Please note that in order for us to provide you with optimum service, we use ‘Cookies’ on our website.
What are cookies?
A cookie is a text-only string of information that a website transfers to the cookie file of the browser on your computer’s hard disk so that the website can remember who you are. Cookies will typically contain the name of the domain from which the cookie has come, the “lifetime” of the cookie, and a value, usually a randomly generated unique number. Two types of cookies are used on this web site – session cookies, which are temporary cookies that remain in the cookie file of your browser until you leave the site, and persistent cookies, which remain in the cookie file of your browser for much longer (though how long will depend on the lifetime of the specific cookie).
Cookies allow us to obtain information regarding users of our site which essentially helps us to provide you with a better user experience and tailor our services to your individual needs. We may collect information such as your IP address, online activity, web browser details and online activity. We will not however collect or store any of your passwords or other highly sensitive data. Please note that Cookies cannot retrieve any personal data from your hard drive or pass on computer viruses.
We use the following types of cookies on our website:
Category 1: strictly necessary cookies
These cookies are essential in order to enable you to move around the website and use its features, such as accessing secure areas of the website. Without these cookies services you have asked for, like shopping baskets or e-billing, cannot be provided.
Category 2: performance cookies
These cookies collect information about how visitors use a website, for instance which pages visitors go to most often, and if they get error messages from web pages. These cookies don’t collect information that identifies a visitor. All information these cookies collect is aggregated and therefore anonymous. It is only used to improve how a website works.
One of the analytics tools that our website uses is Google Analytics, to learn more about Google Analytics, you can visit www.google.com/policies/privacy/partners/.
Third Party/Targeting Cookies
These are Cookies used by: Social network sites (e.g. Facebook, Twitter, LinkedIn, YouTube, etc.), which may use information about your visit to target advertising to you on their websites. Third Party Cookies such as these are set by a domain other than the one being visited by the user. Please therefore note that we have no control over the dissemination of these types of Cookies and recommend that you should check the third party websites for more information about these cookies. Third-party suppliers and/or advertisers, carefully selected by us, who may use information on your visit so that they can present you with adverts that you may be interested in.
By using our website, you agree that we can place these types of cookies on your device.
For further information and to find out more information about cookies, please visit www.allaboutcookies.org.
How can you control or delete the Cookies used on our website?
Browsers are usually automatically set to accept Cookies. By navigating around our website we will automatically assume that you are happy with Cookies being set by us to improve your online experience.
If you would prefer not to receive any Cookies, you can adjust the settings on your internet browser to alert you each time a Cookie is presented to your computer, or you can delete any Cookies that have been stored on your hard drive.
Please note that if you prevent us from placing Cookies on your computer during your visit (including Essential Cookies), or you subsequently delete a Cookie that has been placed, this may affect the functionality of our website and it will not be possible for you to use our website effectively. This will apply to all websites, as well as our own, once cookies are disabled via your browser settings.
Protecting your information
We take website security very seriously and we are committed to safeguarding your personal information. We take a number of administrative and technical steps to ensure the security of the information you provide to us.
Please note that our website contains certain literature and hyperlinks to websites owned by third parties. This privacy statement covers websites owned and controlled by us only. Links to other websites and any information collected by these sites are not covered by this privacy statement.
To ensure that we carry out your instructions accurately, to help improve our service and in the interest of security, we may monitor and/or record: (1) your telephone calls; and (2) customer transactions and activities on our website. All recordings are and shall remain our sole property.
Updates and Changes
As our privacy statement may change due to developments in the law we encourage you to re read this from time to time so you are aware of any changes in how we gather and use your personal information. Any changes to this Policy will be either posted on our website, brochure and/or made available on request.
Important Information and Who We Are
About this privacy notice
This privacy notice explains how Typically Holidays collects and processes your personal information. We would encourage you to read this information.
It is important that you read this privacy notice together with any other privacy notice or fair processing notice we may provide on specific occasions when we are collecting or processing personal data about you so that you are fully aware of how and why we are using your data. This privacy notice supplements the other notices and is not intended to override them.
Who’s responsible for your personal information?
Typically Holidays is responsible for this website and is the ‘data controller’ for your data (collectively referred to as “Typically Holidays”, “we”, “us” or “our” in this privacy notice).
How can you contact us?
We have appointed a data protection manager to oversee compliance with this privacy notice. If you have any questions about this privacy notice or how we handle your personal information, please contact the Data Protection Manager at firstname.lastname@example.org or by writing to: Data Protection Manager, Typically Holidays, 8 London Road Peterborough, PE2 8AR
If you do not think that we have processed your data in accordance with this notice you should let us know as soon as possible. You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.
Changes to the privacy notice and your duty to inform us of changes
We may change this privacy notice from time to time. You should check this notice occasionally to ensure you are aware of the most recent version.
It is important that the personal information we hold about you is accurate and current. Please keep us informed if your personal information changes during your relationship with us.
Links to other websites
This website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. When you leave our website, we encourage you to read the privacy notice of every website you visit as we do not control those.
How Your Personal Information is collected
We use different methods to collect data from and about you including through:
- Direct interactions. You may give us your Identity, Contact, Financial, Sensitive and Transaction Data by filling in forms or by corresponding with us online or by post, phone, email or otherwise. This includes personal data you provide when you:
- apply to purchase our products and services;
- enquire about our goods and services;
- subscribe to our services or publications;
- request marketing to be sent to you;
- enquire about our community involvement;
- enter a competition, promotion or survey; or
- give us some feedback.
- Automated technologies or interactions. As you interact with our website, we may automatically collect Profile and Usage Data. We will also collect Technical Data about your equipment, browsing actions and patterns. We collect this personal data by using cookies, server logs and other similar technologies.
- Third parties or publicly available sources. We may receive personal data about you from various third parties and public sources as set out below:
- Identity, Contact and Sensitive Data from schools or other organisations making a party booking on your behalf and carers or other healthcare providers in relation to your booking.
- Contact, Financial and Transaction Data from providers of technical, payment and delivery services.
- Identity and Contact Data from data brokers or aggregators.
- Identity and Contact Data from publicly available sources such as social media.
- Technical Data from the following parties:
(a) analytics providers;
(b) advertising networks; and search information providers.
(c) search information providers.
Sharing Your Personal Information
We may have to share your personal data with the parties set out below for the purposes set out in the table above.
- Internal third parties such as other legal entities in Typically Italian who provide administrative services and undertake management reporting.
- External third parties including the following:
- Travel companies, airlines, hotels, insurers and other organisations involved in performing your contract.
- Industry regulatory bodies such as the Civil Aviation Authority and ABTA.
- Government bodies or other organisations in the UK and in other countries, such as for immigration, border control, security and anti-terrorism.
- Organisations that provide foreign exchange services in respect of travel money sales.
- Organisations to which we may outsource certain of our activities, such as printing, mailing and distribution services.
- Organisations that provide customer identity and address verification services.
- Organisations doing research for us.
- Organisations for the detection, investigation and prevention of crime, such as the National crime Agency in respect of money laundering.
- Financial organisations for purposes such as payment processing, finance plans and refunds.
- Third parties to whom we may choose to sell, transfer, or merge parts of our business or our assets. Alternatively, we may seek to acquire other businesses or merge with them. If a change happens to our business, then the new owners may use your personal data in the same way as set out in this privacy notice.
- Professional advisers acting as processors or joint controllers including lawyers, bankers, auditors and insurers who provide consultancy, banking, legal, insurance and accounting services.
We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.
It may be necessary to pass your booking details to third parties, such as airlines, hotels and transfer providers, situated outside of the European Economic Area (EEA) in order to perform our contract with you. Whenever we do so, we will try to make sure that your personal information is adequately protected.
How long will you use my personal data for?
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
Details of retention periods for different aspects of your personal data are available in our retention policy which you can request from us by contacting us.
Under certain circumstances, by law you have the right to:
- Request accessto your personal information (commonly known as a “data subject access request”). This enables you to receive a copy of the personal information we hold about you and to check that we are lawfully processing it.
- Request correctionof the personal information that we hold about you. This enables you to have any incomplete or inaccurate information we hold about you corrected.
- Request erasureof your personal information. This enables you to ask us to delete or remove personal information where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your personal information where you have exercised your right to object to processing (see below).
- Object to processingof your personal information where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground. You also have the right to object where we are processing your personal information for direct marketing purposes.
- Request the restriction of processingof your personal information. This enables you to ask us to suspend the processing of personal information about you, for example if you want us to establish its accuracy or the reason for processing it.
- Request the transferof your personal information to another party.
If you want to review, verify, correct or request erasure of your personal information, object to the processing of your personal data, or request that we transfer a copy of your personal information to another party, please contact the Data Protection Manager.
No fee usually required
You will not have to pay a fee to access your personal information (or to exercise any of the other rights). However, we may charge a reasonable fee if your request for access is clearly unfounded or excessive. Alternatively, we may refuse to comply with the request in such circumstances.
What we may need from you
We may need to request specific information from you to help us confirm your identity and ensure your right to access the information (or to exercise any of your other rights). This is another appropriate security measure to ensure that personal information is not disclosed to any person who has no right to receive it.
Time limit to respond
We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
Complaints to the regulator
If you do not think that we have processed your data in accordance with this notice you have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues. You can contact them by going to their website at ico.org.uk, phoning them on 0303 123 1113 or by post to: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, SK9 5AF.