Privacy Policy Wanderer’s Lens

Effective date: September 29, 2025

1) Who we are

Wanderer’s Lens (“we,” “us,” “our”) is a travel media blog.
Owner / Data Controller: Kariss Degonsan
Contact email: contact@wandererslens.com
Postal address: 3503 Fox Run Dr, Plainsboro, NJ 08536, United States

If you are located in the EEA/UK/Switzerland, the “controller” is the entity that determines the purposes and means of processing your personal data. Where required, we will designate an EU/UK representative and update this notice.

2) Scope of this Policy

This Policy explains what we collect, how and why we use it, when we share it, how long we keep it, your rights, and how to contact us. It applies to our website, emails, and related services (the “Services”).

3) What we collect

Information you provide directly

  • Contact details (e.g., name, email) when you subscribe to the newsletter or contact us.
  • User content you post or send (comments, messages, testimonials, photos).
  • Preferences (e.g., topics you follow such as destinations or photography).

Information collected automatically

  • Device/usage data (IP address, user agent, pages visited, referrers, timestamps).
  • Cookies & similar tech for essential site functions and, with consent where required, analytics/ads. In the EU/UK, non‑essential cookies (including analytics/advertising) require prior, informed consent under PECR/UK GDPR guidance. [The UK DUA…ookies …]

Information from third parties (if enabled)

  • Analytics/measurement (privacy‑respecting analytics or GA4‑style tools).
  • Advertising & social media partners (ad networks, social embeds, share buttons) which may set identifiers.
  • Affiliate networks that attribute purchases via tracking links.

4) Why we use information (purposes) & legal bases

We use information to:

  • Run and improve the site and its features; ensure security and prevent fraud.
  • Send communications (newsletters you opt into; replies to your messages).
  • Personalize content and measure performance (with consent where required).
  • Comply with law and enforce our terms.

Under EU/UK GDPR, our legal bases include consent (e.g., non‑essential cookies, email marketing), contract (to deliver requested content/features), legitimate interests (security, basic analytics where lawful, service improvement), and legal obligations. GDPR sets out the core rights and controller duties. [Connecticu…rivacy Act], [Colorado A…Rights Act]

5) Cookies & similar technologies

We use first‑party/third‑party cookies, tags, pixels, local storage, and similar technologies. In the EU/UK, analytics and advertising are not “strictly necessary,” so we obtain consent before loading them. You can change or withdraw consent anytime via Manage Cookies on our site. [The UK DUA…ookies …]

Where laws require, we honor recognized universal opt‑out signals such as Global Privacy Control (GPC) for targeted advertising/sale opt‑outs. [ICO’s 2025…& Tracking]

6) Advertising, analytics & affiliate links (optional)

If enabled, we may work with:

  • Analytics to understand usage and improve the site (consent needed in EU/UK). [The UK DUA…ookies …]
  • Ad partners for contextual or interest‑based ads. In states like CA/CO/CT you can opt out of sale/sharing/targeted ads using our “Do Not Sell or Share / Opt Out of Targeted Ads” link and recognized GPC signals where applicable. [Cookie Com…& UK GDPR], [ICO’s 2025…& Tracking]
  • Affiliate programs (e.g., tour providers, travel gear). Clicking an affiliate link may place a cookie for attribution.

We aim to minimize identifiers and prefer privacy‑forward configurations. If you block third‑party cookies or send a valid universal opt‑out signal, we adjust where required by law. [ICO’s 2025…& Tracking]

7) How we share information

We do not sell your personal information for money. If our use of ad tech/affiliate identifiers is deemed “sale” or “sharing” under California law, you may opt out via our on‑site control and through GPC where recognized. We otherwise share data with:

  • Service providers (hosting, email delivery, analytics) under contractual limits;
  • Affiliate/ad partners (if enabled), subject to your consent/opt‑out;
  • Authorities or parties where required by law or to protect rights/safety. [Cookie Com…& UK GDPR]

8) International data transfers

Data may be processed outside your country. For transfers from the EEA/UK, we use appropriate safeguards (e.g., Standard Contractual Clauses or other recognized mechanisms). For Switzerland, cross‑border disclosures follow revFADP and FDPIC guidance (adequacy list or suitable guarantees). [Connecticu…rivacy Act], [Code of Vi…ection Act]

9) Data retention

We retain personal data only as long as necessary for the purposes described or as required by law, then delete or anonymize it. For children’s data covered by COPPA (if any occurs), we follow the updated retention‑limiting requirements in the amended Rule. [Kids’ Priv…Commission]

10) Security

We apply administrative, technical, and physical safeguards appropriate to the nature of the data and our size (e.g., HTTPS, access controls, least‑privilege). Where COPPA applies, operators must maintain a written information security program and meet enhanced security obligations. [13 Best Th…ews Travel]

11) Your privacy rights

Your rights depend on where you live. We will verify requests and respond within required timeframes.

EEA/UK/Switzerland — Rights to access, rectification, erasure, restriction, portability, and objection, plus the right to complain to a supervisory authority. [Colorado A…Rights Act], [Connecticu…rivacy Act]

California (CCPA as amended by CPRA) — Rights to know/access, correct, delete, opt‑out of sale or sharing, and limit use/disclosure of sensitive personal information; non‑discrimination for exercising rights. We honor GPC signals for online opt‑outs where required. [Cookie Com…& UK GDPR], [ICO’s 2025…& Tracking]

Colorado (CPA) — Rights to access, correct, delete, portability, and opt‑out of sale, targeted ads, certain profiling; mandatory universal opt‑out mechanism recognition. [The Connec…sumers …]

Connecticut (CTDPA) — Rights to access, correct, delete, portability, and opt‑out of sale/targeted ads/profiling; as of Jan 1, 2025, covered businesses must honor universal opt‑out signals. [Cross-bord…- admin.ch]

Virginia (VCDPA) — Rights to confirm/access, correct, delete, portability, opt‑out (sale/targeted ads/profiling), and a right to appeal a denial. [PECR Refor…in the UK]

Utah (UCPA) — Rights to confirm processing, access, delete data provided by you, portability, and opt‑out of sale/targeted ads. [Loi 25 – N…bécois …]

Quebec, Canada (Law 25) — Designation of a privacy officer, incident logging/notification, and enhanced transparency/consent; individuals hold rights of access and correction and may complain to the CAI. [CHAPTER 3…dprinfo.eu], [Rights of…ect – GDPR]

How to exercise your rights
Email contact@wandererslens.com with your request. If your jurisdiction provides a right to appeal (e.g., VA/CO/CT), instructions will be included with any denial. You can also contact your data protection authority or Attorney General. [UK Informa…liance …], [The Connec…sumers …], [Cross-bord…- admin.ch]

12) Children’s privacy

Our Services are not directed to children under 13, and we do not knowingly collect their personal information. If we learn we unintentionally collected data from a child under 13, we will delete it. Applicable US law (COPPA) requires covered operators to post a policy for child‑directed services, provide direct notice to parents, obtain verifiable parental consent, and (per the 2025 amendments) obtain separate opt‑in for third‑party disclosures (e.g., targeted ads) and limit retention. [50 Best Th…Family Fun], [Kids’ Priv…Commission]

13) Email & newsletters

We send newsletters only with your consent (or as otherwise permitted). You can unsubscribe anytime via the link in our emails or by contacting us.

14) User‑generated content & social embeds

Comments and certain submissions may be public. Social embeds and share tools can collect data per the third party’s own policy; please review their notices before interacting.

15) Third‑party links

We link to other sites. Their privacy practices are not ours; review their policies.

16) Non‑discrimination

We will not discriminate against you for exercising your privacy rights (e.g., under California law). [Cookie Com…& UK GDPR]

17) Changes to this Policy

We may update this Policy periodically. New versions will be posted with an updated Effective date. If changes are material, we will provide additional notice where required.

18) Contact

Questions or requests?
Email: contact@wandererslens.com
Mail: 3503 Fox Run Dr, Plainsboro, NJ 08536, United States
If you are in the EEA/UK/Switzerland, you may also contact your local supervisory authority.

19) Region‑specific summaries

EU/EEA & UK — Non‑essential cookies require prior consent; analytics/ads are not strictly necessary under PECR/UK GDPR guidance. You have GDPR rights and can complain to your supervisory authority. [The UK DUA…ookies …], [Connecticu…rivacy Act]

Switzerland (revFADP) — Effective Sept 1, 2023: privacy by design/default, processing records, and FDPIC breach notifications; cross‑border transfers based on adequacy or safeguards. [Updates Fr…… – Loeb], [Code of Vi…ection Act]

California — CCPA/CPRA rights, opt‑out of sale/sharing, GPC must be honored as a valid online opt‑out by covered businesses. [Cookie Com…& UK GDPR], [ICO’s 2025…& Tracking]

Colorado — Rights include opt‑out of sale/targeted ads/profiling; honor universal opt‑out mechanisms specified by the AG’s rules. [The Connec…sumers …]

Connecticut — Rights include opt‑out of sale/targeted ads/profiling; universal opt‑out recognition required from Jan 1, 2025. [Cross-bord…- admin.ch]

Virginia — Rights include access/correct/delete/portability and an appeals process. [PECR Refor…in the UK]

Utah — Right to opt‑out of sale and targeted ads, among others. [Loi 25 – N…bécois …]

Quebec (Law 25) — Privacy officer designation, incident logs/notifications, enhanced consent/transparency, phased in through 2024. [Rights of…ect – GDPR]

Children (COPPA, US) — Verifiable parental consent; 2025 update adds stricter parental opt‑in for third‑party disclosures and tighter retention limits (effective June 23, 2025; compliance timelines apply). [Kids’ Priv…Commission]