Privacy Policy

The data controller is [operating entity — to be completed], registered at [registered office address]. For any privacy question, contact us at info@varamedia.be.

Account data: name, email address, password (stored hashed), language preference, and role.

Booking data: boats viewed and booked, dates, passenger counts, messages, and — where a licence is required — boating-licence and qualification details.

Payment data: handled by our payment provider, Stripe. We receive confirmation and limited transaction metadata, not full card numbers.

Usage data: device, browser, IP address, pages viewed, and similar technical information collected through cookies and comparable technologies.

To provide the Platform and process bookings — performance of a contract (GDPR Art. 6(1)(b)).

To meet legal, tax, and safety obligations — legal obligation (Art. 6(1)(c)).

To prevent fraud, secure the Platform, and improve our services — legitimate interests (Art. 6(1)(f)).

To send marketing messages where permitted — consent (Art. 6(1)(a)), which you can withdraw at any time.

We share data with processors that help us run the Platform, including Supabase (database, authentication, storage), Stripe (payments), Brevo (transactional email), Vercel and Cloudflare (hosting and delivery), and AI providers used for content generation. Each acts on our instructions under a data-processing agreement.

We share booking-related data between the Renter and the Owner as needed to complete a rental. We do not sell personal data.

Some providers may process data outside the European Economic Area. Where they do, transfers are protected by appropriate safeguards such as the European Commission’s Standard Contractual Clauses.

We keep personal data only as long as needed for the purposes above and to meet legal retention obligations (for example, accounting and tax records). Booking and transaction records are typically retained for the period required by Italian law; account data is deleted or anonymised after your account is closed, subject to those obligations.

Subject to applicable law, you have the right to access, rectify, erase, restrict, or object to the processing of your personal data, the right to data portability, and the right to withdraw consent at any time.

To exercise your rights, contact info@varamedia.be. You also have the right to lodge a complaint with the Italian Data Protection Authority (Garante per la protezione dei dati personali, garanteprivacy.it).

We use cookies and similar technologies that are strictly necessary to run the Platform (for example, to keep you signed in and to remember your language), and, with your consent, cookies for analytics and measurement. You can manage non-essential cookies through your browser and any cookie controls we provide.

We use technical and organisational measures to protect personal data, including encrypted connections, access controls, and trusted infrastructure providers. No system is perfectly secure, so we cannot guarantee absolute security.

The Platform is not intended for people under 18, and we do not knowingly collect their personal data.

We may update this Policy from time to time. Material changes will be notified through the Platform or by email, and the revision date above will be updated.

For any privacy question or request, contact info@varamedia.be.