top of page

Data Policy 

Effective Date: 19/09/2023


1. Introduction

Alba Àrd ("we," "us," or "our") is committed to protecting the privacy and security of personal information collected from our customers, website visitors, and business partners. This Data Policy outlines our practices regarding the collection, use, storage, and sharing of personal data, as required by the General Data Protection Regulation (GDPR) and the Data Protection Act 2018.


2. Information We Collect

We may collect and process the following categories of personal data:

  • Personal contact information (e.g., name, address, email address, phone number).

  • Travel-related information (e.g., booking details, flight and accommodation preferences).

  • Payment information (e.g., credit card details, billing address).

  • Passport and visa information (for international travel).

  • Emergency contact information.

  • Marketing preferences (e.g., opt-in or opt-out for newsletters).

  • Technical data (e.g., IP address, device information, cookies, and browsing history).

  • Location data (if permitted by the user).

  • Customer feedback and survey responses.


3. How We Use Your Data

We may use your personal data for the following purposes:

  • To provide travel-related services and fulfil bookings.

  • To process payments and billing.

  • To communicate with you regarding your bookings, updates, and travel information.

  • To improve our services and website functionality.

  • To send marketing communications (if you have provided consent).

  • To comply with legal obligations.

  • To protect our rights, property, and safety.


4. Data Sharing

We may share your personal data with third parties under the following circumstances:

  • Travel service providers (e.g., airlines, hotels, car rental companies) to fulfil bookings.

  • Payment processors to facilitate payments.

  • Marketing and advertising partners (only with your consent).

  • Regulatory authorities and law enforcement agencies when required by law.

  • Third-party service providers (e.g., IT support, analytics, customer service).


5. Data Security

We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, disclosure, alteration, and destruction. We regularly review and update our security practices to maintain the highest level of data protection.


6. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected or as required by applicable laws and regulations.


7. Your Rights

You have the following rights regarding your personal data:

  • Access: You can request access to your personal data.

  • Rectification: You can request corrections to inaccuracies in your personal data.

  • Erasure: You can request the deletion of your personal data under certain circumstances.

  • Data Portability: You can request a copy of your data in a structured, machine-readable format.

  • Object: You can object to the processing of your personal data in certain situations.

  • Withdraw Consent: You can withdraw consent for marketing communications at any time.


8. Contact Us

If you have questions, concerns, or requests related to your personal data or this Data Policy, please contact our Data Protection Officer at

9. Changes to this Data Policy

We may update this Data Policy from time to time to reflect changes in our practices or legal requirements. We will post the revised policy on our website, and the effective date will be updated accordingly.

By using our services or visiting our website, you consent to the terms outlined in this Data Policy.


Last Updated: 19/09/2023

bottom of page