HomePrivacy & Data Protection Statement

Privacy & Data Protection Statement

Effective Date: May 23, 2025
Company Name: Pinnacles Travels and Migration Consulting Limited
Website: https://pinnacles.travel

1. Introduction

2. Who We Are

3. What Personal Data We Collect

4. How We Collect Your Data

5. Why We Collect and Use Your Data

6. Lawful Basis for Processing

7. How We Share Your Data

8. Data Retention: How Long We Keep Your Data

9. How We Protect Your Data

10. Your Rights Under This Policy

11. Use of Cookies and Analytics

12. International Data Transfers

13. Third-Party Websites and Links

14. Children’s Privacy

15. Changes to this Privacy Policy

16. Contact Us

Effective Date: May 23, 2025
Company Name: Pinnacles Travels and Migration Consulting Limited
Website: https://pinnacles.travel

https://mlmqmioe49x5.i.optimole.com/w:auto/h:auto/cb:he1c.1f3b2/ig:avif/q:mauto/id:9e8fabd584db16743b09247bd24ed21d/directUpload/0856d9f0-03e7-4897-be18-6fcbe82e50ed.png

At Pinnacles, we deeply value your trust and are committed to protecting your personal data and privacy. Whether you interact with us as a client, partner, visitor, or service user, we want you to feel confident about how your information is handled.

This Privacy and Data Protection Policy explains how we collect, use, store, share, and protect your personal data. It also outlines your rights and how you can exercise them.

We adhere to global standards such as:

The General Data Protection Regulation (GDPR) – Europe
The Personal Information Protection and Electronic Documents Act (PIPEDA) – Canada
The Nigerian Data Protection Regulation (NDPR) – Nigeria

The Pinnacles Multinational Congloomerate Limited (“Pinnacles”) is a multinational enterprise offering services across:

Global relocation & migration support
Business investment and advisory
Tourism and transportation
Security services
Consulting, innovation, and capacity development

Our headquarters are located in Canada and Nigeria, with operations extending to the United States and other parts of the world.

We collect different types of personal data depending on how you interact with us:

a. Personal Identification Information

Full name, date of birth, nationality
Contact details (email, phone number, address)
Passport, visa, or national ID numbers

b. Business or Employment Data

Business name and registration details
Employment status and professional history
Company documents and stakeholder information

c. Transactional & Financial Information

Bank details (where needed for processing refunds or disbursements)
Billing address and invoices
Creditworthiness documentation (for loans, grants, etc.)

d. Technical & Device Information

IP address
Browser type and version
Cookies, session identifiers, and location data

e. Sensitive Information (only where necessary)

Immigration or visa history
Biometric data (for ID verification purposes)
Academic qualifications and certificates

We collect data only as needed and always with a lawful basis (such as your consent, a legal obligation, or legitimate interest).

We collect your data through the following means:

Directly from you (via forms, applications, emails, phone calls)
Through our website or online portals (cookies, IP logging)
From third-party providers or public records (with your consent)
Through your engagement with our services (e.g., webinars, consultation requests)

We do not sell or trade your data. We use your information to provide high-quality services and fulfill our legal and contractual obligations. Specifically, we use your data for:

a. Service Delivery

Processing your travel, immigration, or advisory service request
Confirming eligibility for grants, programs, or support
Managing user accounts and service history

b. Communication

Sending important updates about your application or account
Delivering newsletters, promotional content (only with consent)
Responding to your inquiries and support requests

c. Verification & Compliance

Identity verification (e.g., for visa or loan applications)
Anti-fraud and compliance checks
Regulatory reporting where required by law

d. Improving User Experience

Understanding website usage patterns
Personalizing your experience and content
Tracking service performance and feedback

We collect and process your data based on the following legal grounds:

Consent: Where you have given us clear permission
Contractual necessity: To fulfill our service agreement with you
Legal obligation: To comply with regulations (e.g., tax laws, immigration rules)
Legitimate interest: When it is beneficial to you and does not override your rights

We may share your data only when necessary, and only with trusted parties, including:

Government agencies and embassies (for visa and immigration purposes)
Service partners and consultants (e.g., business registration experts, legal advisors)
Banks and financial institutions (for funding, investment, or payment processing)
Third-party tools we use for web analytics, CRM, cloud hosting

We ensure every third party we work with maintains strict confidentiality and data protection standards.

https://mlmqmioe49x5.i.optimole.com/w:auto/h:auto/cb:he1c.1f3b2/ig:avif/q:mauto/id:c6ca732507a28c3d6c86a99b767d1e85/directUpload/Privacy-and-Protection-in-Cyberspace.png

We retain your data only as long as needed for the purpose it was collected. The duration depends on:

Service lifecycle
Legal requirements (e.g., financial records must be kept for 7 years)
Regulatory obligations

Once your data is no longer needed, we securely delete or anonymize it.

We have implemented physical, technical, and organizational measures to secure your personal data. These include:

Secure servers and firewalls
Website SSL encryption
Access control and user authentication
Data encryption in transit and at rest
Staff confidentiality agreements and training

In the event of a data breach, we will notify affected individuals and authorities as required by law.

You have the right to:

Access the personal data we hold about you
Correct any inaccurate or incomplete data
Withdraw consent where we rely on it
Request deletion (“right to be forgotten”)
Restrict processing in certain circumstances
Object to processing based on legitimate interest
Request data portability in structured format
File a complaint with your data protection authority

To exercise any of these rights, contact:
📧 [email protected]

We use cookies and similar technologies to:

Improve your browsing experience
Analyze site usage and trends
Store user preferences

You can manage your cookie settings through your browser or reject non-essential cookies from our cookie banner.

Your personal data may be processed in or transferred to countries outside of your residence, including Canada, the U.S., and Nigeria. These transfers occur under:

Adequate data protection laws
Data-sharing agreements and Standard Contractual Clauses (SCC)
Secure hosting infrastructure with trusted vendors

Our website may contain links to third-party websites not under our control. We are not responsible for the content or privacy practices of such sites. We recommend reviewing their privacy policies before submitting any data.

Our services are not intended for children under 16. We do not knowingly collect personal data from minors. If we learn that we have collected data from a child without appropriate consent, we will delete it promptly.

We may update this Privacy Policy to reflect changes in law, technology, or our services. Any changes will be posted on this page with the updated date. We encourage you to review it periodically.

For questions, concerns, or requests related to this Privacy Policy, please contact:

Data Protection Officer (DPO)
📧 [email protected]
🌐 www.pinnacles.travel
📍 Canada | Nigeria | United States