Privacy Policy

1. Introduction

SB Luxury Travel (“we”, “us”, “our”) is committed to protecting your privacy and handling your personal information securely and responsibly.
This Privacy Policy explains how we collect, use, store, and share your personal data in accordance with UK data protection laws, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

By using our website or booking travel services through us, you agree to the terms of this Privacy Policy.

2. Contact Details

If you have questions about this policy or how your data is handled, you can contact us here:

Company Name: SB Luxury Travel
Email: [email protected]

We are a Member of ABTA (No. P8631) and operate as an Accredited Body Member of The Midcounties Co-operative Limited, who act as the principal or retailer depending on the booking.

3. What Personal Data We Collect

We may collect the following types of personal information:

Information you provide to us directly:

  • Name(s)

  • Contact details (email, phone number, address)

  • Date of birth (when required for travel services)

  • Passport information where necessary for booking

  • Payment-related information (processed securely by third-party payment providers)

Information collected during enquiries and bookings:

  • Travel preferences

  • Passenger details

  • Communications between you and our team

We do not store payment card details on our systems or website.

4. How We Use Your Personal Data

We process your information for the following purposes:

  • To make and manage your travel booking

  • To issue travel documents, confirmations, and ATOL/ABTA protection documents

  • To communicate with airlines, hotels, tour operators, and other travel suppliers

  • To comply with legal, regulatory, and financial obligations

  • To improve customer service and respond to enquiries

All processing is carried out under lawful bases such as contractual necessity, legal obligation, or legitimate interest.

5. Sharing Your Information

We share personal data only when required to fulfil your travel arrangements or meet legal obligations.

This may include sharing data with:

  • Airlines, hotels, cruise lines, car hire companies, and tour operators

  • Destination management companies and transfer providers

  • Travel insurers

  • The Midcounties Co-operative Limited (as our Accredited Body)

  • Regulatory authorities such as ABTA and the CAA

  • Payment processors and fraud-prevention services

  • Government bodies for immigration, security, or border control

We never sell your personal data.

Some suppliers may be located outside the UK. Where this is the case, we ensure your data is transferred securely and only when necessary to deliver your travel arrangements.

6. Data Storage and Security

We implement appropriate technical and organisational measures to protect your data from loss, misuse, unauthorised access, or disclosure.

Examples include:

  • Secure servers and encrypted transmission

  • Restricted access to booking systems

  • Mandatory data protection training for staff

We store customer information only for as long as necessary to fulfil bookings and meet legal, financial, and regulatory requirements.

7. Your Rights Under UK GDPR

You have the right to:

  • Access the personal data we hold about you

  • Request correction of inaccurate data

  • Request deletion of your data in certain circumstances

  • Object to certain types of data processing

  • Request restriction of processing

  • Withdraw consent where consent is the lawful basis

To exercise any of these rights, email us at [email protected].

You also have the right to request details of data shared with travel suppliers.

8. Cookies and Tracking Technologies

Our website may use essential cookies for functionality.
We do not use tracking cookies unless explicitly stated in our website cookie notice.

9. Updates to This Policy

We may update this Privacy Policy from time to time. Any updates will be posted on our website, and significant changes may be communicated to you via email.

10. Children’s Data

We collect children’s data only when necessary to perform travel services (e.g., passport details for flight bookings).
We always handle children’s data with heightened care and confidentiality.

11. Complaints

If you have concerns about how we use your data, please contact us first at:

[email protected]

If you are not satisfied with our response, you may lodge a complaint with:

Information Commissioner’s Office (ICO)
www.ico.org.uk