Privacy Policy

    Last Updated: January 29, 2026

    At Thriveor Concierge Group, we value your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, and safeguard your data when you visit our website.

    Information We Collect

    Information You Provide

    When you use our contact forms or inquiry services, we may collect:

    • Name and contact information (email, phone number)
    • Travel preferences and destinations of interest
    • Any other information you choose to provide in your inquiry

    Information Collected Automatically

    We use Google Analytics to understand how visitors interact with our website. This includes:

    • Pages visited and time spent on each page
    • Device type, browser, and operating system
    • Geographic location (country/city level)
    • Referral source (how you found our website)
    • Anonymous user behavior and navigation patterns

    How We Use Your Information

    We use the information we collect to:

    • Respond to your travel inquiries and provide personalized service
    • Improve our website and understand user preferences
    • Analyze website traffic and optimize user experience
    • Communicate with you about our services (with your consent)
    • Comply with legal obligations

    Cookies and Tracking Technologies

    What Are Cookies?

    Cookies are small text files stored on your device that help us improve your browsing experience and understand how you interact with our website.

    Cookies We Use

    • Essential Cookies (First-Party): Required for the website to function properly. These are always active and include cookies for remembering your cookie consent choice and maintaining session state. Essential cookies do not require consent under GDPR as they are strictly necessary for the service.
    • Analytics Cookies (Google Analytics): Help us understand visitor behavior and improve our website. These are only activated if you accept cookies via our consent banner.

    Bot and Crawler Access

    Search engine crawlers, AI assistants, and other automated services can access our public content without cookie consent requirements. We respect Global Privacy Control (GPC) signals and automatically honor privacy preferences communicated through this standard.

    Managing Cookies

    You can control cookie preferences through our consent banner that appears on your first visit. You can also manage cookies through your browser settings. Note that disabling cookies may affect website functionality.

    Third-Party Services

    Google Analytics

    We use Google Analytics to analyze website traffic. Google Analytics collects information anonymously and reports website trends without identifying individual visitors. You can opt-out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on.

    Geo-Location Detection

    We use a third-party IP geolocation service to detect your approximate country location. This is used solely to display a personalized welcome banner suggesting region-specific content (e.g., UK or Gulf region travel information). We do not store your IP address or location data. You can dismiss the banner at any time, and your preference is remembered for 7 days using browser storage.

    Data Security

    We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. However, no internet transmission is completely secure, and we cannot guarantee absolute security.

    Sensitive Document Storage

    As a travel concierge service, we securely store sensitive travel documents on behalf of our clients to facilitate seamless travel planning and booking. This includes:

    • Passport copies (bio-data page)
    • Visa documents and travel permits
    • Travel insurance certificates
    • Other travel-related documentation

    Document Protection Measures

    These documents are protected through:

    • Encryption: All documents are encrypted at rest and in transit using industry-standard protocols
    • Access Controls: Only authorized staff members can access documents, with all access logged for security audits
    • Secure Storage: Documents are stored in secure, access-controlled backend infrastructure with regular security updates
    • Audit Trail: Every access to sensitive documents is logged with timestamp, user, and action details

    Retention and Deletion

    Travel documents are retained for the duration of your booking plus 2 years for legal and operational compliance. After this period, documents are securely deleted. You may request earlier deletion of your documents at any time by contacting us, subject to any legal obligations we may have to retain certain records.

    Compliance

    Our document storage practices comply with the Kenya Data Protection Act (ODPC) and the EU General Data Protection Regulation (GDPR). We obtain explicit consent before storing any sensitive documents and provide you with full control over your data through our consent management system.

    Your Rights

    Depending on your location, you may have the following rights:

    • Access: Request a copy of the personal data we hold about you
    • Correction: Request correction of inaccurate personal data
    • Deletion: Request deletion of your personal data
    • Opt-out: Decline or withdraw consent for data collection and marketing communications
    • Data Portability: Request transfer of your data to another service provider

    To exercise any of these rights, please contact us using the information below.

    Children's Privacy

    Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

    International Data Transfers

    Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy.

    Changes to This Privacy Policy

    We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will post the updated policy on this page with a revised "Last Updated" date. We encourage you to review this policy periodically.

    Contact Us

    If you have any questions about this Privacy Policy or how we handle your personal information, please contact us:

    Thriveor Concierge Group

    Email: concierge@thriveor.co.ke

    Phone: +254 721 864 144

    WhatsApp: +254 721 864 144

    Location: Mombasa, Kenya

    GDPR Compliance (EU Residents)

    If you are a resident of the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR), including the right to lodge a complaint with a supervisory authority if you believe your rights have been violated.

    CCPA Compliance (California Residents)

    If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect, the right to delete your personal information, and the right to opt-out of the sale of personal information (we do not sell personal information).

    We Value Your Privacy

    We use cookies to enhance your browsing experience and analyze our traffic. You can customize which cookies you accept or accept all for the best experience. Learn more