Privacy Policy

1. Data controller

Museum Quick Aswan Desk LLC, registered with GAFI under registry number 531672 and VAT/Tax ID 826-413-758 (ETA), operates this website and the planning office at 9 Corniche el-Nil Street, Aswan, Aswan Governorate 81511, Egypt. For privacy inquiries contact [email protected] or telephone +20 97 2314 8650. Hana El-Sayed serves as correspondence lead for data subject requests during office hours Monday through Saturday 08:00–18:00.

2. Scope

This policy covers personal data collected through museum-quick.cyou, email, telephone, and walk-in forms at our Corniche office. It does not govern third-party sites we link to—such as official Antiquities Administration ticket portals—or independent felucca captains and convoy operators you engage after receiving our planning materials.

3. Categories of data we collect

Contact form submissions: name, email address, phone number, selected planning tier (nile-explorer, island-runner, aswan-coordinator), free-text travel dates and notes, and consent checkbox timestamp.

Email and phone correspondence: message content, attachments you send voluntarily, and metadata needed to reply (sender address, time received).

Payment records: payer name, invoice address if provided, payment method category (transfer, card, cash), amount, and ETA invoice number. We do not store full card numbers—card processing occurs on our office terminal under acquirer rules.

Walk-in visitor log (optional): name and contact method if you request callback while editors are in field verification.

We do not collect sensitive categories such as health data unless you voluntarily mention mobility needs in planning notes—in that case we treat the information as necessary for itinerary customization and restrict access to assigned editors only.

4. Purposes and legal bases

We process data to: (a) respond to planning inquiries and deliver purchased route sheets; (b) issue VAT-compliant invoices under Egyptian tax law; (c) provide pre-travel email support tied to your tier; (d) maintain internal records of site verification correspondence when your question triggers an editor update. Legal bases include contract performance (delivering plans you purchase), legal obligation (tax records retention), and legitimate interest (replying to unsolicited B2B trade inquiries separately flagged).

We do not use your data for automated profiling or sell lists to tour operators. Marketing emails about seasonal schedule bulletins are sent only if you opt in after plan delivery—we never opt you in by default from the contact form alone.

5. Cookies and tracking

This website does not set analytics cookies, advertising pixels, or third-party tracking scripts. We do not use Google Analytics, Meta Pixel, or similar tools. The contact form uses client-side JavaScript to simulate submission delay and redirect to thank-you.html; no persistent cookie is required for that flow. Browser local storage is not used. If future technical maintenance introduces strictly necessary session cookies, we will update this section with names and retention periods.

6. Recipients and processors

Access is limited to Museum Quick staff with role need: correspondence editors, route planners, and accounting for invoices. Hosting and email mailbox providers act as processors under contract confidentiality terms. We do not transfer planning content to Nile cruise lines, hotels, or guide associations without your explicit instruction in writing (for example, when you ask us to introduce a licensed guide via email CC).

Data may be disclosed when required by Egyptian law enforcement or court order. We document governmental requests and notify affected clients when legally permitted.

7. International transfers

Primary storage and processing occur in Egypt. If you email us from abroad, your message transits your provider's infrastructure before reaching our mailbox—standard email transfer risks apply. We do not routinely export databases outside Egypt; backup media remain at our Corniche office or Egyptian datacentre providers.

8. Retention periods

Contact form submissions tied to completed plans: retained seven years from invoice date to satisfy ETA tax audit requirements, then securely deleted. Inquiries that do not convert to paid plans: deleted eighteen months after last correspondence unless you request earlier erasure. Email threads containing site verification photos: retained three years for editorial accuracy, then archived offline. Walk-in logs: destroyed quarterly if no follow-up occurred.

9. Security measures

Office workstations use password login and disk encryption where supported. Physical access to Corniche el-Nil premises is limited to staff. Invoices and route PDFs transmit by TLS-encrypted email. We train staff not to copy planning notes to personal messaging apps. No security system is perfect; report suspected misuse to [email protected] immediately.

10. Your rights

Under applicable Egyptian personal data protections and practical business standards, you may request: access to personal data we hold about you; correction of inaccurate contact details; deletion when no legal retention applies; restriction of processing while disputes are resolved; copy of route materials in portable PDF format. Submit requests by email with subject "Privacy request" and proof of identity sufficient for us to match your planning record. We respond within thirty days unless complexity requires extension—we will explain delays.

If you believe we mishandled data, you may complain to the Egyptian Data Protection Centre when applicable procedures are available; we prefer resolving concerns directly first.

11. Children

Services target adult travellers and guardians planning family trips. We do not knowingly collect data from children under sixteen without guardian involvement. If a child emails us directly, we delete the message after advising them to contact through a parent or guardian.

12. Third-party links

Our guides link to official tourism and antiquities resources. Those sites operate independent policies. Felucca captains and convoy operators are independent businesses—we list contact patterns in plans but do not control their data practices.

13. Changes

We may update this policy when services or legal requirements change. Material updates appear on this page with a revised effective date. Continued use of contact channels after updates constitutes acknowledgment for new processing described.

14. Contact for privacy matters

Museum Quick Aswan Desk LLC
9 Corniche el-Nil Street
Aswan, Aswan Governorate 81511, Egypt
Tax ID (ETA): 826-413-758
GAFI Registry: 531672
Email: [email protected]
Phone: +20 97 2314 8650

Return to contact or home.

15. Contact form consent language

The checkbox on our contact form states that you agree to processing as described here—not blanket marketing consent. Declining consent prevents submission because we cannot reply without storing email and travel notes. You may withdraw consent for optional bulletins anytime without affecting contracted plan delivery already paid.

16. Data minimisation in route PDFs

Route sheets include first name and travel dates only— not full passport numbers unless you voluntarily supplied them for Abu Simbel coordination notes requiring ID at checkpoints. We redact prior client names from sample PDFs shared with prospects. Editors access live client files through password-protected folders deleted per retention schedule above.

17. Breach notification

If we detect unauthorised access to correspondence containing personal data, we notify affected clients within seventy-two hours when email addresses remain valid, describing scope and remediation steps. Egyptian authorities receive reports when legally required. No breach notification has been issued to date since 2017 operations began.

18. Processor list (summary)

Email hosting provider (Egyptian business mailbox), PDF storage on encrypted office workstations, bank for invoice settlement. No advertising networks, no CRM SaaS with US transfer for standard traveller inquiries. Corporate clients requesting EU GDPR addendum may receive supplemental data processing agreement by email.

19. Your responsibilities

Provide accurate travel dates and contact email you monitor during the trip. Notify us if Philae hours on your PDF prove wrong on arrival— we log corrections for all clients. Do not share route PDFs publicly with our internal editor phone numbers redacted only if you choose— PDFs contain office line intended for your use.

20. Policy archive

Prior policy versions available on request for disputes referencing older consent language. Current version supersedes all printed materials predating 27 June 2026.

21. Law enforcement and fraud

We cooperate with Egyptian authorities when served valid legal process. If you suspect fraudulent invoice email impersonating our domain, forward headers to [email protected]— we publish no bank details on this website deliberately to reduce phishing. Official payment instructions arrive only after personal correspondence from known editors.

22. Minors on family plans

Children's names may appear on route PDFs when parents request— we do not market to minors separately. Parent or guardian must submit contact form and consent checkbox for any data about children mentioned in travel notes.

23. Effective date acknowledgement

By submitting the contact form after 27 June 2026 you acknowledge this policy version. Printed route PDFs may reference privacy URL on museum-quick.cyou/privacy.html for updates during multi-year retention windows.

24. Contact for data requests

Email [email protected] with subject Privacy request and allow thirty days for response during peak travel seasons.