PRIVACY POLICY

This Privacy Policy establishes the terms under which OCAMPO EXPEDITIONS SAS, the company that operates the website www.ocampoexpeditions.com, uses and protects the information provided by its users when using its website. This company is committed to the security of its users data. When we ask you to fill in the fields of personal information with which you can be identified, we do so ensuring that it will only be used in accordance with the terms described here. This Privacy Policy may change over time or be updated.

As the owner of the personal data captured in this form, I freely, previously, expressly, explicitly, and informedly authorize OCAMPO EXPEDITIONS SAS, a commercial company identified with NIT. 901.882.588-0 and domiciled at Calle 45 A #120-44, in the city of Cali, Valle del Cauca, Colombia, PBX: +57 3168880202, website www.ocampoexpeditions.com, hereinafter “OCAMPO EXPEDITIONS SAS” in its capacity as responsible for the Statutory Law 1581 of 2012 on Personal Data Protection, to capture, store, organize, use, process, delete, anonymize, dissociate, transmit, and transfer to third parties within and outside the national territory and generally to carry out the processing of my personal data, including personal data, to apply the purposes described below:

1. Register your data in our customer database.

2. Process your order and comply with legal obligations.

3. Provide you with relevant marketing such as personalized offers, invitations to events in our stores, catalogs or information about our collections, and generally send you digital advertising and special offers from OCAMPO EXPEDITIONS SAS. The aforementioned activities may be carried out through the sending of emails, SMS, MMS, messages through social networks (RRSS), instant messaging services, and applications, as well as through phone calls.

4. Transfer your personal data to third-party commercial allies, affiliates, parent
companies, and subsidiaries of OCAMPO EXPEDITIONS SAS.

RIGHTS OF THE DATA SUBJECTS: As the owner of your personal data, you have the right to:

(i) Access the data provided that has been subject to processing free of charge.

(ii) Know, update, and rectify your information regarding partial, inaccurate, incomplete, fragmented data that leads to error, or those whose processing is prohibited or has not been authorized.

(iii) Request proof of the authorization granted.

(iv) File complaints with the Colombian Superintendence of Industry and Commerce (SIC) for violations of the provisions of the current regulations.

(v) Revoke the authorization and/or request the deletion of the data, provided there is no legal or contractual duty that prevents their elimination.

(vi) Refrain from answering questions about sensitive data. Responses regarding sensitive data or data of children and adolescents will be optional. You may exercise your rights at any time by sending an email to the mailbox: ocampo.wpe@gmail.com or by sending a written communication addressed to our Data Protection Officer at Calle 45 A #120-44, Cali, Valle, Colombia. Indicate or communicate in the subject: “Consultation or Complaint Statutory Law 1581 of 2012”.

OBJECTIVE

In order to comply with the Political Constitution of Colombia, Law 1581 of 2012, and its regulatory decrees, this document aims to inform all Holders of personal information collected, processed, and stored by OCAMPO EXPEDITIONS SAS about the purpose of the Processing of their data, the data protection policy, the Responsible Party for the Processing of their data, and the process to follow in case they need to exercise their rights as Data Holders. The right to HABEAS DATA is the right of every person to know, update, and rectify the information that has been collected about them in public or private databases, and it guarantees all individuals the ability to make decisions and control their personal information.

Thus, OCAMPO EXPEDITIONS SAS, committed to respecting the personal data of its shareholders, investors, collaborators, consumers, clients, and suppliers, provides this personal data protection policy to protect their privacy and to recognize their right to know, update, or request the information archived about them in databases collected by OCAMPO EXPEDITIONS SAS in the course of its social purpose and in compliance with the laws governing each of the cited relationships.

SCOPE

This policy applies to the Processing of personal databases in which OCAMPO EXPEDITIONS SAS acts as the Responsible Party or Processor. All activities within the company related to the collection and/or Processing of personal databases must comply with the provisions of this document.

DEFINITIONS

Authorization: Consent that the Data Holder gives, prior, express, and informed, for a third party to carry out the Processing of their personal data.
Personal Database: Any organized set of personal data that is subject to Processing.
Personal Data Lifecycle: Refers to the process of collecting, storing, classifying, analyzing, using, transferring, retaining, and destroying personal data.
Database Custodian: The individual who has custody of the personal database within OCAMPO EXPEDITIONS SAS.
Personal Data: Any information linked or that can be associated with one or more specific or determinable natural persons.
Public Data: Data that is not semi-private, private, or sensitive. Public data includes, among others, data related to the civil status of individuals, their profession or trade, and their status as a merchant or public servant. By nature, public data can be contained, among others, in public records, public documents, gazettes, official bulletins, and duly executed judicial sentences that are not subject to confidentiality.
Sensitive Data: Data that affects the privacy of the Data Holder or whose misuse can lead to discrimination, whether because it reveals racial or ethnic origin, political orientation, religious or philosophical convictions, membership in unions, social organizations, human rights organizations, promotes the interests of any political party, or guarantees the rights and guarantees of opposition political parties, as well as data related to health, sexual life, and biometric data.
Processor: A natural or legal person, public or private, who, alone or in association with others, carries out the Processing of personal data on behalf of the Responsible Party.
Privacy Notice: A verbal or written communication generated by the Responsible Party, directed to the Data Holder for the Processing of their personal data, through which they are informed about the data Processing policies that will be applicable, how to access them, and the purposes of the intended Processing of personal data.
Principles for Data Processing: These are the fundamental rules, of legal and/or jurisprudential order, that inspire and guide the Processing of personal data, from which actions and criteria are determined to resolve potential conflicts between the rights to privacy, Habeas Data, and personal data protection, and the right to information.
Responsible Party for Processing: A natural or legal person, public or private, who alone or in association with others, decides on the Database and/or the Processing of data.
Data Holder: The natural person whose data is subject to Processing.
Processing: Any operation or set of operations on personal data, such as collection, storage, use, circulation, or deletion of these.
Transfer: The transfer of data occurs when the Controller and/or Processor of personal data, located in Colombia, sends the information or personal data to a recipient who is also a Controller of the Processing and is located inside or outside of Colombia.
Transmission: Processing of personal data that involves the communication of the same within and outside of Colombia when the purpose is the execution of Processing by the Processor on behalf of the Controller.

PRINCIPLES FOR THE PROCESSING OF PERSONAL DATA

The principles indicated in this article are the guidelines that will be respected by OCAMPO EXPEDITIONS SAS in the processes of collection, storage, use, and management of personal data:

Principle of Purpose: The Processing must comply with a legitimate purpose in accordance with the Constitution and the law, which must be informed to the Data Subject. Thus, the Processing of personal data within OCAMPO EXPEDITIONS SAS will be carried out: within the framework of contractual legal relationships established with its various stakeholders; within the framework of the law when Processing must be carried out by legal mandate; and in accordance with the purpose previously expressed to the Data Subject in cases where Processing is carried out on a one-time basis.

Principle of Freedom: Processing can only be carried out with the prior, express, and informed consent of the Data Subject. Personal data cannot be obtained or
disclosed without prior authorization, or in the absence of a legal or judicial mandate that releases the consent.

Principle of Truthfulness or Quality: The information subject to Processing must be truthful, complete, accurate, updated, verifiable, and understandable. The Processing of partial, incomplete, fragmented, or misleading data is prohibited.

Principle of Transparency: In the Processing, the right of the Data Subject to obtain from the Controller or the Processor, at any time and without restrictions, information about the existence of data concerning them must be guaranteed.

Principle of Restricted Access and Circulation: The Processing is subject to the limits derived from the nature of personal data, the provisions of Law 1581 of 2012, the Constitution, and other complementary norms. In this sense, Processing can only be carried out by persons authorized by the Data Subject and/or by persons provided for by law.

Personal data, except for public information, cannot be available on the internet or other means of mass dissemination or communication, unless access is technically
controllable to provide restricted knowledge only to the Data Subjects or authorized third parties.

Principle of Security: The information subject to Processing by the Controller or Processor must be handled with the necessary technical, human, and administrative measures to provide security to the records, preventing their adulteration, loss, consultation, unauthorized or fraudulent use or access.

Principle of Confidentiality: All persons involved in the Processing of personal data that are not of a public nature are obliged to guarantee the confidentiality of the information, even after their relationship with any of the tasks that comprise the Processing has ended.

OCAMPO EXPEDITIONS SAS’ DUTIES TOWARDS PERSONAL DATA SUBJECTS

In accordance with Article 17 of Law 1581 of 2012, OCAMPO EXPEDITIONS SAS, acting as the Controller of the data, must fully comply with the following duties:

Guarantee the Data Subject, at all times, the full and effective exercise of the right of Habeas Data.
Request and retain, under the conditions provided in this document and the law, a copy of the respective authorization granted by the Data Subject.
Clearly and sufficiently inform the Data Subject about the purpose of the collection of their personal data and the rights they have by virtue of the granted authorization. For this, OCAMPO EXPEDITIONS SAS must design a strategy through which, for each event, mechanism, or data request made, it will inform the Data Subjects about the respective processing. Some of these means may include sending text messages, filling out physical forms, or through OCAMPO EXPEDITIONS SAS’s web pages, among others.
Retain the information under the necessary security conditions to prevent its adulteration, loss, consultation, unauthorized or fraudulent use or access.
Ensure that the information provided to the Processor is truthful, complete, accurate, updated, verifiable, and understandable.
Update the information, promptly communicating to the Processor all updates regarding the data previously provided and adopting the necessary measures to keep the information provided to the Processor updated.
Rectify the information when it is incorrect and communicate the relevant changes to the Processor.
Provide the Processor, as the case may be, only data whose Processing is previously authorized in accordance with the provisions of this law.
Require the Processor to always respect the security and privacy conditions of the Data Subject’s information.
Process the inquiries and claims made by the Data Subjects or their successors in the terms indicated in Law 1581 of 2012 and ratified in this policy.
Inform the Processor when certain information is under dispute by the Data Subject, once the claim has been submitted and the respective process has not been completed.
Inform the Data Subject upon request about the use of their data.
Inform the data protection authority (SIC) when there are violations of security codes and risks in the administration of the Data Subjects’ information.
Comply with the instructions and requirements issued by the SIC.

DUTIES OF DATA PROCESSORS OF PERSONAL DATA

According to Article 18 of Law 1581 of 2012, Data Processors must fully comply with the following duties:

Guarantee the Data Subject the full and effective exercise of the right to habeas data at all times.
Maintain information under necessary security conditions to prevent its alteration, loss, unauthorized or fraudulent consultation, use, or access.
Timely update, rectify, or delete data as provided in this policy.
Update information reported by OCAMPO EXPEDITIONS SAS within five (5) business days from receipt.
Handle inquiries and claims made by Data Subjects as provided in this policy.
Record in the database the legend “claim in process” as established in this policy.
Insert in the database the legend “information under judicial discussion” once notified by the competent authority about judicial processes related to the quality of personal data.
Refrain from circulating information that is being disputed by the Data Subject and whose blocking has been ordered by the Superintendence of Industry and Commerce (SIC).
Allow access to information only to persons who are authorized to access it.
Inform the Superintendence of Industry and Commerce (SIC) when there are violations of security codes and risks in the administration of Data Subjects’ information.
Comply with the instructions and requirements issued by the Superintendence of Industry and Commerce.

PROCEDURE FOR DATA SUBJECTS WISHING TO EXERCISE THEIR RIGHTS

In compliance with Law 1581 of 2012 and its regulatory decrees, the following procedure is presented for Data Subjects to exercise their rights and file complaints or claims.

When the Data Subject wishes to exercise their rights, the request must be submitted in writing, either physically or digitally, via email to ocampo.wpe@gmail.com or by visiting OCAMPO EXPEDITIONS SAS’s facilities located at Calle 45 A #120-44 in the city of Cali.

a. The request must contain the following information:

Name of the Data Subject and their representatives, if applicable.
Specific and precise request for information, access, update, rectification, cancellation, opposition, or revocation of consent. In each case, the request must be reasonably substantiated for OCAMPO EXPEDITIONS SAS, as the Data Controller, to answer.
Physical and/or electronic address for notifications.
Documents supporting the request.
Request dully signed by the Data Subject. If the Data Subject is represented by a third party, the request must be accompanied by the respective power of attorney, which must have a notarized signature and content. The representative must also prove their identity as indicated.

b. If any of the mentioned information is missing, OCAMPO EXPEDITIONS SAS shall notify the interested party within five (5) days of receiving the request, so that it can be corrected. If the required information is not provided within two (2) months, the request will be considered withdrawn. If the recipient of the claim is not competent to resolve it, they will forward it to the appropriate party within a maximum of two (2) business days and inform the interested party. Once the complete claim is received, a legend stating “claim in process” and the reason for it will be included in the database within no more than two (2) business days. This legend must be maintained until the claim is resolved. OCAMPO EXPEDITIONS SAS may provide physical and/or digital formats for exercising this right, indicating whether it is a query or a claim.

c. If the request is to know or consult personal data, the request must specify this right that needs to be exercised as the Data Subject.

d. If the request is to update personal data, the request must specify which data needs to be updated, indicating the previous data and the updated data.

e. If the request is to cancel or oppose the processing of data, the request must specify which data needs to be deleted from our databases.

f. If the request is to file a claim with the organization, the letter must specify the description of the events that give rise to the claim and the corresponding documentation that supports the claim.

g. OCAMPO EXPEDITIONS SAS will receive the request and respond within the timeframes defined in this document.

h. In cases where OCAMPO EXPEDITIONS SAS acts as the Data Processor, it will inform the Data Subject or interested party of this situation and communicate the request to the Data Controller, so that the latter can respond to the consultation or claim. A copy of this communication will be sent to the Data Subject or interested party, so they are aware of the identity of the Data Controller and, consequently, the primary party responsible for ensuring the exercise of their right.

RESPONSE TIMES

OCAMPO EXPEDITIONS SAS, when acting as the Data Controller of the Personal Data Database contained in its information systems, will respond to requests within ten (10) business days if it is a query, and within fifteen (15) business days if it is a claim. The same term applies when verifying that its information systems do not contain Personal Data of the interested party exercising any of the indicated rights.
In case of a query, update, or rectification, if it is not possible to respond within ten (10) business days, the interested party will be informed of the reasons for the delay and the date on which the request will be addressed, which in no case may exceed five (5) business days following the expiration of the initial ten (10) business days.
In case of a claim, request to delete, or revoke authorization, if it is not possible to respond within fifteen (15) business days, the interested party will be informed of the reasons for the delay and the date on which the claim will be addressed, which in no case may exceed eight (8) business days following the expiration of the initial fifteen (15) business days.
OCAMPO EXPEDITIONS SAS, when acting as the Data Controller of the Personal Data Database contained in its information systems, will respond to requests within ten (10) business days if it is an update or rectification, and within fifteen (15) business days if it is to delete or revoke authorization. The same term applies when verifying that its information systems do not contain Personal Data of the interested party exercising any of the indicated rights.

OCAMPO EXPEDITIONS SAS is highly committed to fulfilling the commitment to keep your information safe. We use the most advanced systems and constantly update them to ensure that there is no unauthorized access.

LINKS TO THIRD PARTIES

This website may contain links to other sites that may be of interest to you. Once you click on these links and leave our page, we no longer have control over the site to which you are redirected and therefore we are not responsible for the terms or privacy or the protection of your data on those other third party sites. These sites are subject to their own privacy policies, so it is recommended that you consult them to confirm that you agree with them.

CONTROL OF YOUR PERSONAL INFORMATION

At any time you can restrict the collection or use of personal information that is provided to our website. Each time you are asked to fill out a form, such as the user registration form, you can check or uncheck the option to receive information by email. If you have checked the option to receive our newsletter or advertising, you can cancel it at any time.

This company will not sell, assign or distribute the personal information that is collected without your consent, unless required by a judge with a court order. OCAMPO EXPEDITIONS SAS reserves the right to change the terms of this Privacy Policy at any time.

CHANGES TO THE PRIVACY POLICY

We may update our Privacy Policy from time to time. Therefore, we recommend that you review this page periodically for changes. We will notify you of any changes by posting the new Privacy Policy on this page. These changes will take effect immediately after they are posted on this page.

If you have any questions or suggestions about our Privacy Policy, do not hesitate to contact us at ocampo.wpe@gmail.com

PRIVACY POLICY

Leave us your email and we will contact you!

OUR COLOMBIA BIRDING TOURS

CONTACT INFO

Whatsapp: +57 316 888 0202

Cauca Valley (Medium Trip)

E-mail: ocampo.wpe@gmail.com

Bird Photography Tour

Coffee Region (Short Trip)

Coffee Region and Cauca Valley

Eastern Plains & Cauca Valley

Cauca Valley (Short Trip)

Best birding tours in Colombia

Birds, culture and wildlife

"In every corner, we safeguard the flight of life. Our environmental commitment is the driving force behind our tours"

SEGMENTS

FOLLOW US

Members of Colombian Association of Responsible Tourism:

About Us

Media

Blog / Trip Reports

Contact Us

OCAMPO EXPEDITIONS S.A.S.

Birding Tours in Colombia

RNT 156891

Terms and Conditions

NIT 901882588 - 0

Cookie Policy

Privacy Policy

Privacy Notice

Data Protection Terms & Conditions