سياسة الخصوصية

1. Who we are

AB Maritime (“we”, “our”, “us”) operates passenger- and cargo-shipping services, associated mobile apps, and the website abmaritime.com. We are committed to protecting your privacy and handling personal data transparently, in compliance with applicable laws such as the EU GDPR, Jordanian Data Protection Regulations, and any other local requirements.

2. Scope of this policy

This policy describes:

• the personal data we collect when you interact with our vessels, offices, website, or apps;
• how and why we process that data;
• the choices and rights you have in relation to your information.

3. What data we collect

Category

Examples

Purpose

Identity & contact

Full name, passport/ID number, nationality, mailing address, email, phone

Ticket issuance, port & immigration compliance, customer service

Booking & travel

Sailing dates, cabin class, vehicle details, special-assistance requests

Fulfilling your reservation, onboard safety

Payment

Card number (tokenised), billing address, transaction IDs

Processing payments, refunds, fraud prevention

Technical

IP address, device type, browser, app usage logs, cookies

Securing our platforms, improving functionality, analytics

Marketing preferences

Newsletter opt-in/opt-out, communication channel choices

Sending offers and service updates only with your consent

We never request or knowingly collect special-category data (e.g., health or religion) unless strictly necessary (e.g., to accommodate a medical condition) and with explicit consent.

4. How we use your data

• Contract performance – to issue tickets, manage check-in, carry passengers and freight.
• Legal obligations – to meet maritime, customs, immigration, and safety regulations.
• Legitimate interests – to secure our systems, prevent fraud, and improve services.
• Consent – for marketing emails, push notifications, or optional surveys (you may withdraw at any time).

5. Cookies & tracking

Our website uses essential cookies for security and session management, plus optional analytics cookies (Google Analytics, Meta Pixel) only if you accept them through our cookie banner. You can change preferences at any time via “Cookie Settings”.

6. Sharing your information

We share data only with:

1. Port authorities, immigration and customs where required by law.
2. Payment processors & banks to complete transactions securely.
3. Service partners (e.g., baggage handlers, Wi-Fi providers) under strict data-processing contracts.
4. Analytics & email-service providers for marketing (only if you opted in).

We never sell personal data.

7. International transfers

Data may be transferred outside your country (e.g., to EU or US cloud servers). Whenever we do, we rely on adequacy decisions, Standard Contractual Clauses, or other lawful safeguards.

8. Data retention

• Reservations: kept for 10 years (statutory accounting & maritime liability periods).
• Customer-support tickets: 3 years after closure.
• Marketing data: until you unsubscribe or for 2 years of inactivity.
  Records are securely deleted or anonymised once the retention period ends.

9. Security measures

We apply ISO 27001-aligned controls, including encryption in transit (TLS 1.3), role-based access, and 24/7 intrusion monitoring.

10. Your rights

Right

What it means

How to exercise

Access

Ask for a copy of your personal data

Rectification

Fix inaccurate or incomplete data

Same as above

Erasure (“right to be forgotten”)

Delete data not required by law

–––

Restriction

Limit certain processing

–––

Data portability

Receive data in structured format

–––

Object

Stop marketing at any time

“Unsubscribe” link or email

We will respond within 30 days (extendable by 30 more if complex).

11. Children

Our services are not directed to minors under 16. Parents/guardians who believe we hold data about a child should contact us for deletion.

12. Changes to this policy

We may update this policy periodically. The “Last updated” date at the bottom will change; significant changes will be announced on our website or by email.

If you are not satisfied, you may lodge a complaint with your local supervisory authority (e.g., the Jordanian Data Protection Council or your EU authority).