020 8965 0364
The UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018 govern how we collect, use, and protect personal data. At Peace Travel and Tour Ltd, operating as Flypeace.co.uk, we recognize that as a leading online travel company, the security of our customers' information is paramount.
We are committed to the principles of "privacy by design" and ensuring that all data processing is lawful, fair, and transparent.
Flypeace.co.uk is dedicated to safeguarding the personal information under our remit. We have implemented a robust data protection program that meets the requirements of the UK GDPR. Our objective is to ensure maximum and ongoing compliance through the implementation of stringent policies, procedures, and technical controls.
As an active travel provider, we process data ranging from passport details to payment information. We ensure compliance through the following measures:
Information Audit: We conduct regular audits to identify what personal information we hold, its source, its purpose, and to whom it is disclosed (e.g., airlines, hotels, or global distribution systems).
Data Minimisation: We only collect the data necessary to facilitate your travel arrangements and fulfill legal obligations.
Data Retention & Erasure: We store personal data only for as long as is necessary for the purposes for which it was collected. We have dedicated procedures for the "Right to Erasure" (the right to be forgotten).
International Data Transfers: Travel often requires transferring data outside the UK/EEA (e.g., to an international hotel). We ensure these transfers are protected by standard contractual clauses or adequacy decisions to maintain data integrity.
Data Breaches: We have a robust breach notification procedure to identify, investigate, and report any potential data breach to the Information Commissioner’s Office (ICO) within 72 hours, where required.
We process your data under several legal bases:
Contractual Necessity: To book your flights, hotels, and tours.
Legal Obligation: For tax purposes or security screenings.
Consent: Where you have opted-in to receive our marketing newsletters.
Legitimate Interests: To improve our website and customer service.
You have the right to access and control your information. You may contact us to request:
Access: A copy of the personal data we hold about you.
Correction: The right to have inaccurate data corrected.
Erasure: The right to request the deletion of your data (where applicable).
Restriction: The right to stop us from processing your data for specific reasons (e.g., marketing).
Portability: The right to have your data transferred to another provider.
To exercise these rights, please email [email protected]. We will respond to all valid Subject Access Requests (SAR) within 30 days, free of charge.
Flypeace.co.uk takes security seriously. We use industry-standard encryption (SSL/TLS), secure firewalls, and restricted access protocols to ensure that your travel data and payment details are protected from unauthorized access or destruction.
In the travel industry, we may occasionally process "Special Category Data," such as health requirements (for disability assistance) or dietary requirements (which may imply religious beliefs). We process this data with the highest level of care and only with your explicit consent or where necessary for your safety.
If you have any questions regarding this GDPR policy or how we handle your information, please contact our Data Protection team:
Data Protection Officer
Peace Travel and Tour Ltd (Flypeace.co.uk)
Email: [email protected]
Website: www.flypeace.co.uk
10.00am
