WHO WE ARE

This is the privacy notice for Above & Beyond Group Ltd (called in this notice “us”, “we”, or “our”) a company incorporated in England & Wales under number 12674325 whose registered office is at Endeavour House Coopers End Road, London Stansted Airport, Stansted, United Kingdom, CM24 1SJ.

PURPOSE OF THIS NOTICE

We respect your privacy and are committed to protecting your personal data. We understand the concerns about how data may be stored, sent and used by companies. We are committed to complying with all data protection laws and want you to feel confident in the measures we are taking to uphold your data privacy rights.

This privacy policy explains how we collect and use your personal information. In it we explain the types of information we collect, how we collect it, what we use it for and who we may share your personal information with. We also let you know what rights you have over your information.

WHAT INFORMATION WE MAY COLLECT ABOUT YOU

The information we collect depends upon how you are interacting with us. For example, if you’re making a booking with us we are likely to ask for more information than if you’re only requesting event details or browsing our website. We may collect, use, store and transfer the following different kinds of personal information about you:

Details about you and your company: Your first and last name, contact name, business name, personal and business address, e-mail address, telephone number, date of birth, meal and other travel preferences or dietary requirements.

Payment details: Your bank details and payment card details when making a booking with us. Details about payments to and from you and other details of products and services you have purchased from us. In accordance with our Terms and Conditions, we may take automatic payment from the bank details provided to us during the booking process in order to reimburse us for any proportion of the price which has not been paid to us in accordance with the terms of our contract.

Identification documents: If you and your guests are travelling on a route requiring advance passenger information, your and your guests’ passport or identity card details including your passport number, the country in which your passport was issued and the expiry date. We will only use this information for the purpose of fulfilling the booking and will remove all copies of passport information and special requirements once the event in question has taken place. As third parties (such as hotels and airlines) may also require this information in order to fulfil the terms of your booking, please refer to the terms of their individual privacy policies for details on the way in which they handle and treat your personal data.

Details about your booking with us: Details such as the event you are attending, where you are flying from and to, your booking information (including anyone else on the booking), any onward travel details if relevant, details of experiences or excursions booked through us, baggage requirements, upgrade information, lounge visits, seat preferences, meal preferences or requirements, details of any special assistance required and any other relevant information so that we can provide you with the travel or other service you have arranged with us.

Details from your interactions with us: Information about interactions or conversations with us and our staff, including when you make enquiries, comments, complaints or submit feedback to us. This could also include your interests, marketing preferences and survey responses.

Your use of our systems and services: This includes how you use our site, call centres and/or social media pages, IP addresses and information you may post on social media.

Job applications: If you apply for a job with us, your CV, work history, educational details and the role you are applying for.

Special types of data: In some circumstances we may need to collect information from you that is deemed sensitive. For example, we might collect:

Data about your health: Knowing your dietary requirements and any medical conditions you have will ensure that the trip is suitable for you and any necessary adjustments are made.

Information about your religion: (for example if you specify a meal preference that indicates a particular religion, such as a kosher or halal meal).

We try to limit any sensitive personal data we collect to the minimum possible. Unless we have a specific lawful reason to use this information, we will ask for your consent to collect it.

IF YOU FAIL TO PROVIDE PERSONAL DATA

Where we need to collect personal data by law, or under the terms of a contract we have with you and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you (for example, to provide you with goods or services). In this case, we may have to cancel a product or service you have with us but we will notify you if this is the case at the time.

HOW DO WE COLLECT YOUR INFORMATION

Depending upon your interactions with us, we might collect information in the following ways:

Direct Interactions: You may give us your identity, contact and financial data by filling in forms or by corresponding with us by post, phone and email or otherwise. This includes personal data you provided when you:

  • make a booking with us for an event or other service;

  • discuss booking information with us but do not complete the booking;

  • request booking information, sign up to receive email updates, complete a contact us form, participate in any of our competitions, promotions (for example via any social media channels, email or our site), surveys or market research;

  • enter information into online forms;

  • provide us with information about an accident, illness or incident that occurred or some other feedback;

  • apply for a job with us by email or via the site;

  • contact us via our call centres, press office, social media, post, email or instant messenger. Our interactions with you may be recorded and monitored for the purposes of improving customer service, quality assurance, training, security and general business purposes; or

  • attend any of our events.

Automated technologies or interactions:

As you interact with our website, we may automatically collect technical data about your equipment, browsing actions and patterns. We collect this personal data by using cookies, server logs and other similar technologies. Please see our Cookie Policy for further details.

Third parties or publicly available sources:

We may receive personal data about you from various third parties as set out below:

  1. airlines, hotel providers or other parties we work with if you make a complaint to them;

  2. analytics providers;

  3. from trusted third parties, where you have agreed to them passing your information to us in order to contact you about events we think will be of interest to you.

HOW WE USE YOUR INFORMATION

Under data protection laws we are allowed to use personal information only if we have a proper reason to do so such as:

  • to fulfil a contract or booking we have with you or;

  • when it is our legal duty or;

  • when it is in our legitimate interest (or those of a third party) and your interests and fundamental rights do not override those interested or;

  • when you consent to it.

Generally, we do not rely upon consent as a legal basis for processing your personal data other than in relation to sending third party direct marketing communications to you via email or text message. You have the right to withdraw consent to marketing at any time by contacting us.

We have set out below a description of all the ways we plan to use your personal data, and which of the legal bases we rely on to do so. Note that we may process your personal data for more than one lawful ground depending on the specific purpose for which we are using your data.

To manage your booking with us: We will use your information to provide you with any travel or event services that you request or purchase. This entails booking your flights, accommodations, organising tours, transportation and car hire and providing you with your tickets (on the basis of performing our contract with you) and providing you with any special assistance you require (where you give us your consent).

To contact you with information about your bookings and support services: We will use your contact details to send you communications which relate to your booking or services you have requested. The types of information usually included would be: emails responding to enquiries, providing you with tickets, alerting you to changes in itineraries or responding to any complaints you have. We do these things in order to fulfil our contract with you and on the basis of our legitimate business interest of providing you with customer service.

To enable you to partake in a prize draw, competition or complete a survey: We do this to perform our contract with you or for our legitimate events of studying how customers use our services, develop them and grow our business.

To send you marketing communications: We will use your information to contact you in order to keep you up to date with the latest news, offers, events, sales, brochures, promotions and competitions that we consider may be of interest or relevant to you. We will usually only do this when we have your consent to do so or on the basis of our legitimate interest to provide you with customer service. Please see the Marketing section below for more information.

To personalise your customer experience and improve our service: We use your information to provide you with a more personalised service. This might include personalising the communications we send to you with preferences, sending you only advertising that we think you might like and/or enhancing your booking experience (on the basis of our legitimate interests to present you with the right kinds of products and services). We may also record and/or monitor calls in order to improve our customer service.

To ensure security and protect our business interests: In certain circumstances, we use your information to ensure the security of our services, buildings, and people, including to protect against, investigate and deter fraud, unauthorised or illegal activities, systems testing, maintenance and development (on the basis of our legitimate interests to operate a safe and lawful business or where we have a legal obligation to do so);

To process your job applications: We will use your information to process any job applications that you submit to us, whether directly or via an agent or recruiter (speculatively or in response to any ad) (on the basis of our legitimate interest to recruit new employees or contractors);

To optimise our site: If you use our site, we will use your information to ensure that the content from our websites are presented in an effective manner for you and your device, to provide you with access to our site, in a manner that is effective, convenient and optimal, and to provide you with content that is relevant to you, using site analytics and research and in certain circumstances combining that with other information we know about you (on the basis of our legitimate interests to operate and present an effective and convenient website to our website users);

To use data analytics to improve our website, products/services, marketing, customer relationships and experiences: This is necessary for our legitimate interests (to define types of customers for our products and services, to keep our website updated and relevant, to develop our business and to inform our marketing strategy)

To conduct research: We use your information to carry out aggregated and anonymised research about general engagement with our services and systems, or if you choose to participate in customer surveys, consumer focus groups and research (on the basis of our legitimate interests to improve our products, services and customer service); and

To comply with our legal obligations: In certain circumstances, we will need to use your information to comply with our legal obligations, for example to comply with any court orders or subpoenas (on the basis of our legitimate interests to comply with a legal obligation).

OUR MARKETING PRACTICES

When we will get in touch with you:

One of the other reasons we sometimes collect your information is so that we can form a view on what we think you may want or need, or what may be of interest to you. With this information we decide which products, services and offers may be relevant for you and what marketing you may be interested in.

We keep you up to date with our latest offers, events, partnerships, sales, promotions, competitions that we think might be of interest/relevance to you.

We will only contact you in this way if:

  • You have signed up to receive marketing communications from us and have not later told us that you don’t want to hear from us.

  • You have made a booking with us and have not told us that you do not want to hear from us.

If you don’t want to receive marketing:

We never want to send our marketing to someone who isn’t interested in receiving this content. If you have decided that you no longer wish to hear from us, you can unsubscribe from marketing by clicking on the ‘unsubscribe’ link included in all of our emails or by contacting us.

Third parties and marketing:

We do not pass your information to other parties for marketing purposes unless you agree to us doing so. We will get your express opt-in consent before we share your personal data with any company for marketing purposes.

Sometimes we may use 3rd parties to send the communication to you on our behalf. However, these companies do not have the right to send marketing to you for their own purposes.

The marketing material we send to you may occasionally also include information about selected business partners who provide services closely related to our own products and services.

SHARING YOUR PERSONAL DATA

In order to provide you with the services and on the lawful grounds described above, we may share your personal information with third parties such as:

Third party suppliers we work with to provide your booking and our other services to you. We may share your information with parties such as travel agents, booking agents, airlines, hotels, tour operators, transport companies, excursion providers, airport authorities, insurance companies, car hire companies, ground handling agencies, and cruise companies.

Other suppliers that we work with in connection with our business. We share your information with third party suppliers that we use to provide services in connection with the experiences we offer to you. This might include marketing agencies and/or companies that run our marketing campaigns, IT developers, service providers and hosting providers, third parties that manage promotions or competitions, third party software companies ground agents, site analytics providers, medical service providers and credit card screening companies;

Airports, immigration / border control and/or other government authorities. Sometimes we have to provide ‘Advance Passenger Information’ about you to border or immigration authorities of the country of your travel destination. This would usually be the basic information contained in your passport but the laws of certain countries may require additional information. We will provide this information when we are required to do so.

Third party companies for marketing. We share your information with any third party that you consent to our sharing your information with for marketing purposes;

Credit references and fraud prevention agencies.

Courts or advisors. We may have to share your information with other third parties (such as legal, accountants or other advisors, regulatory authorities, courts and government agencies) to enable us to enforce our legal rights, or to protect the rights, property or safety of our employees or where such disclosure may be permitted or required by law; and

Third parties to whom we may choose to sell, transfer, or merge parts of our business or our assets. Alternatively, we may seek to acquire other businesses or merge with them. If a change happens to our business, then the new owners may use your personal data in the same way as set out in this privacy notice.

In the event of our insolvency we, or any appointed insolvency practitioner, may disclose your personal information to the CAA, and/or ABTA so that they can assess the status of your booking and advise you on the appropriate course of action under any scheme of financial protection. The CAA’s General Privacy Notice is at https://www.caa.co.uk/Our-work/About-us/General-privacy-notice ABTA’s Privacy Notice is at https://www.abta.com/privacy-notice

We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.

SENDING YOUR DATA OUTSIDE THE EEA

We will only send your data outside the European Economic Area (“EEA”) to:

  • follow your instructions;

  • comply with a legal duty;

  • work with our suppliers and third parties who we use to help deliver our services;

Some of our external third parties are based outside the EEA so their processing of your personal data will involve a transfer of data outside the EEA. If we do transfer information to parties outside of the EEA, we will make sure that it is given a similar degree of protection.

YOUR PERSONAL DATA RIGHTS

Your rights: 

We want you to feel reassured that you have control of your personal information. With this in mind, we have explained below the rights you have in relation to the personal information we hold about you:

  • The right to be advised of how we will use your personal information. This is set out in this privacy policy and we do our best to provide you with as much information as we can at the point at which you pass us your data.

  • The right to ask us to correct any information you believe is incorrect.

  • The right to ask us to not to use your information for marketing purposes.

  • The right to receive a copy of the personal data we hold about you or to request that we transfer this to another service provider.

  • In certain circumstances, the right to ask us to stop using information about you.

  • The right to ask us to limit or cease processing or erase information we hold about you in certain circumstances.

  • The right to withdraw consent that you have provided to us to use your personal information.

Exercising your rights:

You can exercise these rights over your data by contacting us or by checking the applicable boxes on forms where we collect your information or to tell us that you don’t want to participate in marketing. You can also unsubscribe from any marketing circulation lists you are on by scrolling to the bottom of the e-mail and clicking the ‘unsubscribe’ link.

We will comply with your requests, unless we have a lawful reason not to do so. We may need you to provide additional details to confirm your identity in order to process your request.

DATA SECURITY

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

LENGTH OF TIME WE KEEP YOUR DATA

We will only keep your personal data for as long as necessary to fulfil the purpose we collected it for, including for the purpose of satisfying any legal accounting or reporting requirements.

We operate a data retention policy and look to find ways to reduce the amount of information we hold and the length of time we hold it for.

By law we have to keep basic information about booking and our customers for six years for legal claims and tax purposes.

In some circumstances we may anonymise your personal data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you.

CONTACTING US

We have appointed a Data Protection Officer (DPO) who is responsible for overseeing questions in relation to this privacy notice. If you have any questions about this privacy notice, including any requests to exercise your legal rights, please contact the DPO using the details set out below.

Scarlett Franklin

Above & Beyond Group Ltd

Endeavour House, Coopers End Road, London Stansted Airport, Stansted, CM24 1SJ

Please contact us in the first instance if you have any concerns. If we are unable to resolve your concern, you have the right to make a complaint to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk) or the relevant data protection authority where you live.

OTHER PRIVACY INFORMATION

Change of Purpose: 

We will only use your personal data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose.

If we need to use your personal data for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so.

Please note that we may process your personal data without your knowledge or consent, in compliance with the above rules, where this is required or permitted by law.

Third-party Links: 

This website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy notice of every website you visit.

Changes to this privacy policy and your duty to inform us of changes:

We keep our privacy policy under regular review. This version was last updated on 2nd November 2020.

It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes during your relationship with us.

COOKIES

You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable or refuse cookies, please note that some parts of this website may become inaccessible or not function properly. For more information about the cookies we use, please see our Cookie Policy.