This privacy statement applies to all platforms where we offer travel-related services, including our website, and where you interact with us on social media such as Facebook (in which case you should also review the privacy statements of these third-party social networking sites).
What kind of personal data do we collect?
When you book a travel arrangement with us, we require certain information from you, including your name, address, email address, telephone numbers; flight date of birth and payment information.
If you fill out a booking form but do not actually complete your booking, we will use your information (which we have collected using cookies) to see if you need further assistance or would like to complete your booking. For more information on how we do this (and how you can prevent this if you wish), please see our Cookie Statement.
You may also provide us with information when you sign up to our mailing list, for example to receive our Cruise Ahoy brochure or enter a competition.
Personal information about other people that you provide to us
If there are other people in your booking, or if you are booking a holiday for someone else, we will ask you to confirm that you have their permission to provide us with their personal information as described above. It is your responsibility to ensure that each person about whom you have provided personal information has consented to and is aware of how we use and process their information.
We collect personal data automatically
When you visit our website, even if you do not make a reservation, we automatically collect certain information such as your IP address, the date and time of your visit to the website, the hardware, software or web browser you use and information about your visits, including the displayed pages and interaction information. If you use a mobile device, we may collect information that identifies your mobile device, location information and any specific settings.
Sharing information with third parties
- Suppliers: Your personal data will only be shared with suppliers related to your booking and if your booking cannot be completed without providing your details, eg your airline, hotel, carrier etc. Only information necessary for your journey , shared.
- Payment service providers and other financial institutions: If you request a chargeback for your booking, we may need to share certain booking details with the payment service provider and the relevant financial institution in order for them to process the chargeback. This can be a copy of the booking confirmation or the IP address used to make the booking.
- To any law enforcement, regulatory authority, government agency, court or other third party we believe disclosure is necessary under applicable law or regulation or to exercise, establish or defend our legal rights
What do we do with your personal data?
Once your data has been collected, it will be used for the following purposes:
- Booking travel arrangements: We will use your personal information to provide you with the services we sell, including flights, hotels, transport and other ancillary products. Without this information, we would not be able to fulfill our contract with you.
- To communicate with you in relation to your holiday: We use the contact information you have previously provided to us to communicate with you in relation to your holiday and to provide you with information about your holiday. This may include destination information, security alerts and balance payment reminders.
- Customer Service: We use the information you provide to respond to any requests or questions you may have. In the case of telephone contact, the conversation can be recorded for quality control and training purposes.
- Marketing: If you have made a booking with us and have not opted out of future contact, we may contact you by phone, email, post or SMS to inform you about other goods and services we offer, and we believe that these are relevant. interest for you.
- Promotion: If you participate in a promotion, such as a survey or competition, we will use the information you provide to run that promotion.
- Consent: You will be asked for your consent to provide you with future marketing information. You can opt out of receiving marketing messages from us at any time by contacting our customer service.
- Legal and vital requirements: Sometimes we have a legal obligation to collect personal data from you, for example for tax compliance purposes, or when we need your personal data to protect your or another person's vital interests, for example if you are involved in an on- site accident or emergency.
How and where is your data processed?
All information we have about you is stored on our secure servers and all payment transactions are encrypted. Only authorized personnel have access to personal data as part of their job. Although we do our best to protect your personal information, no information transmitted over the Internet can be completely secure and you share it at your own risk.
When credit card information is requested as part of the booking process, we store the last 4 digits and the authorization code. For some low-cost airlines, we use the payment information you provide to purchase seats on your behalf.
The information we collect from you may be transferred to and stored at a destination outside the European Economic Area ("EEA"), including (in some cases) where we transfer your information to our suppliers so that they can assist us with our services to deliver to you. If your data is transferred outside the EEA, we will take steps to ensure that the information receives the same level of protection as if it were stored in the EEA, including by entering into data transfer agreements using standard contract clauses approved by the European Commission or relying on certification schemes such as EU-US Privacy Shield. You have the right to information about the mechanism for the transfer of your data outside the EEA. To obtain this information, please contact us using the information in the "How do you contact us?" below.
Storage of your personal data
If we do not have an ongoing legitimate business need to process your personal information (for example, to provide you with products or services or to store the data to deal with any claims you or we have regarding the products and services we provide to you) , we will delete it or anonymize it, and if this is not possible (e.g. because your personal data is stored in backup archives), we will securely store and isolate your personal data from further processing until deletion is possible.
Your rights in relation to your personal data
You have the following rights in relation to the personal data we store about you:
- You can access, correct, update or request deletion of your personal data at any time.
- You have the right to opt out of receiving marketing communications we send you at any time by contacting us.
- After your personal data has been collected and processed with your consent, you can withdraw it at any time. Withdrawal of your consent will not affect the lawfulness of the processing we carried out before the withdrawal of your consent, nor will it affect the processing of your personal data that was based on a lawful processing ground other than consent.
- You have the right to lodge a complaint with a data protection authority regarding our collection and use of your personal information. For more information, please contact your local data protection authority. The Information Commissioner's Office is the UK's data protection authority.
Personal data about children
Our website is not intended for use by children under the age of 18. We only process information about children with the consent of their parents or guardians.
Changes to our privacy statement
We may update this privacy statement from time to time in response to changing legal, technical or business developments. When we update our privacy statement, we will take appropriate steps to inform you of the significance of the changes we make. We will obtain your consent to material changes to the privacy statement if and when required by applicable data protection legislation.