy may change from time to time and is available on our website.

Privacy Policy Complaints and Enquiries

If you have any queries or complaints about our Privacy Policy, please contact us at:

Level 13, 477 York Street, Sydney NSW 2000

hello@enpersoleisuretravel.com

Contact Information

For additional questions or assistance, please reach out to us using the contact details provided above.

Instagram Linkedin

EnPerSo acknowledges the Traditional Custodians of Country throughout Australia.

We pay our respect to Aboriginal and Torres Strait Islander cultures and to Elders past, present and emerging.

© ENPERSO LEISURE TRAVEL 2025