Century Travel Services
CanadaProudly Canadian
Legal Compliance

Privacy & Data Asset Policy

Transparency, security, and accountability. Learn how Century Travel Services protects your personal data and ensures your privacy across our global network.

Last Updated: May 14, 2026Version 2.1

1. Global Governance

Century Travel Services ("Century Travel Services", "we", "us", or "our") operates a global travel fulfillment platform. We take a holistic approach to data privacy, ensuring compliance with the highest international standards, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and Canada's Personal Information Protection and Electronic Documents Act (PIPEDA).

Our Data Commitment

  • We never sell your personal data to third-party brokers.
  • We use industry-standard encryption for all data at rest and in transit.
  • You retain absolute ownership over your travel profile and booking history.

2. Information Assets

To facilitate bespoke travel experiences, we collect several categories of information:

Identity & Verification

Legal names, passport numbers (for international travel), dates of birth, and gender as required by airlines and border control.

Transaction Data

Tokenized credit card details, billing addresses, and payment history. We do not store raw CVV codes.

Behavioral Insights

Destination preferences, travel frequency, dietary requirements, and accessibility needs used to personalize your tours.

Device Telemetry

IP address, browser fingerprints, and geolocation data used primarily for fraud prevention and security.

3. Data Stewardship

We share your data only when necessary to fulfill your travel contract. This involves sharing information with:

  • Global Distribution Systems (GDS): To facilitate airline and hotel inventory bookings.
  • Travel Suppliers: Individual airlines, hotels, and tour operators who require passenger manifest data.
  • Regulatory Authorities: Border security and customs agencies as required by international aviation laws.
  • Service Partners: Secure payment gateways and CRM systems used for client communication.

4. Your Digital Rights

Regardless of your location, Century Travel Services provides universal data rights to all clients:

Access:
You can request a full export of all personal data we hold about you at any time.
Erasure:
The "Right to be Forgotten" allows you to request the deletion of your account and profile.
Portability:
Receive your data in a structured, machine-readable format for transfer to other services.

Data Protection Inquiry

For all matters related to your privacy, data access requests, or to report a security concern, please contact our Data Protection Officer.

Email DPO
TICO-2856798 | IATA Registered Agent