Privacy & Cookie Policy

Privacy and Cookie Policy

Last updated: 16 january 2026

1. Data Controller

Pursuant to Regulation (EU) 2016/679 (GDPR), the Data Controller of personal data is:

Pajarito Holidays SL
Address: C. del Valle Menéndez, 16 – 38650 Arona, Santa Cruz de Tenerife, Spagna
Email: info@pajaritoholidays.com

2. Types of Data Processed

This website and related channels (including advertising campaigns and external forms) may collect the following personal data:

  • First and last name
  • Email address
  • Phone number
  • Answers to questionnaires or forms
  • IP address
  • Browsing and website usage data
  • Technical data collected through cookies and similar technologies

Data may be provided voluntarily by the user or collected automatically while using the website and related services.

3. Purpose of Data Processing

Personal data are processed exclusively for the following purposes:

  • Ensuring the proper functioning of the website
  • Managing information and contact requests
  • Providing requested services
  • Managing bookings and related communications
  • Sending informational and commercial communications related to the services offered
  • Analyzing user preferences and needs to provide personalized proposals
  • Performing statistical analysis and improving services
  • Complying with legal obligations
  • Enabling interaction with social networks, where applicable
  • Protecting the Data Controller’s rights in legal proceedings

4. Data Processing in Advertising Campaigns and Forms

Personal data collected through advertising campaigns on third-party platforms (such as Meta/Facebook and Instagram), as well as through forms and questionnaires, will be processed to:

  • Manage information requests
  • Contact the user for informational and commercial purposes
  • Send personalized proposals related to the services offered
  • Analyze responses provided in a non-automated manner

Collected data may include name, email address, phone number, and questionnaire responses.

5. Legal Basis for Processing

Personal data are processed based on one or more of the following legal grounds:

  • Explicit consent of the user
  • Performance of a contract or pre-contractual measures
  • Compliance with legal obligations
  • Legitimate interest of the Data Controller

Consent may be withdrawn at any time.

6. Processing Methods

Data processing is carried out using electronic and telematic tools, with organizational methods strictly related to the stated purposes.

Appropriate technical and organizational security measures are adopted to prevent unauthorized access, disclosure, alteration, or destruction of personal data.

7. Nature of Data Provision

Providing personal data is voluntary.
Failure to provide certain data may prevent contact or the provision of requested services.

Sending emails voluntarily to the addresses listed on the website implies the acquisition of the sender’s email address and any personal data included in the message.

8. Data Communication and Disclosure

Personal data will not be disclosed or sold.

Data may be communicated only to:

  • Authorized internal personnel
  • Technical service providers and collaborators (hosting, website maintenance, IT services, advertising platforms)
  • Public authorities when required by law

9. Place and Duration of Data Storage

Data are processed at the Data Controller’s operational offices and in any other locations where parties involved in processing are located.

Data will be stored for the time necessary to fulfill the purposes for which they were collected or until the user requests deletion, unless longer retention is required by law.

10. Data Subject Rights

Users may exercise the following rights at any time:

  • Obtain confirmation as to whether personal data concerning them exist
  • Know the origin, content, and purposes of processing
  • Request rectification or updating of data
  • Request deletion of data (“right to be forgotten”)
  • Request restriction of processing
  • Object to processing for legitimate reasons
  • Request data portability

Requests should be sent to:
📧 info@pajaritoholidays.com

11. Additional Information and Legal Defense

System usage and maintenance data may be used to ensure website security and, where necessary, for the establishment, exercise, or defense of legal claims.

The Data Controller may provide additional information regarding personal data processing upon request.

12. Changes to This Policy

The Data Controller reserves the right to modify this Privacy and Cookie Policy at any time.
Users are encouraged to review this page periodically.

Cookie Policy

This website uses cookies to ensure proper functioning and improve the user’s browsing experience.

Cookies are small text files stored on the user’s device.

Users can manage, block, or delete cookies through their browser settings. Disabling cookies may affect website functionality.

Cookies Used on This Website

Necessary Cookies

  • PHPSESSID
    Native PHP cookie used to manage the user session. It is a session cookie and is deleted when the browser is closed.
  • cookieyes-consent
    Set by CookieYes to store the user’s consent preferences. It does not store personal data.

Analytics Cookies

  • _ga
    Google Analytics cookie used to calculate visitor, session, and campaign data anonymously.
  • _gid
    Google Analytics cookie used to store anonymous information about website usage.
  • _gat_gtag_UA_189031208_1
    Google cookie used to distinguish users and limit request rates.
  • _ga_R2V45K1B30
    Google Analytics cookie used to maintain session state.

Functional Cookies

  • pll_language
    Used by Polylang to remember the language selected by the user.

Cookie Acceptance

By accepting the cookie banner or continuing to browse the website, the user consents to the use of cookies in accordance with this policy.