Travel Accounts Limited (company registration number 09727235) are committed to protecting and respecting your privacy.
We collect and process some of the following personal data, and this policy details how we will manage and store that data. Please take time to read it carefully. We never use your data in a way that you did not intend for it to be used, and we will never share it with third parties, unless required to do so by law.
Some of the ways we collect information are:
(a)Information voluntarily provided by you
In the course of using this Site, you may choose to provide us with information to help us serve your needs. For example, you may provide us your e-mail address to request information, or you may send us your mailing address so we may send you the material you have requested.
(b) Our correspondence
If you contact us, we will typically keep a record of that correspondence.
(c) Survey information
If we ask you to complete surveys that we use for research purposes, we shall collect the information provided in the completed survey.
(d) Website and communication usage
Details of your visits to the website and information collected through cookies and other tracking technologies including, but not limited to, your IP address and domain name, your browser version and operating system, traffic data, location data, web logs and other communication data, and the resources you access.
1. What is personal data?
The GDPR definition is as follows: ‘personal data’ means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
2. What we collect, process and why
To ensure we can provide a valid response to a request or an update for information regarding our services, news, case studies, white papers or career information, we will collect personal information from you via web forms, direct contact or email requests. The information collected may be used to contact you personally or your business for the for marketing, employment opportunities and information relating to Travel Accounts' services.
2.1 Data Types Processed
The following data will be used for a business to business:
Personal Data Type
Source of data
Title, Email Address (business and personal), Position, Telephone number (mobile and/or Landline)
Any personal data we collect will be provided by the individual directly
Subscription HR databases for sales use
Travel Accounts' web forms
2.2 What is the purpose of processing and who receives the information?
Travel Accounts require this information to provide you / your business with information relating to rewards and benefits and additional marketing information if required.
The data is processed may also be used to provide:
Travel Accounts information updates
Information that you request from us. i.e. white papers and case studies and or additional information that may be of interest to you or your business.
Obligations arising from any contractual agreements between us and a business.
Our obligations arising from any contractual agreements between us and an individual.
Changes to our services.
Communications may be by post, e-mail or telephone.
2.3 Our legal basis for processing
Travel Accounts (the data controller) have two reasons for processing personal information relating to business contacts and personal information relating to product updates.
Travel Accounts are a business to business service, to generate leads for business purposes we will process personal data and contact business individuals to meet our business strategy goals.
2.4 Special categories of personal data
Travel Accounts do not process special categories of personal data (i.e. racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, and the processing of genetic data, biometric data for uniquely identifying a natural person, data concerning health or data concerning a natural person’s sex life or sexual orientation).
Travel Accounts is a business to business service and it is expected that all contacts via the corporate website will be for business. This in most cases will be classified under “Article 6 of the GDPR - Lawfulness of processing” Article 6(1)(b) “processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract”
However, any contact made via the website will be provided with the opportunity to consent to store the data provided and communicate with them as required.
4. Withdrawal of consent
Data Subjects can in accordance with GDPR Article 7(3) withdraw consent of any marketing communication directed to them personally, by using the supplied unsubscribe links on the communications received or alternatively, they may withdraw consent by contacting stating the requirement to withdraw consent and providing the relevant contact details held by Travel Accounts.
5. Disclosure of personal data
Travel Accounts will not share personal data used for sales and marketing purposes with anyone outside of Travel Accounts. Your personal data is only used by Travel Accounts for providing business related information you have requested and that Travel Accounts control.
6. Where does your data reside?
All personal data processed by Travel Accounts resides within the European Economic Area (EEA), any supplier that we may use for cloud services, will have appropriate data protection clauses and agreements in place to ensure the security of your personal data.
7. Security of your data
Travel Accounts ensure that personal data remains protected in accordance with data protection law. Travel Accounts ensure that all data stored is encrypted at rest and can only be accessed by those entitled to use. Travel Accounts additionally ensure that regular tests are carried out to check the overall security of our infrastructure and the personnel in support of the services provided.
8. Retention Period
Travel Accounts will only store your personal data for the purposes of marketing opportunities. Travel Accounts may be required to retain information in accordance with UK law. B2B information will be reviewed as necessary to maintain communications with individuals unless otherwise directed. In general, we maintain personal data for the following periods:
Business Enquires: 7 years
9. Your rights as a data subject
While Travel Accounts process your personal data, you as the data subject have the following rights:
Right of access – you have the right to request a copy of the information that we hold about you.
Note: Subject Access Request see section 3.11
Right of rectification – you have a right to correct data that we hold about you that is inaccurate or incomplete.
Right to be forgotten – in certain circumstances you can ask for the data we hold about you to be erased from our records.
Right to restriction of processing – where certain conditions apply to have a right to restrict the processing.
Right of portability – you have the right to have the data we hold about you transferred to another organisation.
Right to object – you have the right to object to certain types of processing such as direct marketing.
Right to object to automated processing, including profiling – you also have the right to be subject to the legal effects of automated processing or profiling.
Right to judicial review: if Travel Accounts refuses your request under rights of access, you will be provided with a reason to why.
Note: You have the right to complain as outlined in clause 3.12 below.
10. Subject Access Request
If you have provided personal data to Travel Accounts you are entitled to understand what data is held about you as the data subject. Under data protection law you can submit a subject access request, to do this please contact the Travel Accounts Data Protection Official at the following address or email for an application form.
Data Protection Official, Travel Accounts, 20-22 Wenlock Road, London, N1 7GU.
Proof of identification will be required to ensure that the information is released to the correct person and to the correct address.
If you wish to make a compliant about how your personal data is being processed or how your complaint has been handled, you have the right to submit a complaint directly with Travel Accounts and / or the supervisory authority. The data protection representatives for Travel Accounts and the
Information Security Director
Travel Accounts Limited, 20-22 Wenlock Street, London, N1 7GU