Privacy Policy

Effective Date: March 23, 2026  |  Last Updated: March 23, 2026  |  Version: 1.0

This Privacy Policy describes how Cairo Giza Pyramids Guide ("we," "us," "our," or "the Company") collects, uses, stores, shares, and protects your personal information when you visit our website at museumegys.com (the "Website") or use any of our travel-related services. We are committed to safeguarding your privacy and ensuring that your personal data is handled responsibly, transparently, and in accordance with applicable Egyptian law and internationally recognized data protection standards, including the principles established under the General Data Protection Regulation (GDPR) as a global benchmark for best practices.

By accessing or using our Website and services, you acknowledge that you have read, understood, and agree to the practices described in this Privacy Policy. If you do not agree with any part of this policy, please discontinue your use of our Website and services immediately.

We encourage you to read this policy carefully and to contact us if you have any questions or concerns regarding how we handle your personal information.

1. About Us

Cairo Giza Pyramids Guide is a travel services company based in Egypt, specializing in guided tours, travel planning, and visitor experiences centered around the iconic Giza Pyramids and other historical landmarks across Egypt. We operate the website museumegys.com to provide information, booking services, and travel resources to visitors from around the world.

Company Name Cairo Giza Pyramids Guide
Website museumegys.com
Email Address info@museumegys.com
Location Egypt

For all privacy-related inquiries, data access requests, or complaints, please contact us at info@museumegys.com.

2. Legal Framework and Applicable Law

Our data protection practices are governed primarily by Egyptian law, including but not limited to:

  • Law No. 151 of 2020 on Personal Data Protection (Egyptian Personal Data Protection Law – PDPL), which establishes the legal framework for processing personal data in Egypt and grants individuals rights over their personal information.
  • Its Executive Regulations issued pursuant to Law No. 151 of 2020, which provide detailed guidance on data processing requirements, consent mechanisms, and the rights of data subjects.
  • Law No. 175 of 2018 on Combating Information Technology Crimes, which governs cybersecurity and electronic communications.
  • Law No. 15 of 2004 on Electronic Signatures and the Regulation of Electronic Transactions, which applies to our electronic communications and digital interactions.
  • Consumer Protection Law No. 181 of 2018, relevant to service agreements and consumer rights.

In addition to Egyptian law, we voluntarily align our practices with the General Data Protection Regulation (GDPR) of the European Union as a globally recognized standard of best practice for data privacy, especially given that we serve international visitors and tourists who may be protected by such regulations in their home jurisdictions.

3. Information We Collect

We collect various types of personal and non-personal information to provide, improve, and personalize our services. The categories of data we collect are outlined below.

3.1 Personal Identification Information

When you interact with our Website or book our travel services, we may collect the following personal identification data:

  • Full name
  • Email address
  • Phone number (including international dialing codes)
  • Nationality and country of residence
  • Passport or national identification details (where required for tour bookings or entry permits)
  • Date of birth (for age verification or tour eligibility purposes)
  • Billing and payment information (processed securely through third-party payment processors)
  • Postal address or home address (if required for correspondence or invoicing)

3.2 Travel and Booking Information

When you make a reservation or inquiry through our Website, we collect:

  • Tour preferences and selected packages
  • Travel dates and itinerary details
  • Number of travelers and group composition (including ages of children, where applicable)
  • Special requirements, accessibility needs, or dietary preferences
  • Hotel or accommodation preferences
  • Emergency contact information
  • Communication history between you and our team

3.3 Usage Data and Technical Information

We automatically collect certain technical and behavioral information when you visit our Website, including:

  • IP address and approximate geographic location
  • Browser type and version
  • Operating system and device type
  • Pages visited, time spent on each page, and navigation patterns
  • Referring website or search engine that directed you to our site
  • Date and time of your visit
  • Clickstream data and interaction logs
  • Error logs and technical diagnostic information

3.4 Cookie and Tracking Data

Our Website uses cookies and similar tracking technologies to enhance your experience, analyze traffic, and deliver relevant advertising. For detailed information about the types of cookies we use and how you can manage your cookie preferences, please refer to our Cookie Policy, available on our Website. By continuing to use our Website without adjusting your browser settings, you consent to our use of cookies in accordance with this policy.

3.5 Communications Data

When you contact us via email, phone, social media, or contact forms on our Website, we collect:

  • The content of your messages and inquiries
  • Your contact details provided in the communication
  • Records of correspondence for quality assurance and service improvement

3.6 Voluntary and Survey Data

When you participate in surveys, feedback forms, competitions, or promotional campaigns, we may collect additional information you voluntarily provide, including opinions about our services, ratings, and reviews.

4. How We Use Your Personal Information

We process your personal data for specific, legitimate, and lawful purposes. We do not use your data in ways that are incompatible with the purposes described below.

4.1 Service Provision and Fulfillment

  • To process and confirm tour bookings, reservations, and travel arrangements
  • To communicate with you about your bookings, including confirmations, reminders, and updates
  • To coordinate with local guides, transportation providers, accommodation partners, and other service vendors on your behalf
  • To issue invoices, receipts, and financial records
  • To process payments and handle refunds or cancellations
  • To verify your identity and eligibility for certain tours or services

4.2 Customer Support and Communication

  • To respond to your inquiries, questions, and support requests
  • To notify you of any changes to our services, booking terms, or policies
  • To send operational communications such as account updates or security alerts

4.3 Website Analytics and Improvement

  • To analyze how visitors use our Website and identify areas for improvement
  • To monitor the performance and security of our Website
  • To test new features and optimize the user experience
  • To compile aggregated, anonymized statistical reports about Website usage

4.4 Marketing and Promotional Activities

  • To send you newsletters, promotional offers, and travel recommendations, where you have given your consent or where we have a legitimate interest to do so
  • To personalize the content and advertisements you see based on your browsing behavior and preferences
  • To conduct email marketing campaigns in compliance with applicable anti-spam regulations
  • To retarget you with relevant advertisements through third-party platforms, where permitted

You have the right to opt out of marketing communications at any time by clicking the "unsubscribe" link in any email we send, or by contacting us at info@museumegys.com.

4.5 Legal Compliance and Safety

  • To comply with our legal obligations under Egyptian law and other applicable regulations
  • To respond to lawful requests from governmental authorities, courts, or law enforcement agencies
  • To prevent, detect, and investigate fraud, security breaches, or other illegal activities
  • To enforce our Terms and Conditions and protect the rights, property, and safety of our company, employees, and users

4.6 Legal Basis for Processing

Under the Egyptian Personal Data Protection Law (Law No. 151 of 2020) and consistent with GDPR principles, we process your personal data on the following legal bases:

  • Consent: Where you have explicitly agreed to the processing of your data for specific purposes (e.g., marketing communications)
  • Contractual Necessity: Where processing is necessary to perform a contract with you or to take pre-contractual steps at your request (e.g., booking a tour)
  • Legal Obligation: Where processing is required to comply with applicable laws and regulations
  • Legitimate Interests: Where processing is necessary for our legitimate business interests, provided these are not overridden by your rights and freedoms

5. Sharing Your Personal Information with Third Parties

We respect the confidentiality of your personal information and do not sell, rent, or trade your data to third parties for their own marketing purposes. However, we may share your data with trusted third parties in the following circumstances:

5.1 Service Providers and Business Partners

We work with carefully selected third-party service providers who assist us in delivering our services. These include:

  • Tour guides and local operators: To coordinate your guided tours and on-site experiences at the Giza Pyramids and other attractions
  • Transportation providers: To arrange transfers, vehicle rentals, or private car services
  • Accommodation partners: Hotels, guesthouses, or lodges that you book through our platform
  • Payment processors: Secure, PCI-DSS compliant third-party payment gateways to handle financial transactions
  • IT and technology providers: Web hosting, database management, cybersecurity, and software service providers
  • Marketing platforms: Email marketing tools, analytics platforms (such as Google Analytics), and advertising networks
  • Customer support tools: Live chat software, CRM systems, and helpdesk platforms

All service providers are contractually required to process your data only in accordance with our instructions, to maintain appropriate security measures, and to comply with applicable data protection laws.

5.2 Legal and Regulatory Authorities

We may disclose your personal information to law enforcement agencies, courts, regulatory bodies, or government authorities in Egypt or abroad when:

  • Required by applicable law, court order, or legal process
  • Necessary to protect our legal rights or defend against legal claims
  • Required to prevent, detect, or investigate criminal activity or fraud
  • Required by Egyptian authorities or international law enforcement agencies under mutual legal assistance treaties

5.3 Business Transfers

In the event of a merger, acquisition, restructuring, sale of assets, or other business transaction involving our company, your personal data may be transferred to the acquiring entity. We will notify you of any such transfer and ensure that your data continues to be protected under terms no less protective than this Privacy Policy.

5.4 Consent-Based Sharing

We may share your information with other third parties where you have given your explicit consent for such sharing, for example, when you participate in co-branded promotions or referral programs.

6. Data Security

We take the security of your personal information seriously and implement comprehensive technical and organizational measures to protect your data against unauthorized access, loss, alteration, disclosure, or destruction.

6.1 Technical Security Measures

  • SSL/TLS Encryption: Our Website uses industry-standard Secure Sockets Layer (SSL) / Transport Layer Security (TLS) encryption to protect data transmitted between your browser and our servers.
  • Encrypted Data Storage: Sensitive personal data is stored using encryption both at rest and in transit.
  • Access Controls: Access to personal data is restricted to authorized personnel only, based on the principle of least privilege.
  • Firewalls and Intrusion Detection: We employ firewalls, intrusion detection systems, and regular security audits to protect our infrastructure.
  • Secure Payment Processing: All payment transactions are handled through PCI-DSS compliant third-party payment processors. We do not store full payment card details on our servers.

6.2 Organizational Security Measures

  • Regular staff training on data protection and privacy best practices
  • Confidentiality agreements with employees and contractors who have access to personal data
  • Data minimization policies to ensure we only collect and retain the data necessary for our purposes
  • Regular review and updating of our security policies and procedures
  • Incident response procedures to address any data breaches promptly and effectively

6.3 Data Breach Notification

In the event of a personal data breach that poses a risk to your rights and freedoms, we will notify the relevant Egyptian data protection authority and, where required, affected individuals in accordance with the timelines and requirements prescribed by Egyptian Law No. 151 of 2020 and its Executive Regulations. We will provide you with information about the nature of the breach, the potential consequences, and the measures we are taking to address it.

Important Notice: While we implement robust security measures, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee the absolute security of your data but are committed to using all reasonable efforts to protect it.

7. Your Rights as a Data Subject

Under Egyptian Law No. 151 of 2020 on Personal Data Protection, and consistent with internationally recognized principles such as those in the GDPR, you have the following rights with respect to your personal data:

7.1 Right to Access

You have the right to request a copy of the personal data we hold about you, along with information about how it is processed, where it is stored, and with whom it has been shared. We will respond to your access request within the timeframes prescribed by applicable law.

7.2 Right to Rectification

If you believe that any personal data we hold about you is inaccurate, incomplete, or outdated, you have the right to request that we correct or update it. You may also update certain information directly through your account settings on our Website, if applicable.

7.3 Right to Erasure (Right to Be Forgotten)

You have the right to request the deletion of your personal data in certain circumstances, such as when the data is no longer necessary for the purposes for which it was collected, when you withdraw consent, or when the data has been unlawfully processed. Please note that this right is subject to certain legal exceptions, including our obligation to retain data for compliance, legal, or financial purposes.

7.4 Right to Restrict Processing

You have the right to request that we restrict or suspend the processing of your personal data in certain circumstances, for example, while you contest the accuracy of the data or while we assess a legitimate interest objection.

7.5 Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another data controller, where technically feasible and where the processing is based on your consent or a contractual necessity.

7.6 Right to Object

You have the right to object to the processing of your personal data where the processing is based on our legitimate interests or for direct marketing purposes. If you object to direct marketing, we will cease processing your data for those purposes immediately.

7.7 Right to Withdraw Consent

Where your data is processed based on your consent, you have the right to withdraw that consent at any time, without affecting the lawfulness of processing carried out prior to the withdrawal.

7.8 How to Exercise Your Rights

To exercise any of the rights listed above, please submit a written request to us at:

We will verify your identity before processing your request to ensure the security of your data. We will respond to your request within 30 days of receipt, in accordance with the requirements of Egyptian Law No. 151 of 2020. In complex or high-volume cases, we may extend this period by an additional 30 days, and we will notify you accordingly.

8. Cookies and Tracking Technologies

Our Website uses cookies and similar tracking technologies (such as web beacons, pixels, and local storage) to enhance your browsing experience, analyze Website traffic, remember your preferences, and deliver targeted advertising.

8.1 Types of Cookies We Use

  • Essential Cookies: Necessary for the Website to function properly. These cookies cannot be disabled without affecting core Website functionality.
  • Analytics Cookies: Used to collect information about how visitors use our Website (e.g., Google Analytics), helping us improve performance and content.
  • Preference Cookies: Remember your preferences and settings (such as language, currency, or region) to provide a personalized experience.
  • Marketing and Advertising Cookies: Used to deliver relevant advertisements on our Website and across third-party platforms based on your browsing behavior.

8.2 Managing Your Cookie Preferences

You can control and manage cookies through your browser settings. Most browsers allow you to refuse cookies, delete existing cookies, or alert you when cookies are being sent. Please note that disabling certain cookies may affect the functionality of our Website and your ability to access certain features or services.

For detailed information about the specific cookies we use, their purposes, and how to manage them, please refer to our full Cookie Policy, available on our Website at museumegys.com.

9. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, and in accordance with our legal obligations under Egyptian law.

Type of Data Retention Period Basis for Retention
Booking and reservation data 5 years from the date of the booking Legal and contractual obligations; tax and accounting requirements
Financial and payment records 7 years from the date of transaction Egyptian tax law and financial regulatory requirements
Customer account data Duration of account + 2 years after account closure Legitimate interest; dispute resolution
Marketing data (email opt-ins) Until consent is withdrawn or opt-out is requested Consent-based processing
Website analytics data Up to 26 months (aggregated) Legitimate interest in Website optimization
Customer support communications 3 years from the date of last communication Legitimate interest; legal dispute resolution
Passport/ID copies (where collected) Duration of the tour + 1 year Regulatory and safety compliance

Upon expiration of the applicable retention period, we will securely delete, destroy, or anonymize your personal data in accordance with our data disposal procedures.

10. Children's Privacy

Age Restriction: Our Website and services are intended for use by individuals who are 18 years of age or older. We do not knowingly collect personal data from children under the age of 18.

If you are under 18 years of age, you must not use our Website or submit any personal information to us without the supervision and explicit consent of a parent or legal guardian. Bookings and service agreements made on behalf of minors must be completed by a parent or legal guardian.

If we become aware that we have inadvertently collected personal data from a child under the age of 18 without appropriate parental consent, we will take immediate steps to delete such data from our systems. If you believe that we may have collected data from a child under 18, please contact us immediately at info@museumegys.com.

Where children are included in group travel bookings made by adults, the personal data of those minors is provided by the responsible adult and processed solely for the purpose of fulfilling the travel services contracted.

11. International Data Transfers

As a travel company serving international visitors, we operate in a global environment and may transfer your personal data outside of Egypt. Such transfers may occur in the following circumstances:

  • When processing payments through international payment gateways
  • When using cloud-based services or software platforms hosted outside Egypt (such as Google Analytics, email marketing platforms, or CRM systems)
  • When coordinating travel services with international tour operators, airlines, or accommodation providers
  • When communicating with you if you are located outside Egypt

Whenever we transfer your personal data internationally, we ensure that appropriate safeguards are in place to protect your data, including:

  • Transferring data only to countries that provide an adequate level of data protection as recognized by Egyptian law
  • Using contractual data transfer mechanisms, such as standard contractual clauses (SCCs) approved by relevant data protection authorities
  • Ensuring that recipient organizations have implemented appropriate technical and organizational security measures
  • Relying on your explicit consent where required

You may contact us at info@museumegys.com for further information about the safeguards we have implemented for international data transfers.

12. Third-Party Websites and Links

Our Website may contain links to third-party websites, social media platforms, partner services, or external resources that are not operated or controlled by us. This Privacy Policy applies solely to our Website and services. We are not responsible for the privacy practices of third-party websites and encourage you to review their privacy policies before providing any personal information. The inclusion of a link to a third-party website does not constitute an endorsement, recommendation, or approval of that website or its privacy practices.

13. Social Media and User-Generated Content

We maintain social media profiles on various platforms (such as Facebook, Instagram, and X/Twitter). When you interact with us on social media — by liking, sharing, commenting, or messaging — those platforms collect and process your data in accordance with their own privacy policies. We receive limited data from such interactions, which we may use to respond to your messages or to improve our marketing strategies.

If you submit reviews, comments, testimonials, or photographs through our Website or social media channels, please be aware that such content may be visible to the public. Do not include sensitive personal information in public posts or reviews.

14. Changes and Updates to This Privacy Policy

We reserve the right to update, modify, or revise this Privacy Policy at any time to reflect changes in our practices, legal requirements, or business operations. When we make material changes to this policy, we will:

  • Update the "Last Updated" date at the top of this page
  • Post a notice on our Website informing you of the changes
  • Send a notification to your registered email address (where applicable and where we hold your email address)

We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of our Website and services after any changes to this policy constitute your acceptance of the updated terms.

15. Filing a Complaint with the Data Protection Authority

If you are not satisfied with how we have handled your personal data or responded to your privacy requests, you have the right to file a complaint with the competent data protection authority in Egypt.

Egyptian Data Protection Authority

Under Egyptian Law No. 151 of 2020 on Personal Data Protection, the supervisory authority responsible for overseeing compliance with data protection law in Egypt is the Personal Data Protection Center, operating under the Ministry of Communications and Information Technology (MCIT).

Ministry of Communications and Information Technology (MCIT)
Smart Village, Cairo–Alexandria Desert Road, Km 28
Giza, Egypt
Website: mcit.gov.eg

If you are a resident or citizen of the European Union or European Economic Area, you may also have the right to lodge a complaint with your local supervisory authority in your country of residence, in accordance with Article 77 of the GDPR.

Before filing a complaint with a regulatory authority, we strongly encourage you to contact us directly at info@museumegys.com so that we have the opportunity to address your concerns promptly and effectively.

16. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data protection practices, please do not hesitate to contact our privacy team using the details below:

Company Name Cairo Giza Pyramids Guide
Website museumegys.com
Privacy Inquiries Email info@museumegys.com
Location Egypt

We are committed to resolving any privacy concerns you may have in a timely, fair, and transparent manner. We aim to acknowledge all privacy-related communications within 5 business days and to provide a substantive response within 30 days of receipt, in accordance with the requirements of Egyptian Law No. 151 of 2020.

Summary of Your Key Rights: Under Egyptian Law No. 151 of 2020 and internationally recognized best practices, you have the right to access, correct, delete, and port your personal data; to object to or restrict its processing; to withdraw your consent at any time; and to file a complaint with the relevant data protection authority. To exercise any of these rights, contact us at info@museumegys.com.

This Privacy Policy was last reviewed and updated on March 23, 2026. It supersedes all previous versions of our privacy policy. © 2026 Cairo Giza Pyramids Guide — museumegys.com. All rights reserved.