Privacy Policy

Personal information you disclose to us

We collect personal information that you voluntarily provide to us when you express interest in our products and Services, participate in activities on the Services, or otherwise contact us. The information we collect may include:

• Names (lead traveller + group)
• Phone numbers (incl. WhatsApp)
• Email addresses
• Country of residence
• Travel dates & destination preferences
• Group size & special requirements
• Passport details (when required for booking)
• Dietary, medical & accessibility preferences

Sensitive information. We do not process sensitive personal information (e.g. biometric or genetic data). Health-related dietary or accessibility prefs are handled with extra care and only shared with the on-trip suppliers who need them.

Payment data. We collect the data necessary to process your payment (payment instrument number, security code). All payment data is stored by our secure payment processor — Imara Africa Safaris does not store full payment-card details on our servers.

All personal information you provide must be true, complete and accurate, and you must notify us of any changes.

Information automatically collected

Some information — such as your IP address and/or browser and device characteristics — is collected automatically when you visit our Services. This information does not reveal your specific identity but may include device and usage information, operating system, language preferences, referring URLs, country, and information about how and when you use our Services.

This information is primarily needed to maintain the security and operation of our Services, and for internal analytics and reporting. Categories we collect:

• Log & usage data. Service-related, diagnostic and performance information our servers automatically collect when you access or use our Services.
• Device data. Information about your computer, phone, tablet or other device used to access the Services.
• Location data. Precise or imprecise location of your device — you can opt out via your device settings, but some features will be reduced.

Information from other sources

To enhance our ability to provide relevant marketing, offers and Services to you and to update our records, we may obtain information about you from public databases, joint marketing partners, affiliate programmes, data providers and other third parties — including mailing addresses, email addresses, phone numbers, intent / behaviour data, IP addresses, and social-media profiles.

We process your personal information for a variety of reasons, depending on how you interact with our Services:

• To deliver and facilitate Services. Booking confirmations, supplier coordination, trip documents, on-trip support.
• To respond to enquiries & offer support. So we can resolve questions about quotes, itinerary changes or logistics quickly.
• To send administrative information. Receipts, payment reminders, changes to our terms or policies, and other operational notices.
• To fulfil and manage your orders. Payments, refunds, supplier-side amendments.
• To send marketing and promotional communications. Only with your consent. You can opt out at any time via the unsubscribe link in our emails.
• To protect our Services. Fraud monitoring, abuse prevention, security incident response.
• To save or protect vital interests. For example, contacting emergency contacts during an on-trip medical situation.

If you are located in the EU, UK, or Kenya, this section applies to you.

The General Data Protection Regulation (GDPR), the UK GDPR, and the Kenya Data Protection Act 2019 require us to explain the valid legal bases we rely on in order to process your personal information. As such, we may rely on the following legal bases:

• Consent. Where you have given us permission for a specific purpose (e.g. marketing emails). You can withdraw your consent at any time.
• Performance of a contract. Where it is necessary to fulfil our contractual obligations — booking, payments, supplier coordination — or at your request before entering a contract.
• Legitimate interests. Where it is reasonably necessary to achieve our legitimate business interests, and those interests do not outweigh your fundamental rights and freedoms (e.g. site analytics, fraud prevention).
• Legal obligations. Where we must process your information to comply with our legal obligations — tax records, law-enforcement requests, regulatory disclosures.
• Vital interests. Where processing is necessary to protect your vital interests or those of a third party, such as a medical emergency on safari.

We may need to share your personal information in the following situations:

• Safari service providers. Safari lodges, camps, accommodation providers, ground transport operators and domestic flight operators as necessary to deliver your booked services.
• Payment processors. Payment data is shared with secure third-party processors to complete transactions.
• Government authorities. For visa processing, park-entry permits and other legal requirements.
• Google Maps Platform APIs. For maps, places and geocoding on our destination and itinerary pages.
• Business transfers. In the event of a merger, sale of assets, financing, or acquisition of all or a portion of our business to another company.

We use cookies and similar tracking technologies (such as web beacons and pixels) to access or store information. The categories of cookies we set:

• Essential cookies

  Required for the website to function — session management, security, CSRF protection. Cannot be switched off without breaking the site.

• Analytics cookies

  Help us understand how visitors interact with the site (e.g. Google Analytics). Track aggregate behaviour, not your specific identity.

• Marketing cookies

  Used to deliver relevant advertisements and measure campaign effectiveness. Only set with your consent under GDPR.

• Preference cookies

  Remember your settings (language, currency, accessibility prefs) so the site behaves consistently across visits.

Third-party cookies

This site uses Google Analytics, one of the most widespread and trusted analytics solutions on the web, to help us understand how you use the site and ways we can improve your experience. These cookies may track things such as how long you spend on the site and the pages that you visit, so we can continue to produce engaging content.

Disabling cookies

You can prevent the setting of cookies by adjusting the settings on your browser. Disabling cookies will affect the functionality of this and many other websites. Disabling cookies will usually result in disabling certain features of this site — for full instructions per browser, see the “Managing cookie preferences” section of our Cookie Policy.

When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymise it. If that is not immediately possible (e.g. because it has been stored in backup archives), we will securely store it and isolate it from any further processing until deletion is possible.

• Encryption in transit

  TLS/SSL on every request, including form submissions and payment flows.

• Access controls

  Role-based access, least-privilege principle, audit logging on sensitive operations.

• Regular assessments

  Periodic security reviews and dependency audits to catch issues early.

• Secure data storage

  Hardened infrastructure, encrypted backups, and isolated production environments.

In some regions — the European Economic Area (EEA), the United Kingdom (UK), Canada and Kenya — you have rights under applicable data protection laws. To exercise any of these rights, please contact our Data Protection Officer.

• Right of access

  Request a copy of the personal data we hold about you, with context for why and how long we hold it.

• Right to rectification

  Request correction of inaccurate or incomplete data — we update records within 30 days.

• Right to erasure

  Request deletion of your personal data — the 'right to be forgotten' — subject to legal retention obligations.

• Right to restrict processing

  Request that we limit how we use your data while a query, dispute or accuracy check is open.

• Right to data portability

  Receive your data in a structured, machine-readable format that you can carry to another service.

• Right to object

  Object to processing based on legitimate interests or for direct marketing — we honour opt-outs immediately.

• Right to withdraw consent

  Where processing is based on consent (e.g. marketing), you may withdraw it at any time without affecting lawful processing carried out before withdrawal.

Opting out of marketing. You can unsubscribe at any time via the link in our emails. We may still send service-related messages necessary for the administration of your booking.

If you are not satisfied with our response, you have the right to lodge a complaint with the Office of the Data Protection Commissioner (ODPC) in Kenya, or with your local data-protection authority.

Most web browsers, and some mobile operating systems and applications, include a Do-Not-Track (“DNT”) feature or setting you can activate to signal your preference not to have data about your online browsing activities monitored and collected. At this stage no uniform technology standard for recognising and implementing DNT signals has been finalised. As such, we do not currently respond to DNT browser signals or any other mechanism that automatically communicates your choice not to be tracked online. If a standard for online tracking is adopted that we must follow in the future, we will inform you about that practice in a revised version of this notice.

For privacy-related questions, data-access requests, or concerns, please contact our Data Protection Officer:

General enquiries: [email protected], or reach us via our contact page.