Privacy Policy

Last updated: January 2024

1. Introduction

brisk-spark ("we", "our", "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website brisk-spark.com or use our travel planning services.

We are registered in Scotland and operate from Glasgow, United Kingdom. As a data controller, we comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Information We Collect

2.1 Personal Information You Provide

When you enquire about or book travel services, we may collect:

• Full name and title
• Email address
• Postal address
• Date of birth
• Passport details (when required for bookings)
• Dietary requirements and medical information relevant to travel
• Payment information
• Travel preferences and history

2.2 Information Collected Automatically

When you visit our website, we automatically collect:

• IP address and browser type
• Pages visited and time spent on site
• Referring website addresses
• Device information

3. How We Use Your Information

We use your personal information to:

• Process and manage your travel bookings
• Communicate with you about your enquiries and bookings
• Send confirmations, itineraries, and travel documentation
• Provide customer support before, during, and after travel
• Comply with legal requirements and industry regulations
• Improve our services and website functionality
• Send marketing communications (with your consent)

4. Legal Basis for Processing

We process your personal data under the following legal bases:

• Contract: Processing necessary to fulfil your travel booking
• Legal obligation: Processing required by law (e.g., passport data for flight bookings)
• Legitimate interests: Processing for business purposes such as service improvement
• Consent: Processing based on your explicit consent (e.g., marketing emails)

5. Information Sharing

We share your information with:

• Airlines, hotels, tour operators, and other travel suppliers necessary to fulfil your booking
• Payment processors to handle transactions securely
• Government authorities when legally required (e.g., passport and visa applications)
• Our professional advisors (accountants, lawyers) under confidentiality agreements

We do not sell your personal information to third parties.

6. International Transfers

Your information may be transferred to countries outside the UK when necessary for your travel arrangements. When this occurs, we ensure appropriate safeguards are in place, including standard contractual clauses approved by the Information Commissioner's Office.

7. Data Retention

We retain your personal information for:

• Active client records: Duration of client relationship plus 7 years
• Booking records: 7 years from completion of travel (for legal and accounting purposes)
• Marketing contacts: Until you withdraw consent or request deletion
• Website analytics: 26 months

8. Your Rights

Under UK GDPR, you have the right to:

• Access your personal data
• Rectify inaccurate data
• Request erasure of your data
• Restrict processing of your data
• Data portability
• Object to processing
• Withdraw consent at any time

To exercise these rights, contact us at [email protected].

9. Data Security

We implement appropriate technical and organisational measures to protect your personal data, including encrypted connections, secure servers, and staff training on data protection.

10. Contact Us

For privacy-related enquiries:

brisk-spark
142 Byres Road
Glasgow G12 8TB
Email: [email protected]

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.

11. Changes to This Policy

We may update this Privacy Policy periodically. The date at the top indicates when it was last revised. We encourage you to review this policy regularly.