Privacy Policy

Who We Are

Our website address is: https://bibletourlouvre.com.

Bible Tour Louvre is a subsidiary of Quirky Little Tour Company, owned and operated by Macy Mah.

Legal registration number: SIRET: 809 376 726 00026

What Personal Data We Collect and Why

Booking & Contact Forms

When you book a tour or request a quote, we collect your name, email address, phone number, preferred language, and any special requests or accessibility needs you share with us.

When you use our contact form, we collect your name, email address, phone number (optional), and message.

This information is used solely for:

• Scheduling and managing your tour
• Communicating with you before, during, and after your tour
• Sharing relevant details with your assigned guide

From time to time, we may WhatsApp/email you after your tour as a follow-up or simply because we miss you!

We will not sell or share your information with third-party companies for any reason.

Payment Information

Payment transactions are handled by Stripe. We do not store your credit card details on our servers. Stripe is a PCI-compliant payment processor that collects and handles your payment information in a private and secure manner.

User Accounts

Account Registration

You may create an account to manage your bookings. When you register, we collect your first name, last name, and email address. Your email address serves as your unique identifier and login credential.

Email Verification

After registration, we send a verification email containing a unique, time-limited link. This token is stored securely and expires after 24 hours. Verification is required to access your account and view your bookings.

Automatic Booking Linkage

When your email is verified, any existing tour bookings or custom tour requests made with the same email address are automatically linked to your account. This allows you to view and manage your booking history. This linkage is based solely on email address matching and does not involve third-party data sources.

Account Data

Your account stores your role (client or guide), email verification status, and login history (last login date). Guide accounts may additionally be linked to a public guide profile visible on the website.

You may request deletion of your account at any time by contacting us. Upon deletion, the link between your account and your bookings will be removed, though booking records themselves may be retained for legal and operational purposes.

Cookies

Our website uses a minimal number of cookies, strictly for functionality:

• Session cookie — Keeps your browsing session active while you use the site. It expires when you close your browser or after 30 minutes of inactivity.
• CSRF token — A security cookie that protects form submissions against cross-site request forgery. It contains no personal data.
• Authentication cookie — If you log in to your account, a session cookie identifies your authenticated session. It contains no personal data beyond a session identifier.

We do not use advertising or marketing cookies.

External Resources

Our site loads the following external resources to display fonts and icons:

• Google Fonts — Used for page typography. Google may set cookies when fonts are loaded. See Google's Privacy Policy.
• Font Awesome (CDN) — Used for icons throughout the site.

These services may collect limited technical data (such as your IP address) when your browser requests their resources.

Analytics

Currently, we do not use any analytics or tracking services on our website. Should this change in the future, we will update this privacy policy accordingly.

Who We Share Your Data With

Your data may be shared with our payment provider:

• Stripe — Processes payments securely. Stripe's Privacy Policy

Your booking details (name, phone, special requests) may be shared with your assigned tour guide for the purpose of providing your tour.

We use Gmail (Google) to send transactional emails such as booking confirmations and follow-ups.

How Long We Retain Your Data

Booking information is retained for as long as necessary to fulfil our service obligations and comply with legal requirements.

Incomplete booking drafts are automatically deleted after 30 days.

Contact form submissions are retained to allow us to respond to and follow up on your inquiries.

User account data is retained for as long as your account is active. Email verification tokens expire after 24 hours and are invalidated upon use.

Your Rights Over Your Data

Under the GDPR, you have the right to:

• Request a copy of the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your personal data

This does not include data we are obliged to keep for administrative, legal, or security purposes.

If you have an account, you may request its deletion by contacting us. We will remove your account and unlink any associated bookings.

Data Security

Our website is served over HTTPS with HSTS enabled, ensuring all data transmitted between your browser and our servers is encrypted. We follow industry best practices to protect your information.

Contact Information

We work closely to comply with the GDPR and will strive to do our best to follow the guidelines.

Should you have any questions or concerns about our privacy policy, please do not hesitate to contact us:

• info@bibletourlouvre.com
• WhatsApp