Privacy Policy

Journey are committed to protecting your personal information and explaining how we collect, process, and share it. This Privacy Policy applies to Journey’s websites, mobile applications, and cloud-based services, collectively referred to as "the Site." It describes how we collect, use, and protect information that can identify you personally ("Personal Information") and provides your rights under data protection laws.

This document outlines:

• Our data collection practices and types of personal information we collect.

• How we protect your information.

• How we use, share, and store your information.

• Your rights and choices regarding your personal information.

• Contact information for questions or complaints.

If you have any questions about this privacy policy or our privacy practices, please contact:

Journey at hello@journey.travel or by mail at Journey HQ, Elmstone Business Park, Stoke Road, Elmstone Hardwicke, Cheltenham, GL51 9SY.

We may update this Privacy Policy to reflect changes in our practices, operational, legal, or regulatory reasons. Notifications of significant changes will be posted prominently on our Site or communicated via email where appropriate.

Types of Personal Information We Collect

We collect the following types of personal information based on interactions with our Site and services:

• Identity Information: Name, title, date of birth, gender, and identification numbers.

• Contact Information: Email, address, phone number, and social media information.

• Financial Information: Payment card details, billing address, and other transactional data.

• Technical Information: IP address, device and browser type, operating system, and cookies.

• Usage Information: Site activity, preferences, and survey responses.

• Marketing and Communications Data: Communication preferences and any responses to marketing communications.

How We Collect Personal Information

We collect your personal information directly through forms, emails, phone interactions, and online surveys, or automatically via cookies and other tracking technologies.

How We Use Your Personal Information

We use the information we collect to:

1. Provide products, services, and customer support.

2. Communicate updates, marketing offers, and advertisements relevant to your interests.

3. Conduct surveys, analyses, and troubleshooting.

4. Maintain and improve our Site, ensuring security and compliance.

We process your personal information based on several legal grounds, depending on the purpose of the processing:

• Contractual Necessity: Processing is necessary to fulfil our contractual obligations to you, such as providing services or products, and managing your account.

• Legitimate Interests: Processing is conducted to pursue our legitimate business interests, provided these interests do not override your rights and freedoms. This includes:

  • Customer relationship management and service improvements

  • Fraud prevention and IT security measures

  • Operational efficiency and business development activities

• Legal Obligations: We may be required to process your data to comply with legal and regulatory obligations, including tax and corporate compliance laws.

• Consent: Where legally required, we seek your consent before processing your data, particularly for marketing and optional communications. You may withdraw consent at any time without impacting the lawfulness of processing carried out prior to withdrawal.

Consequences of Not Providing Data

Providing personal information is often necessary to fulfil a contract with you, such as enabling purchases or managing an account. If you choose not to provide certain required information, we may not be able to provide specific services or products to you.

Sharing with Third Parties

We may share your information with service providers, professional advisors, analytics partners, and affiliates, provided they meet our standards for data security and confidentiality. We do not share your data with third-party advertisers or unrelated parties without consent, except as legally required.

In order to provide our services and maintain our business operations, we may share information with the following trusted third-party providers:

• Analytics Providers: Google Analytics, Spabreaks, Journey, AFD, Text Anywhere, Hotel PMS, Ganter, UserPilot, Zoho

• Payment and Technical Providers: Campaign Master UK Ltd, Carbonite Inc, Send Grid Inc, Textanywhere Limited, SRCL Limited, AFD Software Ltd, Advanced Card Bureau Ltd, CSS Media Limited, International Cash Drawer Ltd, Jarltech Europe GmbH, JM Prime Technologies Limited, Premier Vanguard Limited, Shopify eCommerce Solutions, Stripe.

• Marketing and Customer Engagement Providers: Smartbox Ltd, Red Letter Days, Buyagift, Spabreaks.com, The Plastic Card People.

• IT and Data Services: Oracle, Microsoft, Google, Zoho

Each of these providers has been carefully selected to ensure they meet our standards for security, privacy, and compliance. Data shared with these providers is limited to the minimum necessary for them to perform specific tasks on our behalf, and they are contractually obligated to handle data in a secure and compliant manner.

Third-party links

This website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy policy of every website you visit.

International Data Transfers

Data shared with our external third-party partners may involve transfers outside the EEA. When this occurs, we employ safeguards such as standard contractual clauses to protect your information.

We employ reasonable security measures, including encryption, restricted access, and secure data handling practices, to protect your personal information against unauthorised access and misuse. Despite these measures, please note that data transmission over the internet is not entirely secure, and we cannot guarantee the security of data transmitted to our Site.

We retain personal information for as long as required by law or as necessary to fulfil the purposes for which it was collected. This includes compliance with legal, tax, and accounting requirements.

We will maintain Personal Information for as long as we are required to do so by applicable law(s), or for as long as necessary for the purpose(s) described above for which it is processed. We will delete Personal Information when it is no longer needed and/or take steps to properly anonymise it so that you can no longer be identified from it (unless we need to keep your information to comply with legal or regulatory obligations to which we are subject) and, in any case, upon expiration of the maximum storage term set forth by applicable law.

We retain personal information for as long as required by law or as necessary to fulfil the purposes for which it was collected. This includes compliance with legal, tax, and accounting requirements.

You have certain rights regarding your personal information, including the right to access, correct, delete, restrict processing, and transfer data. For EU and UK users, these rights extend to objections to certain types of data processing and filing a complaint with supervisory authorities.

To exercise these rights, contact us at the above-provided contact information.

Marketing Communications

 If you no longer wish to receive any marketing communications, remain on a mailing list to which you previously subscribed or receive any other communication from us, please follow the unsubscribe link in the relevant communication. Even after you opt out or update your marketing preferences, we may still contact you for transactional or informational purposes. These include, for example, customer service issues, surveys, or any questions regarding a specific reservation.

Cookies and Similar Technologies. Please review your browser or computer settings for certain cookies and see below to exercise certain choices regarding cookies.

If you have any questions or comments regarding this Privacy Policy or our privacy practices in general, please contact us as detailed below. You may also have a right to lodge a complaint with a supervisory authority.

Email: hello@journey.travel

Mailing Address: Journey HQ, Elmstone Business Park, Stoke Road, Elmstone Hardwicke, Cheltenham, GL51 9SY

Our Site uses cookies and similar technologies to enhance user experience, track interactions, and support our analytics efforts. You may control cookies by adjusting your browser settings.

Our services are not directed to individuals under 16, and we do not knowingly collect information from children. If we learn of any collection of children’s information, we will take steps to delete it promptly.