Data Protection Policy

Data Protection Policy

At traveloflights.co.uk, we are committed to protecting and respecting your privacy. This Data Protection Policy explains how we collect, use, store, and protect your personal data when you interact with our website and services. We take your privacy seriously and comply with the UK’s Data Protection Act 2018 and the General Data Protection Regulation (GDPR).

By using our website and services, you agree to the practices outlined in this policy.

1. Data Controller

The data controller for traveloflights.co.uk is The Flight Trotters LTD., registered in Profile West 950 Great West Road Brentford, Middlesex, TW8 9ES, with registration number (Company Reg No.: 09946264, VAT No.: 259 8826 41). You can contact us regarding any data protection queries at: sales@traveloflights.co.uk

2. Types of Personal Data We Collect

We collect various types of personal data, depending on how you interact with our website. This may include, but is not limited to:

• Personal Identifiers: Name, email address, phone number, date of birth, gender.
• Payment Details: Credit card or bank account information (processed securely through third-party payment processors).
• Booking Details: Flight details, accommodation preferences, travel itinerary, passport information (for international bookings).
• Device Information: IP address, browser type, operating system, device information, location data.
• Communication Records: Emails, chat messages, and other correspondence between you and us.

3. How We Collect Your Data

We collect data in the following ways:

• Directly from you: When you make a booking, create an account, subscribe to our newsletter, contact us, or fill out forms on our website.
• Automatically: Through cookies and similar tracking technologies when you browse our website. These cookies help us improve the functionality of the website and provide a more personalized experience.
• Third Parties: From third-party service providers (such as airlines, hotels, payment processors) to fulfill your bookings and requests.

We will never sell, rent, or trade your personal data to third parties. However, we may share your information with:

• Service Providers: Third-party companies that help us provide our services, such as airlines, hotels, car rental agencies, payment processors, and email service providers.
• Legal Authorities: To comply with legal obligations, or when required by law or regulation.
• Business Transfers: In the event of a merger, acquisition, or asset sale, your personal data may be transferred.

Any third parties with whom we share your data are required to handle your information in compliance with data protection laws.

4. Why We Collect Your Data

We collect your personal data for the following purposes:

• To Provide Our Services: To process bookings, reservations, payments, and provide customer support.
• To Improve Your Experience: To personalize your interactions with us, such as suggesting travel options, providing offers tailored to your preferences, and improving the functionality of our website.
• To Communicate With You: To send booking confirmations, updates, and respond to your inquiries.
• For Marketing and Promotions: To send you offers, newsletters, and promotions, with your consent. You can opt-out at any time.
• To Comply With Legal Obligations: To comply with applicable laws, such as tax regulations or fraud prevention.

5. Legal Basis for Processing Your Data

Under GDPR, we process your personal data on the following legal bases:

• Contractual Necessity: To process your bookings and reservations.
• Consent: For marketing communications or cookies that require consent.
• Legitimate Interests: To improve our website, analyze trends, and enhance the user experience.
• Legal Obligation: To comply with laws and regulations (e.g., fraud prevention, reporting).

6. How We Protect Your Data

We implement robust technical and organizational measures to safeguard your personal data, including:

• Encryption: Using secure SSL encryption for transactions and data transmission.
• Access Control: Limiting access to your data to authorized personnel only.
• Regular Audits: Conducting regular security audits and assessments.
• Data Anonymization: Anonymizing data where possible to enhance privacy.

Despite these efforts, no method of transmission or storage is 100% secure, so we cannot guarantee absolute security. However, we are committed to protecting your data to the best of our abilities.

7. Sharing Your Data

We will never sell, rent, or trade your personal data to third parties. However, we may share your information with:

• Service Providers: Third-party companies that help us provide our services, such as airlines, hotels, car rental agencies, payment processors, and email service providers.
• Legal Authorities: To comply with legal obligations, or when required by law or regulation.
• Business Transfers: In the event of a merger, acquisition, or asset sale, your personal data may be transferred.

Any third parties with whom we share your data are required to handle your information in compliance with data protection laws.

8. Data Retention

We retain your personal data for as long as necessary to fulfill the purposes for which it was collected or as required by law. Typically, this includes:

• Bookings and Transactions: Data related to your bookings is retained for up to [5 years], in accordance with legal and tax requirements.
• Marketing: We will retain your data for marketing purposes until you opt-out or request to have your data removed.

9. Your Rights

You have the following rights under GDPR:

• Right to Access: You can request a copy of the personal data we hold about you.
• Right to Rectification: If you believe your data is inaccurate or incomplete, you can request corrections.
• Right to Erasure: You can request that we delete your personal data (also known as the "right to be forgotten"), subject to certain conditions.
• Right to Restriction: You can ask us to restrict the processing of your data in certain situations.
• Right to Data Portability: You can request to receive your data in a commonly used, machine-readable format to transfer to another service provider.
• Right to Object: You can object to the processing of your personal data for certain purposes, such as direct marketing.

To exercise any of these rights, please contact us at sales@traveloflights.co.uk.

10. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our website. These technologies help us:

• Understand how users navigate our website.
• Provide personalized content and advertisements.
• Analyze and improve the performance of the site.

You can manage or disable cookies through your browser settings, but doing so may affect the functionality of our website.

11. International Data Transfers

As we may work with third-party service providers based outside of the UK or European Economic Area (EEA), your data may be transferred and stored in countries where the data protection laws may not be as strong as those in the UK.

In such cases, we ensure that appropriate safeguards, such as standard contractual clauses, are in place to protect your data.

12. Changes to This Data Protection Policy

We may update this Data Protection Policy from time to time. We will notify you of any significant changes by posting an updated version on our website. Please review this policy regularly to stay informed about how we are protecting your data.

13. Contact Us

If you have any questions or concerns about this Data Protection Policy or wish to exercise your rights, please contact us at: sales@traveloflights.co.uk