Privacy and Cookies
For the purposes of the Data Protection Act 1998, we Promundial are a data controller. In order to process your booking, we need to collect certain personal details from you. These details will include, where applicable, the names and contact details of party members, credit/ debit card or other payment details and special requirements such as those relating to any disability or medical condition, which may affect the chosen holiday arrangements and any dietary restrictions which may disclose your religious beliefs. If we need any other personal details, we will tell you before we obtain them from you. We need to pass on your personal details to the companies and organisations who need to know them so that your holiday can be provided (for example your airline, hotel, other supplier, credit/debit card company or bank). Such companies and organisations may be outside the European Union, Norway, Iceland or Liechtenstein if your holiday is to take place or to involves suppliers outside these countries.
We would also like to store and use your personal details for future marketing purposes (for example, sending you a brochure or details of a promotion). All details you give us in connection with your booking (including those relating to any disability or medical condition or your religious beliefs ) will be kept but we will use only names and contact details for marketing purposes (unless you have asked us not to).
We may need to disclose our customer database, including any personal data relating to you contained therein, to a third party who acquires or attempts to acquire all or substantially all of the assets or stocks in our company or our website service whether by merger, acquisition, reorganisation or otherwise.
If you do not want us to do any or all of these things, please let us know as soon as possible. We are entitled to assume you do not object to our doing any of the things mentioned in this statement unless you tell us otherwise in writing.
Except where expressly permitted by the Data Protection Act, we will only deal with the personal details you give us as set out above unless you agree otherwise. We have appropriate security measures in place to protect this information.
You are generally entitled to ask us (by letter or e-mail) what details of yours are being held or processed, for what purpose and to whom they may be or have been disclosed. We will charge a fee to respond to such a request. We promise to respond to your request within 40 days of receiving your written request and fee. In certain limited circumstances we are entitled to refuse your request.
If you believe that any of your personal details, which we are processing are inaccurate or incorrect please contact us immediately.
This privacy statement covers websites owned and controlled by us only. Links to other websites and any information collected by these sites are not covered by this privacy statement.
As our privacy statement may change due to developments in the law, we would encourage you to reread our privacy statement from time to time so that you are aware of any changes in how we gather and use personal information.
The DPA & GDPR May 2018
We and this website complies with the DPA (Data Protection Act 1998) and already complies with the GDPR (General Data Protection Regulation) which comes into effect from May 2018. We will update this policy accordingly after the completion of the UK's exit from the European Union.
If the settings on your web browser are set to accept cookies, we understand this and continued use of the website to mean that you accept our cookie. You can change your browser settings so that you do not accept our cookie or any other website cookies. However, this may result in the website not working as you would expect.
You can usually switch cookies off by adjusting your browser settings to stop it from accepting cookies. Doing so however, may limit the functionality of our website and a large proportion of the many other websites as cookies are a standard part of most websites.
Our site only uses one default cookie - PHPSESSID. This cookie expires after a browser session so would not be stored longer term. For this reason the cookie is less privacy intrusive.
PHPSESSID is a cookie for PHP sessions. When you are working with an application, you open it, do some changes and then you close it. This is much like a Session. The computer knows who you are. It knows when you start the application and when you end. But on the internet the web server does not know who you are and what you do because the HTTP address doesn't maintain state. A PHP session solves this by allowing you to store user information on the server for later use (i.e. username, shopping items, etc). However, session information is temporary and will be deleted after the user has left the website. Sessions work by creating a unique id (UID) for each visitor and store variables based on this UID. The UID is either stored in a cookie or is propagated in the URL.
What are cookies? Cookies are small files saved to the user's computer’s hard drive that track, save and store information about the user's interactions and usage of the website. This allows the website, through its server to provide the users with a tailored experience within this website. Users are advised that if they wish to deny the use and saving of cookies from this website on to their computers hard drive they should take necessary steps within their web browsers security settings to block all cookies from this website and its external serving vendors or use the cookie control system if available upon their first visit.
Website Visitor Tracking This website does not use tracking software to monitor its visitors to better understand how they use it. The software will not save a cookie to your computer’s hard drive in order to track and monitor your engagement and usage of the website.
Downloads & Media Files Any downloadable documents, files or media made available on this website are provided to users at their own risk. While all precautions have been undertaken to ensure only genuine downloads are available users are advised to verify their authenticity using third party anti-virus software or similar applications. We accept no responsibility for third party downloads and downloads provided by external third party websites and advise users to verify their authenticity using third party anti-virus software or similar applications.
Contact & Communication With us
Users contacting us through this website do so at their own discretion and provide any such personal details requested at their own risk. Your personal information is kept private and stored securely until a time it is no longer required or has no use. Where we have clearly stated and made you aware of the fact, and where you have given your express permission, we may use your details to send you products/services information through a mailing list system. This is done in accordance with the regulations named in 'The policy' above.
Email Mailing List & Marketing Messages
We do not operate an email mailing list program, used to inform subscribers about products, services and/or news we supply/publish.
External Website Links & Third Parties
Although we only look to include quality, safe and relevant external links, users are advised to adopt a policy of caution before clicking any external web links mentioned throughout this website. (External links are clickable text / banner / image links to other websites, similar to those contained on our “Where to buy” page).
We do not use Shortened URL's; URL shortening is a technique used on the web to shorten URL's (Uniform Resource Locators) to something substantially shorter. This technique is especially used in social media and looks similar to this (example: http://bit.ly/zyVUBo).
We cannot guarantee or verify the contents of any externally linked website despite our best efforts. Users should therefore note they click on external links at their own risk and we cannot be held liable for any damages or implications caused by visiting any external links mentioned.
Social Media Policy & Usage
We adopt a Social Media Policy to ensure our business and our staff conduct themselves accordingly online. While we may have official profiles on social media platforms users are advised to verify authenticity of such profiles before engaging with, or sharing information with such profiles. We will never ask for user passwords or personal details on social media platforms. Users are advised to conduct themselves appropriately when engaging with us on social media. There may be instances where our website features social sharing buttons, which help share web content directly from web pages to the respective social media platforms. You use social sharing buttons at your own discretion and accept that doing so may publish content to your social media profile feed or page. You can find further information about some social media privacy and usage policies in the resources section below.
Resources & Further Information
Overview of the GDPR - General Data Protection Regulation
Data Protection Act 1998
Privacy and Electronic Communications Regulations 2003
The Guide to the PECR 2003
v.3.0 November 2017 Edited & customised by Promundial