Last updated: 10.1.2026

  1. Data Controller

The data controller responsible for the processing of personal data is:

GoWild Adventures Slovenia
Valerija Štolcer s.p.
Glavni trg 4, 2380 Slovenj Gradec
Email: office@slovenia-adventures.si

  1. Legal basis for processing

We process personal data in accordance with Regulation (EU) 2016/679 (General Data Protection Regulation – GDPR) and applicable national legislation.

Personal data is processed on the following legal bases:
• Consent (Article 6(1)(a) GDPR)
• Pre-contractual measures taken at the request of the data subject (Article 6(1)(b) GDPR)
• Legitimate interest related to communication, service improvement and website security (Article 6(1)(f) GDPR)

  1. Personal data we collect

We collect only data necessary to respond to enquiries and organise travel experiences, including:
• Name and surname
• Email address
• Country of residence
• Information submitted through enquiry or request forms
• Technical data (IP address, browser type, device information)

We do not collect sensitive personal data.

  1. Purpose of data processing

Personal data is processed exclusively for the following purposes:
• Responding to enquiries and requests for travel experiences
• Preparing personalised offers and itineraries
• Communication regarding availability, logistics and programme details
• Website functionality, analytics and security

Personal data is not used for automated decision-making or profiling.

  1. Data retention

Personal data is stored only for as long as necessary to fulfil the purpose for which it was collected:
• Enquiry data: up to 24 months after last communication
• Contractual data: in accordance with legal retention requirements

After this period, data is securely deleted or anonymised.

  1. Data sharing and third parties

Personal data may be shared only with:
• Trusted local partners strictly involved in delivering requested services
• IT and hosting providers necessary for website operation

All third parties process data under contractual confidentiality and GDPR compliance obligations.

Personal data is never sold or used for third-party marketing.

  1. Data transfers outside the EU

Personal data is not transferred outside the European Economic Area (EEA), unless appropriate safeguards in accordance with GDPR are in place.

  1. Data security

We apply appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse or alteration.

  1. Rights of data subjects

You have the right to:
• Access your personal data
• Rectify inaccurate or incomplete data
• Request erasure (“right to be forgotten”)
• Restrict processing
• Object to processing
• Request data portability
• Withdraw consent at any time (without affecting prior lawful processing)

Requests can be submitted to: office@slovenia-adventures.si

  1. Right to lodge a complaint

If you believe your data is processed unlawfully, you have the right to lodge a complaint with the competent supervisory authority:

Information Commissioner of the Republic of Slovenia
www.ip-rs.si

  1. Cookies

Information on the use of cookies is available in our Cookies Policy.