Privacy Policy

01Information We Collect

We collect information you provide directly when making a booking or contacting us, including:

• Identity data: Full name, date of birth, nationality, passport or ID number.
• Contact data: Email address, phone number, WhatsApp number.
• Booking data: Arrival and departure dates, room type, package selection, dietary requirements, surf experience level.
• Payment data: Payment confirmation references. We do not store full card details — payments are processed via secure third-party providers.
• Communication data: Any messages sent to us via email, WhatsApp, or contact forms.

We also collect limited technical data automatically when you visit our website:

• IP address, browser type, device type, pages visited, and time spent — via Google Analytics (anonymised).

02How We Use Your Information

We use your data solely for legitimate purposes connected to your stay:

• Processing and confirming your booking.
• Communicating pre-arrival details, itinerary, and logistics.
• Providing surf coaching and accommodation services tailored to your level and preferences.
• Complying with Moroccan legal and immigration requirements (guest registration).
• Sending post-stay follow-ups or review requests (you may opt out at any time).
• Improving our website and services through anonymised analytics.

We do not sell, rent, or trade your personal data to third parties for marketing purposes.

03Data Sharing

We share your data only where necessary:

• Payment processors: To securely handle your deposit or full payment.
• Moroccan authorities: Guest information may be required by local law (police registration).
• Service providers: Email or messaging tools used to communicate with you. These providers process data on our behalf under confidentiality obligations.

All third parties are required to handle your data securely and only for the stated purpose.

04Data Retention

We retain your personal data for as long as necessary to fulfil the purposes above:

• Booking and guest records are kept for up to 3 years for accounting and legal compliance.
• Communication records are retained for 12 months after your stay.
• You may request deletion of your data at any time (subject to legal retention requirements).

05Cookies

Our website uses cookies to:

• Measure traffic and usage patterns via Google Analytics (analytics cookies).
• Remember your preferences during a session (functional cookies).

You can disable cookies in your browser settings. Disabling analytics cookies will not affect your ability to browse or book.

06Your Rights

Depending on your location, you may have the right to:

• Access the personal data we hold about you.
• Correct inaccurate or incomplete data.
• Delete your data (where no legal obligation requires us to keep it).
• Object to processing for direct marketing.
• Portability — receive your data in a structured, machine-readable format.

To exercise any of these rights, contact us at info@greenwavesmorocco.com. We will respond within 30 days.

07Security

We take reasonable technical and organisational measures to protect your data from unauthorised access, loss, or misuse. Our website uses HTTPS encryption. Access to guest data is restricted to staff who need it to deliver your stay.

No method of transmission over the internet is 100% secure. We cannot guarantee absolute security, but we are committed to handling your data with care.

08Changes to This Policy

We may update this policy from time to time. The current version will always be posted on this page with the date of last revision. Material changes will be communicated to guests with existing bookings.

09Contact

For any privacy-related questions or requests: