Privacy Policy

Privacy Policy — WOW Mauritius

Last updated: 25 August 2025

1) Who we are

WOW Mauritius (“we”, “us”, “our”) publishes travel news, guides and resources about Mauritius at wowmauritius.com (the “Site”). We are the data controller for personal data collected through the Site and related channels (contact forms, newsletters, comments, and our social profiles when we link here).

Contact: info@wowmauritius.com
You can also contact your local data protection authority (see Section 12).

Mauritius’ Data Protection Act 2017 (DPA 2017) governs personal data processing in Mauritius and aligns closely with GDPR principles. dataprotection.govmu.orgdlapiperdataprotection.com

2) What we collect

Information you provide

• Contact form and email messages (name, email, message content)
• Newsletter sign-ups (email and optional name)
• Comments or feedback you post on the Site or our social pages (if linked here)

Information collected automatically

• Device and usage data (browser type, pages viewed, time on page)
• Approximate location (country/city derived by analytics)
• Cookies and similar technologies (see Section 6)

Information from partners

• If you click an affiliate link (e.g., accommodation or tours), the partner may record that a visit or booking came from our Site so any commission can be assigned. We don’t receive your full booking details unless the partner shares them with us for customer service or fraud prevention.

3) Why we use your data (purposes) & our legal bases

We process personal data to:

• Publish and improve our content, keep the Site secure, and respond to messages (legitimate interests / contract performance where applicable).
• Send newsletters you request (consent; you can unsubscribe anytime).
• Measure readership and improve user experience via analytics (consent in the EEA/UK for non-essential cookies; legitimate interests elsewhere where allowed). ICOEuropean Union
• Comply with laws, handle fraud and security (legal obligation / legitimate interests).

Where we rely on consent (for example, analytics or marketing cookies in the EEA/UK), you can withdraw it at any time from the cookie banner or via your browser settings (see Section 6). ICO

4) Analytics (GA4)

We use Google Analytics 4 (GA4) to understand how readers use our Site. According to Google, GA4 does not log or store IP addresses and offers region-specific privacy controls (e.g., disabling granular location/device data and Google Signals) which we may enable. GA4 also provides data-retention controls (typically 2–14 months for user-/event-level data).

• We configure GA4 to respect consent in the EEA/UK through our cookie banner before any non-essential tags fire.
• You can also install Google’s Analytics opt-out add-on and/or adjust your ad personalization settings with Google.
• personalization settings with Google. Google Támogatás

5) Affiliate links & sponsored content

Some articles contain affiliate links (e.g., accommodations, flights, activities). If you book or buy through these links, we may earn a commission at no extra cost to you. Affiliate partners may set a cookie or use an ID in the link only after consent where required; we label affiliate/sponsored content clearly on the page. (See our separate Affiliate Disclosure for full details.)

6) Cookies and similar technologies

We use cookies to:

• run the site (security, load balancing, basic preferences),
• measure audience and performance (analytics),
• attribute affiliate traffic.

Consent: In the EU/EEA and UK, non-essential cookies (analytics/marketing) require prior consent and must not fire until you opt in. We show a banner with choices; you can change your consent anytime. (Essential cookies run regardless because the site needs them.) European UnionICO

What counts as consent and how we explain it follows UK PECR/GDPR and EU ePrivacy guidance (clear info, affirmative action, and easy withdrawal). ICO+1

If you prefer, you can block or delete cookies in your browser; some features may not work as intended.

7) How we share information

We share data only with:

• Service providers (hosting, security, email/newsletter tools, analytics) under contract;
• Affiliate networks/partners when you click their links (to assign commission);
• Authorities where required by law or to protect our rights, users, or the public.

We do not sell your personal information. If we ever engage in activity that could be considered “selling” or “sharing” personal information under California law, we will update this Policy and provide a “Do Not Sell or Share My Personal Information” link. cppa.ca.gov

8) International transfers

We are based in Mauritius, but some providers process data in other countries. Where applicable, we use legal safeguards (for example, standard contractual clauses or equivalent mechanisms offered by providers) to protect your information when it is transferred internationally.

9) How long we keep data

We keep personal data only as long as needed for the purposes above:

• Contact emails and form entries: typically up to 24 months after last interaction (unless we must keep them longer for legal reasons).
• Newsletter data: until you unsubscribe, then retained only to honor your opt-out.
• Analytics data: per GA4’s 2–14 month retention windows (aggregated reporting may last longer without identifying you).

10) Your privacy rights

Under Mauritius DPA 2017 you have rights such as access, rectification, erasure, objection, and complaint to the Data Protection Commissioner. dataprotection.govmu.org

Under the EU/EEA GDPR (and UK GDPR), you may have rights to access, rectification, erasure, restriction, portability, and objection, and to withdraw consent. You also have the right to lodge a complaint with your local authority (e.g., an EU DPA or the UK ICO). European CommissionGDPR

California (CCPA/CPRA): California residents have rights including to know, to delete, and to opt out of sale/sharing of personal information, and non-discrimination for exercising rights; enforcement is overseen by the California Privacy Protection Agency (CPPA). California DOJcppa.ca.gov

How to exercise your rights: email info@wowmauritius.com. We will verify requests where required and respond within the applicable legal timeframes.

11) Children’s privacy

Our content is intended for general audiences and is not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe a child provided personal data on our Site, please contact us so we can delete it promptly.

12) Questions or complaints

• Contact us: info@wowmauritius.com
• Mauritius: You may lodge a complaint with the Data Protection Office (Data Protection Commissioner), including via email at dpo@govmu.org or by post (SICOM Tower, Ebène), using the official forms. dataprotection.govmu.org
• EU/EEA: Contact your local data protection authority. European Commission
• UK: Information Commissioner’s Office (ICO). ICO
• California: California Privacy Protection Agency. cppa.ca.gov

13) Security

We use reasonable technical and organizational measures (HTTPS, access controls, backups, and provider due diligence) to protect personal data. No method of transmission or storage is 100% secure; we continually improve our safeguards.

14) Changes to this policy

We’ll update this page when our practices or laws change and adjust the “Last updated” date. For material changes, we may provide additional notice (e.g., banner or email if you’re subscribed).