Privacy Policy

1. Introduction

MarcopoloHoliday (“we”, “our”, or “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our flight booking platform. Please read this policy carefully to understand our practices regarding your personal data.

2. Information We Collect

We collect information that you provide directly to us and information that is automatically collected when you use our Service.

2.1 Personal Information

• Full name, title, date of birth, and nationality
• Email address, phone number, and physical address
• Passport number and expiry date (for international flights)
• Payment information (credit card details are processed securely by our payment provider and are not stored on our servers)
• Account credentials (email and encrypted password)

2.2 Automatically Collected Information

• Device information (browser type, operating system, device type)
• IP address and approximate location
• Usage data (pages visited, search queries, booking history)
• Cookies and similar tracking technologies

3. How We Use Your Information

We use the information we collect for the following purposes:

• Processing and managing your flight bookings
• Communicating booking confirmations, e-tickets, and travel updates
• Providing customer support and responding to your inquiries
• Improving our platform, services, and user experience
• Sending promotional communications (with your consent, which you may withdraw at any time)
• Detecting and preventing fraud or unauthorised access
• Complying with legal obligations and regulatory requirements

4. Information Sharing and Disclosure

We may share your personal information with the following categories of recipients:

• Airlines and travel providers: To process and fulfil your booking, we share necessary passenger details with the relevant airlines and ground service providers.
• Payment processors: Your payment information is securely transmitted to our PCI-compliant payment processor (Stripe) to complete transactions.
• Service providers: We engage trusted third-party services for email delivery, analytics, and infrastructure hosting, all bound by confidentiality agreements.
• Legal requirements: We may disclose your information when required by law, court order, or to protect our rights and safety.

We do not sell, trade, or otherwise transfer your personal information to outside parties for marketing purposes.

5. Data Security

We implement industry-standard security measures to protect your personal information, including encryption in transit (TLS/SSL), secure data storage, access controls, and regular security assessments. However, no method of electronic transmission or storage is 100% secure, and we cannot guarantee absolute security.

6. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience on our platform. These include:

• Essential cookies: Required for the platform to function properly, including authentication and session management.
• Functional cookies: Remember your preferences such as language, currency, and recent searches.
• Analytics cookies: Help us understand how users interact with our platform so we can improve it.

You can manage cookie preferences through your browser settings. Disabling essential cookies may affect platform functionality.

7. Data Retention

We retain your personal information for as long as necessary to fulfil the purposes outlined in this policy, comply with legal obligations, resolve disputes, and enforce our agreements. Booking records are retained for the period required by applicable aviation and tax regulations. You may request deletion of your account data at any time, subject to legal retention requirements.

8. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

• Access: Request a copy of the personal information we hold about you.
• Correction: Request correction of inaccurate or incomplete personal information.
• Deletion: Request deletion of your personal information, subject to legal retention requirements.
• Objection: Object to the processing of your personal information for certain purposes.
• Portability: Request transfer of your personal data in a structured, machine-readable format.
• Withdrawal of consent: Withdraw consent for processing where consent was the basis for processing.

To exercise any of these rights, please contact us using the details provided below.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including Australia, where our servers are located. We ensure that appropriate safeguards are in place to protect your data in accordance with applicable privacy laws.

10. Children’s Privacy

Our Service is not directed to children under the age of 16. We do not knowingly collect personal information from children under 16 without parental consent. If we become aware that we have collected personal information from a child under 16 without verification of parental consent, we will take steps to remove that information.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page with a revised “Last updated” date. Your continued use of the Service after any changes constitutes acceptance of the updated policy.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal data, please contact us at privacy@marcopoloholiday.com.