Privacy Policy

1. Introduction

Azurion ("we," "us," or "our") is committed to handling personal data responsibly. This Privacy Policy describes what information we collect through our website and charter enquiry process, how it is used, and the rights available to individuals whose data we hold.

Our operations are based in Phuket, Thailand. Data processing is carried out in accordance with Thailand's Personal Data Protection Act B.E. 2562 (PDPA) and, where applicable, with EU General Data Protection Regulation (GDPR) standards for guests based in the European Union.

For questions about this policy, contact us at [email protected].

2. Data We Collect

2.1 Information Provided Directly

• Full name
• Email address
• Phone number (optional)
• Message content submitted via the contact form
• Charter preferences (dates, group size, route preferences)

2.2 Information Collected Automatically

• Browser type and version
• Pages visited and time spent on each page
• Referring URL
• Approximate geographic region (country/city level)
• Device type (desktop, mobile, tablet)

2.3 Legal Basis for Processing

We process personal data on the following bases: your consent (for analytics and marketing cookies); the performance of a contract or steps taken prior to entering into one (for charter booking); our legitimate interest in operating and improving our service; and compliance with applicable legal obligations.

2.4 Retention Periods

Enquiry correspondence is retained for up to 24 months. Booking records are retained for 7 years for financial and legal compliance purposes. Analytics data is retained in aggregate form and not linked to individual identities after 14 months.

3. How We Use Your Data

• Responding to charter enquiries and confirming bookings
• Planning and preparing your charter departure
• Communicating operational updates (weather, schedule changes)
• Improving the website based on aggregate usage patterns
• Complying with Thai tax and maritime record-keeping requirements

We do not use personal data for automated decision-making or profiling. We do not sell personal data to third parties.

4. Third-Party Services

We use the following services that may process personal data on our behalf:

• Google Analytics — website usage analytics. Data is anonymised before transmission where possible.
• Google Maps — embedded map for location display. Subject to Google's Privacy Policy.
• Email hosting provider — for processing and storing email enquiries.

These services operate under their own privacy policies. We select providers whose data handling standards align with ours.

5. Data Security

We implement reasonable technical and organisational measures to protect personal data from unauthorised access, alteration, or disclosure. These include encrypted connections (HTTPS) for web communications and restricted access controls for internal systems.

In the event of a data breach that poses a risk to individuals' rights, we will notify affected parties and, where required, the relevant supervisory authority within the timeframes required by applicable law.

6. Cookies

Our website uses cookies for basic functionality and optional analytics. For a full description of the cookies we use and how to manage your preferences, please see our Cookie Policy.

7. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

• Access — request a copy of personal data we hold about you
• Rectification — request correction of inaccurate or incomplete data
• Erasure — request deletion of personal data in certain circumstances
• Portability — receive your data in a structured, machine-readable format
• Object — object to processing based on legitimate interest
• Withdraw consent — at any time, for processing based on consent

To exercise any of these rights, contact us at [email protected]. We aim to respond within 30 days.

EU residents may also lodge a complaint with their national data protection authority if they believe their rights have not been upheld.

8. Third-Party Links

Our website may contain links to external sites. We are not responsible for the privacy practices of those sites and encourage you to review their policies independently.

9. Children's Privacy

Our website and services are intended for individuals aged 18 and over. We do not knowingly collect personal data from minors. If you believe a minor has submitted data to us, please contact us so we can remove it.

10. Policy Updates

This policy may be updated periodically to reflect changes in our practices or applicable law. The "Last Updated" date at the top of this page indicates when the most recent revision was made. Continued use of the website following an update constitutes acceptance of the revised policy.

11. Contact

Data Controller: Azurion
18/6 Chalong Bay Road, Mueang Phuket, Phuket 83130, Thailand
Email: [email protected]