Privacy Policy

​

​​​​ Personal Data We Collect About You

​

The personal data we collect depends on the particular products and services we provide to you. We may collect and use the following:

​

• Name and contact information (email, phone number, company details)

• Identity verification info (date of birth)

• Gender (optional)

• Location data (optional)

• Billing info, transactions, card details

• Emergency contact / next of kin

• Dietary requirements

• Height and weight

• Travel insurance info

• Passport details (including nationality and place of birth)

• Scan of your passport

• Visa application

• Medical / health info (including conditions)

• Vaccination status

• Disability

• Medications

• Food allergies / religious food restrictions

​

If you do not provide requested personal data, it may delay or prevent us from providing products/services.

​

​

​

How Your Personal Data Is Collected

​

We collect most personal data directly from you—via in-person interaction, telephone, text, email, or our website.

​

​

​

​

How and Why We Use Your Personal Data

​

Under data protection law, we may use your personal data when:

​

• You’ve given consent

• It’s necessary to comply with legal/regulatory obligations

• It’s required for a contract or steps prior to one

• It’s for our legitimate interests (or those of a third party)

​

We ensure that we balance our interests against your rights and freedoms.

​

​

​

Use of Personal Data – Summary Table

​

​​​​​

​

​

​

​

​

​

​

​

​

​

​

​

​

​

​

​

​

​

​

Special Category Personal Data

Includes health, mental health, and dietary information.

​

We will only process this data when:

• You give explicit consent

• It’s needed to protect your or another’s vital interests

• It’s necessary for legal claims

​

​

Marketing

We may send you updates via email, phone, text, or post. You can opt out at any time by contacting us. We never sell or share your personal data for marketing.

​

Who We Share Your Data With

We may share with:

• Payment service providers, delivery companies

• Marketing and website services

• Credit reference agencies

• Insurers and brokers

• Banks

• Professional advisors

• Law enforcement, regulators (if required)

• Acquirers in a business sale (data will be anonymised where possible)

​

Data Storage & Transfers

Your personal data may be stored:

• At our offices

• With third-party agents, service providers, or partners

• Outside the UK/EEA if necessary

We follow UK and EU GDPR rules for international transfers and ensure appropriate safeguards are in place.

​

Retention Period

We retain personal data only as long as needed, typically up to 7 years post-service. After that, we delete or anonymise the data.

​

​

Your Rights

​You may exercise the following rights at any time:

​

​

​

​

​

​

​

​

​

​

​

 

 

To exercise any of these rights, contact us using the details below.

​

Security

We have strong measures to protect your personal data, with access limited to those who need it. We notify you and regulators of any data breaches as required.

Visit www.getsafeonline.org for tips on staying secure online.

​

Complaints

If you have concerns, please contact us first. You may also contact the Information Commissioner’s Office (ICO).

​

Changes to This Policy

This policy was last updated on 16 September 2024. Any updates will be published on our website.

​

Contact Us

Hummingbird Tours Ltd
6 Hurstbourne Priors
Whitchurch
Hampshire
United Kingdom
RG28 7SE
📧 info@hummingbird-tours.co.uk