How we store and use your information
INFORMATION ABOUT YOU
This refers to a combination of information such as your name, contact details, travel preferences and special needs/disabilities/dietary requirements that you supply us or is supplied to us, including your social preferences, interests and activities and any information about other persons you represent (such as those on your booking). Your information is collected when you request information from us, contact us (and vice versa), make a booking, use our website(s)/apps, link to or from our website(s)/apps, connect with us via social media and any other engagement we or our business partners have with you.
We will update your information whenever we can to keep it current, accurate and complete.
Our Use of Your Information
(1) For the purpose of providing you with our services, including your flight, holiday, security, incident/accident management or insurance, etc., we may disclose and process your information outside the UK/EEA. In order for you to travel abroad, it may be mandatory (as required by government authorities at the point(s) of departure and/or destination) to disclose and process your information for immigration, border control, security and anti-terrorism purposes, or any other purposes which they determine appropriate. Some countries will only permit travel if you provide your advance passenger data (for example Caricom API and US secure flight data). These requirements may differ depending on your destination and you are advised to check. Even if not mandatory, we may exercise our discretion to assist where appropriate.
(2) We may collect and process your information for the purposes set out below and in our registration with the Office of the Information Commissioner, and disclose the same to our group companies for business purposes and also to companies and our service providers who act as "data processors" on our behalf, or to credit and fraud agencies (some of whom are located outside the UK/EEA). These purposes include administration, service, quality and improvement-related activities, customer care, product innovation and choice, business management, operation and efficiencies, re-organisation/structuring/sale of our business (or group companies), risk assessment/management, security, fraud and crime prevention/detection, monitoring, research and analysis, social media, reviews, advertising and marketing, loyalty programmes, profiling customer purchasing preferences, activities and trends, dispute resolution/litigation, credit checking and debt collection.
(3) Information (such as health or religion) may be considered "sensitive personal data" under the Data Protection Act 1998. We collect it to provide you with our services, cater to your needs or act in your interest, and we are only prepared to accept sensitive personal data on the condition that we have your positive consent. By booking with us you also agree for your insurers, their agents and medical staff to exchange relevant information and sensitive personal data with us in circumstances where we/they need to act on your behalf or in the interest of passengers or in an emergency.
If you do not agree to Our Use of Your Information above, we cannot engage/do business with you or accept your booking.
(1) Using your information, we may from time to time contact you with or make available to you (directly or indirectly) information on offers of goods and services, brochures, new products, forthcoming events or competitions from our holiday divisions and our group companies. We will tailor the information you receive or see; this will enable us to make available to you more personalised and relevant communications. We may use innovative technologies and work with business partners to achieve this.
(2) We will assume you agree to e-communications when you make an e-booking or provide us with your email in other situations such as in-store, competitions, promotions, prize draws and social media.
(3) You may indicate your preference regarding receiving third party marketing material and contact. If you agree, you will establish new relationships with these third parties and deal with them directly.
(4) If you do not wish to receive such information or would like to change your preference, please refer to point (2) of "Your Rights" below.
(1) On completing our Data Subject Access Request form, you are entitled to a copy of the information we hold about you (for a £10 fee) and to correct any inaccuracies.
(2) You have the right to ask in writing not to receive direct marketing material from us. If available, you can amend your previous preference on our website(s), use our "unsubscribe email", opt-out of personalised emails or refer to our literature containing instructions. Once properly notified by you, we will take steps to stop using your information in this way.
(3) For a list of relevant brands, please send us your request.
Please write to TUI UK Limited, Legal Department, TUI Travel House, Crawley Business Quarter, Fleming Way, Crawley, West Sussex RH10 9QL.
Outside the European Economic Area (EEA), data protection controls may not be as strong as the legal requirements in this country.
USE OF TOOLS/"COOKIES" AND LINKS TO OTHER WEBSITES
Our website(s) may contain links to third party websites or micro-sites not controlled or owned by us. For example, reference sites or ancillary products and services sites or websites owned by our sister companies. It is your responsibility to check the status of these sites before using them. Please read their applicable terms and conditions, etc. carefully.
To ensure that we carry out your instructions accurately, improve our service and for security and fraud, we may review, monitor and/or record: (1) telephone calls; (2) activities using CCTV in and around our premises; (3) transactions and activities at all points of contact; and (4) web, social media and app traffic, activities, etc. All recordings and derivative materials are and shall remain our sole property.
We have taken all reasonable steps and have in place appropriate security measures to protect your information.
CHANGES TO THIS POLICY
Any changes to this Policy will be either posted on our website, brochure and/or made available on request.
-Customer Data: To provide your holiday and ensure that it runs smoothly, we (and your travel agent, if you use one) need to use information such as your name and address, special needs, dietary requirements, etc. Please be informed that we must pass it to suppliers of your travel arrangements, including airlines, hotels and transport companies; we may also supply it to security or credit checking companies, and to public authorities such as customs and immigration. When you make this booking, you consent to this information being passed to the relevant people. Information held by your travel agent is subject to that company's own data protection policy.
-Caricom API Data: Please note that some or all of the Caricom states listed below have entered into an agreement with the USA whereby advance passenger data, required by and provided to Caricom states for border security purposes, will be passed to the USA Department for Homeland Security for processing on behalf of those Caricom states listed as follows: Anguilla, Antigua and Barbuda, The Bahamas, Barbados, Belize, Bermuda, British Virgin Islands, Cayman Islands, Dominica, Grenada, Guyana, Haiti, Jamaica, Montserrat, Saint Lucia, St Kitts and Nevis, St Vincent and the Grenadines, Surinam, Trinidad and Tobago, Turks and Caicos Islands. Collectively members or associate members of ´Caricom´. The UK Information Commissioner's Office has accepted that this will not breach the Data Protection Act but that we are required to bring this to your attention.
-US Secure flight Data: The Transportation Security Administration (TSA) requires you to provide your full name, date of birth ,and gender for the purpose of watch list screening, under the authority of 49 U.S.C. section 114, the Intelligence Reform and Terrorism Prevention Act of 2004 and 49 C.F.R parts 1540 and 1560. You may also provide your Redress Number, if available. Failure to provide your full name, date of birth, and gender may result in denial of transport or denial of authority to enter the boarding area. TSA may share information you provide with law enforcement or intelligence agencies or others under its published system of records notice. For more on TSA privacy policies, or to review the system of records notice and the privacy impact assessment, please see the TSA Web site at www.tsa.gov.