Privacy Policy
PRIVACY POLICY
At INTERCRUISES SHORESIDE & PORT SERVICES, we are concerned about your privacy. This policy describes what, why and how we collect and use your personal data, how we protect it and how you can get in touch with us.
More to the point, this policy regulates the processing of data carried out by TUI ESPAÑA TURISMO SLU., trading under the name “INTERCRUISES SHORESIDE & PORT SERVICES”, a legally constituted Spanish company which operates as a wholesale-retail travel agency, based in Palma de Mallorca (Spain), C/Rita Levi, Parc Bit, 07121, with license number GCMD-4 and tax identification code No. B08089187 and registered in the Mercantile Register of Palma de Mallorca page PM-80371, volume 2688, sheet 93, 16th inscription. (hereinafter “INTERCRUISES SHORESIDE & PORT SERVICES”), as the controller of your data part of the TUI Group.
What this Privacy Policy covers
We are committed to doing the right thing when it comes to how we collect, use and protect your personal data. Your privacy matters to us, so please do take the time to read our Privacy Policy which explains:
- What types of personal data we collect and why we collect it.
- When and how we may share personal data within the TUI Group and with other organisations.
- The choices you have, including how to access and update your personal data.
We have tried to keep this Policy as simple as possible, but if you are not familiar with terms such as data controller, special categories of personal data, then read about these and some others in Key terms.
Personal data we collect
When you register for this party, you provide us with: your personal details such as your name and email address.
When you contact us or we contact you or you take part in promotions, competitions, surveys or questionnaires about our services, we may collect:
- Personal data you provide when you connect with us, including by email, post and phone or through social media, such as your name, username and contact details.
- Details of emails and other digital communications we send to you that you open, including any links in them that you click on.
- Your feedback and contributions to customer surveys and questionnaires.
Other sources of personal data
- We may use personal data from other sources, such as specialist companies that supply information, retail partners and public registers.
- Your insurance company, their agents and medical staff may exchange relevant personal data and special categories of personal data with us in circumstances where we/they need to act on your behalf or in the interest of other customers or in an emergency.
- If you log-in using your social network credentials e.g. Facebook, Google+ and Twitter, you will agree to share your user details with us. For example, your name, email address, date of birth, location and any other information you choose to share with us.
- We may use CCTV images collected in or around our shops, premises and other buildings.
Using your personal data
We use your personal data in a variety of ways, as explained below.
Using your image and voice
We may record, reproduce and disseminate your image and voice and to include such audiovisual material, in whole or in part, in videos and photographs collected during events and corporate events, on social media, websites, multimedia platforms, brochures, reports or any other content relating to the companies’ activity, nationwide or internationally, with the aim of promoting the services and products marketed by the group.
The legal basis for this treatment is the consent given. You have the right to revoke the consent without affecting the legality of the previous treatments. The images will be kept without a time limit until you revoke your consent
To provide the products and services you request
We need to process your personal data so that we can manage your account or booking, provide you with the products and services you want to buy and help you with any orders and refunds you may ask for.
To manage and improve our products, services and day-to-day operations
We use personal data to manage and improve our products, websites, mobile apps, customer loyalty or recognition programme(s) and other services. We monitor how our services are used to help protect your personal data, detect and prevent fraud, other crimes and the misuse of services. This helps us to make sure that you can safely use our services. We may use personal data to respond to and to manage security operations, accidents or other similar incidents, including medical and insurance purposes. We use personal data to carry out market research and internal research and development, and to develop and improve our product range, services, shops, IT systems, security, know-how and the way we communicate with you. We use CCTV images to help maintain the safety of anyone working in or visiting our shops, premises and other buildings, and for the prevention, detection and prosecution of criminal offences. We may also rely on the images to establish, exercise or defend our legal rights.
To personalise your experience
We want to ensure that marketing communications relating to our products and services, and those of our suppliers, retail partners and the TUI Group, including online advertising, are relevant to your interests. To do this, we may use your personal data to better understand your interests so that we can try to predict what other products, services and information you might be most interested in. This enables us to tailor our communications to make them more relevant and interesting for you. Looking at your browsing behaviour and purchases helps us to better understand you as a customer and it allows us to provide you with personalised offers and services. We may also measure your responses to marketing communications relating to products and services we offer, which enables us to offer you products and services that better meet your needs as a customer. If you do not want to receive a personalised service from us, you can change your preference online, over the phone or in writing at any time. We will update our records as soon as we can.
To make contact and interact with you
We want to serve you better as a customer so if you contact us, for example by email, post, and phone or via social media, we may use personal data to provide clarification or assistance to you. We need to process your personal data so that we can manage any promotions and competitions you choose to enter, including those we run with our suppliers and retail partners. For example, if you win a prize. We may invite you to take part in customer surveys, questionnaires and other market research activities carried out by the TUI Group and by other organisations on our behalf. To help us to better understand you as a customer, and to be able to provide you with services and marketing communications (including online advertising relevant to your interests), we may combine the personal data we collect when you make purchases in-shop with personal data collected from our websites, mobile apps and other sources. We may invite you to take part in events, such as tradeshows, conferences or different types of networking events carried out by the TUI Group and by other organisations on our behalf.
Marketing
From time to time we may send you relevant offers and news about our products and services in a number of ways, including by email. We may also send you information about other companies’ products and services that we believe may be of interest to you. We will only do this if you previously agreed to receive these marketing communications. When you book or register with us we will ask if you would like to receive marketing communications. You can change your marketing preferences online, over the phone or in writing at any time. Of course, the choice is entirely yours, but if you say you do not want to receive marketing information from us this will prevent you from receiving great offers or promotions that may be of interest to you. You may still receive service-related communications from us. For example, confirming bookings you make with us and providing important information about the use of our products or services.
Market research
We like to hear your views to help us to improve our products and services, so we may contact you for market research purposes. You always have the choice about whether to take part in our market research.
Sharing personal data with suppliers and retail partners
In order to provide products or services requested by you we may share personal data with suppliers of your travel arrangements, including airlines, hotels and transport companies. We also work with carefully selected suppliers that carry out certain functions on our behalf. For example, companies that help us with IT services, storing and combining data, marketing, market research, processing payments and delivering products and services. We may need to share personal data to establish, exercise or defend our legal rights; this includes providing personal data to others for the purposes of preventing fraud and reducing credit risk. When we share personal data with other organisations we require them to keep it safe, and they must not use your personal data for their own purposes. We only share the minimum personal data that enable our suppliers and retail partners to provide their services to you and us.
Sharing personal data with regulatory authorities
So that you can travel, it may be mandatory (as required by government authorities at the point(s) of departure and/or destination) to disclose and process your personal data for immigration, border control, security and anti-terrorism purposes, or any other purposes which they determine appropriate. We may share the minimum personal data necessary with other public authorities if the law says we must, or we are legally allowed to do so.
Sharing personal data within the TUI Group
Our Privacy Policy applies to all of the services offered by the TUI Group but excludes services that have separate privacy notices that do not incorporate this Privacy Policy. We may share the minimum personal data necessary with other companies in the TUI Group, for example, to provide the products and services you request; to manage and improve our products, services and day-to-day operations; to help to personalise your experience; where appropriate, to make contact and interact with you; and, if allowed and appropriate, for marketing or market research purposes. We may also share personal data with an organisation we sell or transfer (or enter into negotiations to sell or transfer) any of our businesses or any of our rights or obligations under any agreement we may have with you. If the transfer or sale goes ahead, the organisation receiving your personal data can use your data in the same way as us.
Protecting your personal data
We know how important it is to protect and manage your personal data. We take appropriate security measures to help protect your personal data from accidental loss and from unauthorised access, use, alteration and disclosure. The security of your data also depends on you. For example, where we have given you or where you have chosen a password for access to certain services, you are responsible for keeping this password confidential. The personal data that we collect from you may be transferred to, and stored at, a destination outside the European Economic Area ("EEA"). It may also be processed by organisations operating outside the EEA who work for us or for one of our suppliers. We put in place appropriate protections to make sure your personal data remains adequately protected and that it is treated in line with this Policy. These protections include, but are not limited to, appropriate contract clauses, such as standard contract clauses approved by the European Commission, and appropriate security measures.
Data retention
We will retain your personal data for only as long as it is necessary for the uses set out in this Privacy Policy and/or to meet legal and regulatory requirements. After this period, we will securely erase personal data. If data is needed after this period for analytical, historical or other legitimate business purposes, we will take appropriate measures to anonymise this data.
Accessing and updating your personal data, including complaints
You have a right to ask for a copy of the personal data we hold about you. You can write to us asking for a copy of other personal data we hold about you. Please include any details to help us identify and locate your personal data. Where we can provide data access, we will do so free of charge except where further copies are requested in which case we may charge a reasonable fee based on administrative costs. We want to make sure that the personal data we hold about you is accurate and up to date. If any of the details we hold are incorrect, please let us know. We will update or erase your data, unless we have to keep it for legitimate business or legal purposes. You can also ask for your personal data to be rectified or erased and to object to the processing of your personal data. If you would like to make a request, please write to the following email address: gdprdx@tui.com . You can also contact the Data Protection Officer if you have a complaint about how we collect, store or use your personal data. We aim to resolve complaints but if you are dissatisfied with our response, you may complain to the local data protection authority www.agpd.es. Please note that we may ask you to verify your identity before we can act on your request or complaint.
Changes to our Policy
This Policy replaces all previous versions. We may change the Policy at any time so please check it regularly for any updates. If the changes are significant, we will provide a prominent notice including, if we believe it is appropriate, email notification of Privacy Policy changes.
Last update: February 2019
Key terms
Data controller: The data controller determines the purpose and manner in which personal data is used.
European Economic Area (EEA): EU Member States plus Norway, Iceland and Lichtenstein.
Online advertising: Marketing messages that you may see on the internet.
Special categories of personal data: This are categories of personal data revealing racial or ethnic origin; political opinions; religious or philosophical beliefs; trade union membership; health data; and data concerning a natural person’s sex life or sexual orientation.