GDPR Compliance
Last updated: 04 June 2026
JK Tour CRM, operated by Elyspace, respects the data-protection rights of all users, including those in the European Economic Area (EEA) and the United Kingdom. This page explains how we align our practices with the General Data Protection Regulation (GDPR) and how you can exercise your rights.
1. Our Commitment
We are committed to processing personal data lawfully, fairly, and transparently. We collect only the data we need to operate the Service, keep it secure, and use it strictly for the purposes described in our Privacy Policy.
2. Roles: Controller & Processor
For the account information you provide to us, JK Tour CRM acts as the data controller. For the client and traveller data you upload and manage inside the platform, you are the controller and JK Tour CRM acts as a data processor, handling that data on your instructions.
3. Lawful Basis for Processing
We process personal data on one or more of the following bases: performance of our contract with you, compliance with legal obligations, your consent (for optional features), and our legitimate interests in securing and improving the Service.
4. Your GDPR Rights
If you are in the EEA or UK, you have the right to access your data, to rectify inaccurate data, to erasure ("right to be forgotten"), to restrict or object to processing, to data portability, and to withdraw consent at any time. We will honour verified requests in line with applicable law.
5. Exercising Your Rights
To exercise any of these rights, email us at info@jktourcrm.com with a clear description of your request. We may ask you to verify your identity before we act, and we will respond within the timeframe required by law (generally one month).
6. Data Transfers
Where data is transferred or processed outside your region, we take appropriate safeguards to ensure it remains protected to a standard consistent with GDPR.
7. Sub-Processors
We use a limited set of trusted sub-processors (such as payment gateways, email/messaging providers, and hosting infrastructure) to deliver the Service. Each is selected for its security and compliance posture and is permitted to process data only as needed.
8. Data Breach Notification
In the unlikely event of a personal-data breach that poses a risk to your rights, we will notify the affected users and, where required, the relevant supervisory authority without undue delay.
9. Contact
For any GDPR or data-protection enquiry, please contact our team at info@jktourcrm.com.
JK Tour CRM is a product of Elyspace. For questions, email info@jktourcrm.com.