Privacy Policy and Data Protection Statement

Go! Running Tours ApS

Version date: June 2026

This Privacy Policy and Data Protection Statement explains how Go! Running Tours ApS collects, uses, shares, stores and protects personal data. It is intended to comply with the European General Data Protection Regulation (GDPR), the Danish Data Protection Act and other privacy laws that apply to our activities.

This Privacy Policy and Data Protection Statement applies to personal data processed in connection with the Go! Running Tours website, bookings, signups, participant waivers, guided running tours, brisk walking tours, walking tours, corporate events, conference activities, hotel partner activities, private tours, group tours, supplier services, customer service, marketing, communications and related business activities.

This Privacy Policy and Data Protection Statement should be read together with the Go! Running Tours General Terms of Business and Participant Terms, the Go! Running Tours Terms of Use, and any applicable booking confirmation, waiver, proposal, invoice, hotel partner agreement, corporate agreement, supplier agreement or other written agreement.

Contents

  1. Introduction
  2. Who we are
  3. When this Privacy Policy and Data Protection Statement applies
  4. How we collect personal data
  5. Personal data we may collect
  6. Sensitive data and health information
  7. Why we use personal data and our legal bases
  8. Corporate, event and hotel participant data
  9. Independent suppliers and third party providers
  10. Who we share personal data with
  11. International transfers
  12. Cookies and similar technologies
  13. Google Analytics and other analytics tools
  14. Marketing, newsletters and business communication
  15. Photos and videos
  16. Children and minors
  17. How long we keep personal data
  18. Your rights
  19. Additional rights for U.S. residents
  20. Security
  21. Third party websites and services
  22. Automated decision making
  23. Changes to this Privacy Policy and Data Protection Statement
  24. Contact

1. Introduction

1.1 This Privacy Policy and Data Protection Statement explains how Go! Running Tours ApS collects, uses, shares, stores and protects personal data. It is intended to comply with the European General Data Protection Regulation (GDPR), the Danish Data Protection Act and other privacy laws that apply to our activities.

1.2 This Privacy Policy and Data Protection Statement applies to personal data processed in connection with the Go! Running Tours website, bookings, signups, participant waivers, guided running tours, brisk walking tours, walking tours, corporate events, conference activities, hotel partner activities, private tours, group tours, supplier services, customer service, marketing, communications and related business activities.

1.3 This Privacy Policy and Data Protection Statement should be read together with the Go! Running Tours General Terms of Business and Participant Terms, the Go! Running Tours Terms of Use, and any applicable booking confirmation, waiver, proposal, invoice, hotel partner agreement, corporate agreement, supplier agreement or other written agreement.

2. Who we are

2.1 Go! Running Tours ApS is the data controller for the personal data described in this Privacy Policy and Data Protection Statement, unless otherwise stated.

2.2 Company details:

a. Entity: Go! Running Tours ApS
b. CVR number: 35414975
c. Registered address: Kentiavej 24, 2300 Copenhagen S, Denmark
d. Email: contact@gorunningtours.com

2.3 For privacy questions or requests, please contact us at contact@gorunningtours.com and write “Privacy request” in the subject line.

2.4 We have not appointed a Data Protection Officer unless expressly stated otherwise on our website. Privacy requests should therefore be sent to the contact details above.

3. When this Privacy Policy and Data Protection Statement applies

3.1 This Privacy Policy and Data Protection Statement applies when you:

a. visit or use the Go! Running Tours website;
b. make a booking or booking request;
c. sign up for a tour, activity, event or newsletter;
d. participate in a Go! Running Tours activity;
e. complete a participant waiver or QR code signup;
f. use the Go! Running Tours Participant Sign Up and Waiver Service, including where this is arranged for a corporate event, conference activity, hotel partner activity or group booking;
g. communicate with us by email, form, phone, social media or other channels;
h. take part in a corporate event, conference activity or hotel partner activity;
i. book through, or are referred by, a hotel partner, corporate client, event organiser, conference organiser, travel partner, supplier or other partner;
j. interact with Go! Running Tours as a supplier, guide, contractor, hotel partner, corporate client, event organiser or business contact.

4. How we collect personal data

4.1 Data you provide directly to us

You may provide personal data when you make a booking, submit a booking request, fill in a form, sign up through a QR code, complete a waiver, contact customer service, subscribe to a newsletter, respond to a survey, provide feedback, join an event or communicate with us.

4.2 Data provided by someone booking on your behalf

We may receive personal data from another person or organisation booking, arranging or paying for an activity on your behalf. This may include a corporate client, hotel partner, event organiser, conference organiser, travel partner, family member, friend, colleague or other person making a booking for a group.

4.3 Data from suppliers, guides and partners

We may receive personal data from guides, suppliers, contractors, local tour providers, race organisers, holiday providers, hotel partners, corporate clients, event organisers, conference organisers, booking platforms, payment providers and other partners where necessary to deliver, administer or document a booking or activity.

4.4 Data collected automatically

When you use our website, we may collect technical information through cookies, pixels, tags, log files and similar technologies. This may include IP address, device information, browser type, pages visited, booking journey, approximate location, cookie identifiers and interaction data. Some of this data is collected only where required consent has been given.

5. Personal data we may collect

5.1 The personal data we collect depends on your relationship with us and the activity involved. We may collect and process the following categories of personal data, where relevant and necessary:

a. Identity and contact data, such as name, official name where required, title, company, role, organisation, language preference, email address, phone number, address, country, and official point of contact details for corporate clients, hotel partners, event organisers, suppliers, guides or other business partners.

b. Booking and transactional data, such as activity type, date, time, destination, route, pace, meeting point, number of participants, booking reference, booking history, payment status, billing details, invoice details, transaction reference, cancellation or change requests, and special requests.

c. Participant, waiver and safety data, such as participant names, group details, hotel name, company name, event name, pace preferences, signup details, waiver status, signed waiver, QR signup, electronic acceptance, timestamp, fitness, safety or participation confirmations where required, incident details, accident or injury information, complaints, near misses, insurance matters and legal claim records.

d. Communication data, such as emails, contact form messages, customer service notes, feedback, complaints, survey responses and other correspondence with us, our Guides, Suppliers, contractors, hotel partners, corporate clients, event organisers or other partners.

e. Technical, website and cookie data, such as IP address, device information, browser type, cookie identifiers, cookie preferences, pages visited, booking journey, website analytics, interaction data, approximate location and advertising or performance data where consent has been given where required.

f. Media and marketing data, such as photos and videos taken during activities or provided by customers, participants, guides, suppliers or partners, newsletter signup, marketing preferences, unsubscribe records, campaign engagement, client reviews, feedback, and marketing consent records where required.

g. Supplier, guide and partner data, such as business contact details, contract details, payment information, tax information, insurance information, compliance records, training records and performance related communication.

5.2 We may also collect and process other personal data that is reasonably necessary for a specific booking, activity, signup, waiver, event, hotel partner activity, corporate arrangement, supplier service, customer service matter, safety issue, insurance matter, legal matter, payment, accounting requirement or other legitimate business purpose described in this Privacy Policy.

5.3 Where we need to collect personal data that is materially different from the categories described above, or use personal data for a materially different purpose, we will provide additional information where required by applicable law.

5.4 Where payments are handled by a payment provider, we do not normally receive or store full card details.

6. Sensitive data and health information

6.1 We do not ask participants to provide unnecessary medical or health information.

6.2 However, running, walking, outdoor activities and travel related activities may involve safety considerations. We may process limited health related or safety related information where necessary, for example if:

a. you tell us or a Guide about an injury, illness, allergy, pregnancy related concern, medical limitation or other safety matter;
b. an accident, injury, medical emergency, near miss or safety incident occurs;
c. information is needed to respond to an emergency or seek medical assistance;
d. information is needed for insurance, legal claims, complaints, safety records or incident documentation.

6.3 Where health related information is processed, we do so only where necessary and where a lawful basis applies, for example where you have provided the information, where processing is necessary to protect vital interests, where necessary for legal claims, where required by law, or where another legal basis is available under applicable data protection law.

6.4 We do not use health related information for marketing, advertising or profiling.

7.1 We process personal data only where we have a lawful basis to do so.

7.2 The main purposes and legal bases are:

PurposeExamplesLegal basis
Booking and activity administrationProcessing bookings, requests, confirmations, changes, cancellations, participant lists, meeting points and guide coordinationContract, legitimate interests
Delivery of activitiesProviding tours, walks, events, hotel activities, corporate events and supplier servicesContract, legitimate interests
Participant waivers and signup recordsRecording acceptance of terms, waivers, QR signups and participant confirmationsContract, legitimate interests, legal claims
Corporate, event and hotel activitiesManaging group bookings, hotel activities, participant communication, invoices and operational deliveryContract, legitimate interests
Payments and invoicesTaking payment, issuing invoices, accounting and fraud preventionContract, legal obligation, legitimate interests
Safety and incident handlingManaging accidents, complaints, injuries, emergencies, safety concerns and insurance mattersLegitimate interests, vital interests, legal claims, legal obligation
Customer serviceResponding to enquiries, complaints, feedback and requestsContract, legitimate interests
Legal and insurance mattersHandling disputes, claims, waivers, insurance enquiries and professional adviceLegitimate interests, legal obligation, legal claims
Marketing to existing and potential customersNewsletters, updates, offers, business development and partner communicationConsent, legitimate interests where permitted
Website analytics and improvementUnderstanding website use and improving performanceConsent where required, legitimate interests for strictly necessary and basic security purposes
Cookies and similar technologiesWebsite functionality, analytics, advertising and consent managementConsent where required, legitimate interests for strictly necessary technologies
Photos and videosOperational records, reporting, marketing and social media where permittedConsent where required, legitimate interests where appropriate
Supplier, guide and partner managementContracts, payments, compliance, training, support and communicationContract, legal obligation, legitimate interests
Legal complianceAccounting, tax, regulatory obligations and responding to authoritiesLegal obligation, legitimate interests

7.3 Where we rely on legitimate interests, we balance our interests against your rights and freedoms. Our legitimate interests may include operating our business, delivering safe activities, handling bookings, keeping records, preventing misuse, managing claims, improving our services and communicating with customers and partners.

7.4 Where we rely on consent, you may withdraw consent at any time. Withdrawal does not affect processing that took place before consent was withdrawn.

8. Corporate, event and hotel participant data

8.1 For corporate events, conference activities, hotel partner activities and group bookings, we may receive participant data from the Corporate Client, Hotel Partner, event organiser, conference organiser or another person arranging the activity.

8.2 This may include names, email addresses, company or hotel details, participant lists, pace preferences, waiver status, signup records and other information needed to deliver the activity.

8.3 Where a Corporate Client, Hotel Partner, event organiser or other partner collects or shares participant data with us, that partner is responsible for ensuring that it has the necessary authority, privacy notices, lawful basis and consents where required.

8.4 Go! Running Tours may be an independent controller for the personal data we receive and use to administer or deliver the activity. In some cases, another party may also be an independent controller for the data it collects and uses. Where legally required, specific data protection terms may be agreed between the parties.

9. Independent suppliers and third party providers

9.1 Go! Running Tours may provide services in different ways. In some cases, Go! Running Tours acts as the activity provider or operator. In other cases, Go! Running Tours acts as a booking platform, intermediary or facilitator between the customer or participant and an independent supplier.

9.2 Where an independent supplier provides a tour, race, holiday, experience, add on product or other third party service, we may share personal data with that supplier where necessary to administer, deliver or document the booking.

9.3 Independent suppliers may act as independent controllers for the data they process in relation to their own services. They are responsible for complying with applicable data protection laws and for using personal data only for legitimate and lawful purposes connected to the relevant booking or service.

10. Who we share personal data with

10.1 We may share personal data where necessary with:

a. Guides, suppliers, contractors and local providers who deliver or support activities;
b. hotel partners, corporate clients, event organisers and conference organisers where relevant to a booking or activity;
c. payment providers, banks, accounting systems and invoicing providers;
d. booking systems, waiver systems, customer service systems and website providers;
e. email, newsletter, marketing, CRM and communication platforms;
f. analytics, cookie and website performance providers where consent has been given where required;
g. insurance providers, legal advisers, accountants, auditors and professional advisers;
h. public authorities, courts, regulators, police or emergency services where required or appropriate;
i. business partners, only where necessary for the relevant booking, activity, cooperation or service.

10.2 We do not sell personal data in the ordinary meaning of selling personal data for money.

10.3 We do not allow suppliers, guides, partners or service providers to use personal data for unrelated purposes unless they have their own lawful basis and are responsible for providing any required privacy information.

11. International transfers

11.1 Go! Running Tours operates internationally. This means personal data may be transferred to, or accessed from, countries outside the EU and EEA.

11.2 This may happen where:

a. a tour, walk, event or service takes place outside the EU or EEA;
b. a guide, supplier, contractor, hotel partner, corporate client or event organiser is located outside the EU or EEA;
c. we use service providers, booking systems, payment providers, email systems, waiver systems, hosting providers, analytics tools or other technology providers located outside the EU or EEA.

11.3 Where personal data is transferred outside the EU or EEA, we use appropriate safeguards where required. These may include:

a. an adequacy decision by the European Commission;
b. the EU U.S. Data Privacy Framework for certified U.S. organisations;
c. Standard Contractual Clauses approved by the European Commission;
d. contractual, technical and organisational safeguards;
e. another lawful transfer mechanism under applicable data protection law.

12. Cookies and similar technologies

12.1 We use cookies and similar technologies on our website.

12.2 Some cookies are strictly necessary for the website to work, for example security, checkout, booking, consent management and basic website functionality.

12.3 Other cookies and similar technologies may be used for analytics, performance, functionality, advertising, marketing or similar purposes. Where consent is required, we use these only if you have given consent through our cookie consent tool.

12.4 You can change or withdraw your cookie consent through the cookie settings on the website.

12.5 Our cookie consent tool should provide more detailed information about the cookies and similar technologies used, including the cookie name or provider, purpose, duration and how consent can be changed or withdrawn.

13. Google Analytics and other analytics tools

13.1 We may use Google Analytics or similar analytics tools to understand how visitors use the website and to improve our services.

13.2 Where required by law, analytics cookies and similar technologies are used only after consent has been given.

13.3 Analytics data may include IP address, device information, browser information, pages visited, interactions and approximate location. Where possible, we use privacy protective settings such as IP anonymisation, limited data sharing or similar measures.

14. Marketing, newsletters and business communication

14.1 We may send newsletters, offers, updates and other marketing communications where we have a lawful basis to do so.

14.2 For email marketing, we will normally rely on consent or another lawful basis permitted by applicable law, such as communication with existing customers or business contacts where allowed.

14.3 You can unsubscribe from marketing emails at any time by using the unsubscribe link in the email or by contacting us.

14.4 We may still send service related or transactional messages, such as booking confirmations, payment information, waiver links, changes, safety information, customer service replies or legal notices, even if you have unsubscribed from marketing.

14.5 For U.S. recipients, our commercial emails are intended to comply with applicable U.S. email marketing requirements, including accurate sender information, non deceptive subject lines, a valid contact address and a clear opt out mechanism.

14.6 Our company contact details and registered address are listed in Section 2 of this Privacy Policy.

15. Photos and videos

15.1 Photos and videos may be taken during Go! Running Tours services and activities.

15.2 Photos and videos may be used for operational purposes, safety documentation, customer service, internal records, incident handling, reporting to customers, and business administration.

15.3 Photos and videos may also be used for marketing, social media, promotional materials and business communication where permitted by applicable law and our Terms.

15.4 Where consent is required by applicable law, we will rely on consent or another lawful basis before using identifiable images for marketing.

15.5 If you do not want photos or videos of yourself to be used, you should tell the Guide before the activity begins and, where relevant, avoid participating in group photos.

16. Children and minors

16.1 Our website and services are not directed to children under 13.

16.2 We do not knowingly collect personal data online from children under 13 without appropriate parental or guardian involvement where required.

16.3 Participants under 18 may participate only where allowed under the applicable activity terms and with appropriate consent from a parent, legal guardian or responsible adult.

16.4 Where a parent, legal guardian, Corporate Client, Hotel Partner, school, event organiser or other responsible adult provides information about a minor, that person or organisation is responsible for ensuring that they have the authority and lawful basis to do so.

16.5 If you believe that a child has provided personal data to us without appropriate consent, please contact us.

17. How long we keep personal data

17.1 We keep personal data only for as long as reasonably necessary for the purposes described in this Privacy Policy and Data Protection Statement, unless a longer period is required or permitted by law.

17.2 Retention periods may vary depending on the type of data and the reason for processing.

17.3 As a general guide:

Type of dataTypical retention approach
Booking and customer recordsKept for as long as needed to manage the booking, provide customer service, handle disputes and maintain business records
Accounting and invoice recordsKept as required by accounting and tax laws. For Danish accounting records, this will normally be 5 years from the end of the financial year to which the records relate.
Waiver, signup and acceptance recordsKept for as long as reasonably necessary for legal, insurance, safety, claims and business record purposes. The exact period may depend on the activity, location, participant type, limitation periods, insurance requirements and any dispute or incident.
Incident, complaint and insurance recordsKept for as long as necessary to manage the issue and protect legal rights
Marketing consent and preferencesKept until consent is withdrawn or the data is no longer needed, with unsubscribe records kept to respect opt outs
Cookie consent recordsKept for as long as necessary to document and manage cookie preferences
Supplier, guide and partner recordsKept for the duration of the relationship and for a reasonable period afterwards for legal, accounting and business purposes
Website analytics dataKept according to the relevant analytics settings and legal requirements

17.4 We may keep limited records after deletion requests where necessary to comply with legal obligations, maintain opt out records, handle disputes, prevent fraud, establish or defend legal claims, or comply with accounting and tax rules.

18. Your rights

18.1 Depending on where you are located and the applicable law, you may have the right to:

a. request access to your personal data;
b. request correction of inaccurate or incomplete personal data;
c. request deletion of personal data;
d. request restriction of processing;
e. object to processing based on legitimate interests;
f. withdraw consent where processing is based on consent;
g. request data portability where applicable;
h. object to direct marketing;
i. lodge a complaint with a data protection authority.

18.2 If you are in the EU or EEA, you may lodge a complaint with your local data protection authority. In Denmark, the relevant authority is Datatilsynet.

18.3 To exercise your rights, contact us at contact@gorunningtours.com.

18.4 We may need to verify your identity before responding to a request. We will respond within the time required by applicable law.

19. Additional rights for U.S. residents

19.1 Certain U.S. state privacy laws may give residents additional rights where those laws apply to Go! Running Tours and the specific data involved.

19.2 These rights may include the right to know, access, correct, delete, restrict, opt out of certain processing, opt out of sale or sharing of personal information, opt out of targeted advertising, and appeal a privacy decision.

19.3 Go! Running Tours does not sell personal data for money.

19.4 If we use cookies, pixels or similar technologies for advertising or analytics, these may be subject to opt out or consent requirements depending on the applicable law and your location.

19.5 If you are a U.S. resident and wish to make a privacy request, contact us at contact@gorunningtours.com and write “U.S. privacy request” in the subject line.

20. Security

20.1 We use reasonable technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration or disclosure.

20.2 These measures may include access controls, secure systems, limited access to personal data, confidentiality obligations, service provider controls, backups and other security measures appropriate to the type of data and processing.

20.3 No system can be guaranteed to be completely secure. If you believe your data or communication with us has been compromised, please contact us immediately.

21. Third party websites and services

21.1 Our website may contain links to third party websites, booking platforms, payment providers, social media platforms, supplier websites or partner websites.

21.2 We are not responsible for the privacy practices, content or security of third party websites or services. You should read the privacy information provided by those third parties.

22. Automated decision making

22.1 We do not use automated decision making that produces legal effects or similarly significant effects on individuals.

22.2 We may use automated tools for normal website functions, fraud prevention, booking administration, marketing segmentation, analytics, spam prevention or similar business purposes, but these do not make decisions with legal or similarly significant effects without human involvement.

23. Changes to this Privacy Policy and Data Protection Statement

23.1 We may update this Privacy Policy and Data Protection Statement from time to time.

23.2 The latest version will be published on our website.

23.3 If we make material changes, we may provide additional notice where required by law.

23.4 The version date at the top of this Privacy Policy and Data Protection Statement shows when it was last updated.