balticwayride.com

Privacy Policy

Last updated: [22 November 2025]

This Privacy Policy explains how we collect, use and protect personal data when you visit our websites and when you contact us about the Baltic Way Moto Tour project.

If you do not agree with this Policy, please do not submit personal data through our forms.

1. Who we are

The data controller is:

Tiziano SIA

Company registration no.: LV40103326890

Registered address: Riga Latvia

Email: tiziano@tizianoweb.com

This Privacy Policy applies in particular to:

  • balticwayride.com
  • balticway.lv (

and, where relevant, to related contact through tizianoweb.com.

2. Personal data we collect

We only collect personal data that you choose to give us or that is necessary to operate the website securely.

2.1. Rider / tour application form

When you fill in the Baltic Way Moto Tour application form, we may collect:

  • Full name
  • Email address
  • Country and city
  • Riding experience
  • Bike situation (own bike / need help with rental / passenger)
  • Preferred period for the tour
  • Food preferences / diet (e.g. vegan, vegetarian, no pork, no alcohol, allergies)
  • Preferred language for communication
  • Any information you write in the free message field

2.2. Hotels / partners form

When a hotel or accommodation partner fills in the Hotels / Partners form, we may collect:

  • Contact person name
  • Email address
  • Phone number
  • Hotel or property name
  • Address and country
  • Website
  • Any information written in the message field

2.3. Technical and log data

When you visit the website, our hosting provider and WordPress may automatically collect:

  • IP address
  • Browser type and version
  • Device type and operating system
  • Date and time of access
  • Pages visited and basic usage data
  • Error logs and security events

We do not currently use invasive tracking or behavioural profiling tools. If this changes in the future (for example, if we add analytics or advertising), this Policy will be updated.

3. Why we process your data and legal bases

We process personal data only for clear and legitimate purposes.

3.1. Responding to rider applications

  • Purpose: to read your tour request, understand your profile, and reply to you about possible participation in a Baltic Way Moto Tour preview or similar activity.
  • Legal basis: article 6(1)(b) GDPR – taking steps at your request before entering into a possible contract.

3.2. Managing hotel and partner enquiries

  • Purpose: to evaluate and manage potential collaboration with hotels and accommodation partners along the route.
  • Legal basis: article 6(1)(b) GDPR – taking steps at your request before entering into a possible contract.

3.3. Basic communication

  • Purpose: to reply to general questions sent through contact forms or email.
  • Legal basis: article 6(1)(f) GDPR – our legitimate interest in responding to people who contact us.

3.4. Website security and performance

  • Purpose: to keep the website online, detect errors and prevent abuse or attacks.
  • Legal basis: article 6(1)(f) GDPR – our legitimate interest in ensuring security and proper functioning of the site.

3.5. Food preferences / diet

Food preferences or restrictions can, in some cases, be related to health or religion. We collect this information only when you choose to provide it, so that we can take it into account when planning meals and stops during a possible tour.

  • Legal basis: article 9(2)(a) GDPR – your explicit consent, given by voluntarily including this information in the form.

We do not use your food preferences to profile you or for any purpose unrelated to the trip.

3.6. Future newsletters or updates

If in the future we offer a newsletter or send updates for marketing purposes, we will only do so with your explicit consent, and you will be able to unsubscribe at any time.

4. How long we keep your data

We do not keep personal data longer than necessary.

In general:

  • Tour applications: up to 2 years after the last meaningful contact, unless we need the data for administrative or legal reasons.
  • Hotel / partner enquiries: up to 3 years after the last meaningful contact.
  • Technical logs and security data: kept by the hosting provider for a limited period as needed for security and troubleshooting, typically from a few days up to several months.
  • Email correspondence: may be stored in our professional email system (Google Workspace) as long as it is reasonably useful for our business records or required by law.

You can request deletion of your data at any time, as explained in section 7.

5. Who can access your data

We do not sell your personal data.

We may share it only with:

  • Service providers (data processors):
    • Hosting provider: Hostinger (website and email infrastructure)
    • Email and productivity: Google Workspace / Gmail
    • Website platform and plugins: WordPress, WPForms and similar tools used to manage forms and the site
  • Professional advisors: only if necessary (e.g. accountant, legal advisor), and only to the extent needed.

These providers may process personal data only according to our instructions and only for the purposes described above.

If required by law, we may also have to share data with public authorities.

6. International transfers

Our service providers may store or process data in the European Economic Area (EEA) and, in some cases, in other countries.

When data is transferred outside the EEA, we aim to ensure appropriate safeguards, such as:

  • adequacy decisions by the European Commission, or
  • standard contractual clauses (SCCs) or equivalent mechanisms.

7. Your rights under GDPR

As a data subject in the European Union / EEA, you have the right to:

  • Access your personal data and obtain a copy
  • Rectify inaccurate or incomplete data
  • Erase your data (“right to be forgotten”) in the cases provided by law
  • Restrict processing in certain situations
  • Object to processing based on legitimate interest
  • Withdraw consent at any time, when processing is based on consent (for example, food preferences or future newsletters)
  • Data portability, where applicable

To exercise these rights, you can contact us at:

tiziano@tizianoweb.com

We may need to verify your identity before responding.

You also have the right to lodge a complaint with a Data Protection Authority, for example:

  • the authority in your country of residence, or
  • the authority in the country where the data controller is established.

8. Security

We take reasonable technical and organisational measures to protect personal data, including:

  • secure hosting with a reputable provider
  • use of professional email services
  • regular updates of the website software and plugins
  • restricted access to administration areas and mailboxes

No system is perfectly secure, but we aim to reduce risks to a reasonable level.

9. Third-party links

The website may contain links to external websites (for example, hotels, partners, YouTube or social media).

We are not responsible for how those websites handle personal data. We recommend that you read their own privacy policies.

10. Changes to this Policy

We may update this Privacy Policy from time to time, for example if we add new services, tools or forms.

The “Last updated” date at the top of the page indicates the latest version.

Significant changes may be communicated on the website.

11. Contact

For any questions about this Privacy Policy or about your personal data, you can contact:

Tiziano SIA

Email:tiziano@tizianoweb.com