Privacy Policy

February 23, 2026 2026-03-10 15:03

Privacy Policy 

Last updated: March 2026 

1. Introduction 

This Privacy Policy explains how personal data is collected, used, and protected when you use this website to browse and book experiences in Dubrovnik. 

We are committed to protecting your personal data and handling it responsibly in accordance with the General Data Protection Regulation (EU) 2016/679 (GDPR) and applicable Croatian data protection laws. 

2. Data Controller 

The data controller responsible for processing personal data collected through this website is: 

Demaco d.o.o. (operating as Intours DMC) 
Ulica Matice hrvatske 21 
21204 Dugopolje 
Croatia 

OIB: 21999175656 
Registered at the Commercial Court in Split (MBS 060276960) 

Represented by: Ante Lacman, Director 

Email: experiences@intours-dmc.hr 

3. Personal Data We Collect 

When you use this website or make a booking, we may collect the following personal data: 

  • Full name 
  • Email address 
  • Phone number 
  • Booking details such as selected tours, dates, number of participants, and food restrictions where applicable 

We only collect personal data that is necessary to process your booking and provide the requested services. 

4. Purpose of Data Processing 

Your personal data may be processed for the following purposes: 

  • processing and confirming tour bookings 
  • providing information related to booked services 
  • communicating booking confirmations and tour details 
  • responding to inquiries 
  • fulfilling legal and accounting obligations 

Your personal data will not be used for marketing purposes without your explicit consent. 

5. Legal Basis for Processing 

Personal data is processed based on the following legal grounds: 

  • Performance of a contract – to process and deliver the services you have booked 
  • Legal obligations – for accounting and regulatory compliance 
  • Legitimate interests – to operate and improve our services and website functionality 

6. Payment Processing 

All payments on this website are securely processed by Stripe, a third-party payment provider. 

When making a payment, your payment details (including credit card information) are processed directly by Stripe. We do not store or have access to your full credit card details. 

Stripe processes payment data in accordance with its own privacy and security policies. For more information, please review Stripe’s Privacy Policy: 
https://stripe.com/privacy 

7. Sharing of Personal Data 

Personal data may be shared only when necessary for the delivery of the booked services. 

This may include sharing relevant booking information with: 

  • local guides 
  • transportation providers 
  • tour operators or activity providers involved in delivering the excursion 

Personal data may also be shared with service providers such as payment processors when required to process transactions. 

We do not sell or rent personal data to third parties. 

8. Cookies and Website Analytics 

This website may use cookies to ensure proper functionality and improve user experience. 

Cookies may include: 

  • essential cookies required for website functionality 
  • analytics cookies used to understand how visitors interact with the website 

We may use analytics tools (such as Google Analytics) to collect information about how visitors use the website. This may include data such as: 

  • IP address 
  • browser type and version 
  • device type 
  • approximate location 
  • pages visited 
  • time spent on the website 

This information is used only to improve website functionality and user experience. 

You can manage or disable cookies through your browser settings. 

9. Data Retention 

Personal data will be retained only for as long as necessary to: 

  • fulfill booking and service obligations 
  • comply with legal, accounting, and regulatory requirements 

After this period, personal data will be securely deleted or anonymized. 

10. Data Security 

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, misuse, loss, or disclosure. 

11. Your Rights Under GDPR 

Under the GDPR, you have the following rights regarding your personal data: 

  • the right to request access to your personal data 
  • the right to request correction of inaccurate data 
  • the right to request erasure of your personal data 
  • the right to request restriction of processing 
  • the right to object to processing in certain circumstances 
  • the right to request data portability 

To exercise any of these rights, please contact us at: 

experiences@intours-dmc.hr 

You also have the right to lodge a complaint with the Croatian Personal Data Protection Agency (AZOP) if you believe your data protection rights have been violated. 

12. Changes to This Privacy Policy 

We may update this Privacy Policy from time to time to reflect legal or operational changes. The latest version will always be available on this website. 

13. Contact 

If you have any questions regarding this Privacy Policy or the processing of your personal data, please contact: 

Demaco d.o.o. 
Operating as Intours DMC 
Dubrovnik, Croatia 

Email: experiences@intours-dmc.hr