Last updated: 2 June 2026. This policy applies to the website ancient-pass.xyz and all enquiry and booking communications with Nile Heritage Guides LLC.
The data controller responsible for your personal information is Nile Heritage Guides LLC, a company registered in Egypt under GAFI Registry number 384217, with its principal office at 14 Talaat Harb Street, Floor 3, Cairo 11511, Egypt. Tax ID (ETA): 672-481-039. Contact: [email protected] or +20 2 2391 8840.
We collect only the personal data necessary to respond to your enquiry and to provide the heritage guide services you request. This includes:
We do not use tracking pixels, analytics scripts, marketing cookies or third-party advertising networks on this website. We do not set cookies beyond what the web server requires for standard operation.
We process your personal data on the following legal bases:
Your data is used exclusively to:
We do not sell your personal data to third parties under any circumstances. We share it only with:
We retain personal data associated with a confirmed booking for seven years after the date of the tour, to comply with Egyptian commercial and tax record-keeping requirements. Enquiry data that does not result in a booking is retained for twelve months and then permanently deleted. Email newsletter subscriber data is retained until you opt out, at which point it is removed within fourteen days. Web server log data is deleted after 30 days.
Depending on your country of residence, you may have rights under applicable law including:
To exercise any of these rights, contact us at [email protected]. We will respond within 30 days. We may need to verify your identity before acting on a request.
Our operations are based in Egypt. If you contact us from a country within the European Economic Area or another jurisdiction with data transfer restrictions, your personal data is transferred to and processed in Egypt for the purposes described in this policy. Egypt has enacted personal data protection legislation under Law No. 151 of 2020. We apply appropriate safeguards including standard contractual clauses where required.
We apply appropriate technical and organisational measures to protect your data from unauthorised access, loss or disclosure. Our website is served over HTTPS. Internal systems used to manage enquiries and bookings are access-controlled and password-protected. Staff handling personal data receive training on data protection obligations. We review our security measures regularly and update them when new risks are identified.
This website does not set marketing cookies. It does not embed any third-party scripts from advertising networks, social media platforms, analytics providers or content delivery networks. The only external request made by this website is to load fonts from the device's local system — no external font CDN is used. Standard web server session-handling may set a transient session identifier that is not stored persistently and does not track you across sessions or sites.
Our services are intended for adults. We do not knowingly collect personal data from children under the age of 16. If you are a parent or guardian and believe your child has submitted personal data through this website, please contact us at [email protected] and we will delete the data promptly.
This website contains links to the websites of the Egyptian Ministry of Tourism and Antiquities, the Grand Egyptian Museum and other heritage institutions for informational purposes. Once you navigate to those sites, this privacy policy no longer applies and we have no control over how they collect or process your data. We recommend you review their respective privacy notices.
We may update this privacy policy to reflect changes in our practices, services or applicable law. When we do, we will update the "last updated" date at the top of this page. Material changes that affect how we process your data will be communicated to active clients by email before taking effect. Continued use of our services after a change constitutes acceptance of the updated policy.
We apply the principle of data minimisation throughout our operations. This means we collect only the personal data strictly necessary for the specific purpose it is being collected for, and no more. For an enquiry, this means your name, email address and the details of what you are enquiring about. For a confirmed booking it extends to include payment record identifiers. We do not collect date of birth, passport details, nationality or any sensitive personal data unless a specific site permit application explicitly requires it — in which case we collect only the minimum required by the permit authority and retain it only for the duration of that application process.
Our booking system does not create behavioural profiles, cross-reference your data with external data sources, or make automated decisions about your enquiry. All decisions about how to respond to an enquiry are made by a human member of our team who reads your message. We do not use any form of automated filtering, scoring or recommendation system that processes your personal data. This is not a technical limitation — it is a deliberate choice that reflects our view that a personalised service requires human judgement, not algorithmic processing.
For any privacy-related question, access request or complaint, contact us at:
Nile Heritage Guides LLCIf you are not satisfied with our response, you have the right to lodge a complaint with the relevant data protection supervisory authority in your country of residence.