Website Privacy Policy
Your privacy is important to us, and so is being transparent about how we collect, use, and share information about you. This policy is intended to help you understand:
- What personal information will we ask you for?
- What do we use this information for?
- Lawful Basis For Using your Personal Data in this way:
- What happens if you do not provide this Personal Information?
- Who do we share your data with?
- How long do we keep your data for?
- How do we keep your data safe?
- Do we transfer your personal information outside the EEA and what safeguards are in place?
- Do we collect any other information from you?
This Privacy Policy covers the information we collect about you when you use our services, or otherwise interact with Bright Consortia (for example, attending our events), unless a different privacy policy is displayed.
This policy also explains your choices about how we use information about you. Your choices include how you can object to certain uses of information about you and how you can access and update certain information about you. If you do not agree with this policy, do not use our Services or interact with any other aspect of our business.
What personal information will we ask you for?
We collect information about you when you provide it to us, when you use our Services. This will include contact details so that we may provide information to you and create accurate quotes.
What do we use this information for?
How we use the information we collect depends in part on which Services you use, how you use them, and any preferences you have communicated to us. Below are the specific purposes for which we use the information we collect about you
For marketing purposes: We would like to use this information to keep informed about our future events and special offers that we think you will be interested in. You can use the Unsubscribe button on our marketing emails to remove yourself from the list at any time.
Please get in touch with our Data Protection Administrator using the details at the bottom of this policy if you would like us to remove your details from our customer records entirely.
With your consent: We use information about you where you have given us consent to do so for a specific purpose not listed above. For example, we may publish testimonials with your permission.
Lawful Basis For Using your Personal Data in this way:
Contract: We use the personal information provided because you have asked for something to be done e.g. attend an event
Contract: The processing is necessary in relation to a contract you have entered into for a attending an event
Consent: If it is necessary to process sensitive personal information in relation to your request (e.g. relating to health or religion) we will obtain your consent to collect this data and to share it with suppliers when necessary.
Legitimate Interest: If you have requested any of our services e.g. registered for attendance at one of our events or requested an informational download, we would like to keep in touch about our products and services. If you do not want to receive any further information on forthcoming events, destination news and special offers, no problem. Just let us know using the contact details above or use the unsubscribe option on our emails.
What happens if you do not provide this Personal Information?
If you do not wish to supply us with this information, it will not be possible for us to answer your enquiry
Who do we share your data with?
- We share information with the Tour Operator members of Bright Consortia
- No 3rd parties have access to your personal data unless the law allows them to do so.
- Our website contact forms are processed via our website email service provider.
- We use email marketing software to keep in touch.
- We sometimes use GDPR compliant third party software to help us with tasks and therefore need to process your data via their servers for processes such as bookings, and sending marketing emails. We disclose only the personal information that is necessary to deliver the service and we have a contract in place that requires them to keep your information secure and not to use it for their own direct marketing purposes.
How long do we keep your data for?
Personal data that we process via this website for any purpose or purposes shall not be kept for longer than is necessary for that purpose or those purposes.
We will retain your personal data as follows:
(a)Personal data supplied for the purposes of attending an event and being kept up to date on events will be retained for a maximum period of the length of our business relationship.
(b) Data supplied for the purposes of general enquiries will be kept until the enquiry has been satisfactorily answered.
How do we keep your data safe?
No system is guaranteed 100% secure but we have taken the appropriate precautions to safeguard your data wherever possible.
- Our website is protected by an SSL encryption certificate to create a secure link between our website and your browser protecting your information from hackers.
- Our Website is hosted on highly secure UK data servers with dedicated firewall protection.
- We only use GDPR compliant third party service processors for helping us to manage tasks (such as sending you mailings). We disclose only the personal information that is necessary to deliver the service and we have a contract in place that requires them to keep your information secure and not to use it for their own direct marketing purposes.
Do we transfer your personal information outside the EEA and what safeguards are in place?
Our website uses an expert third party processor called Sendgrid to securely deliver your website enquiries to us. Your information will be processed via their servers located in the US and secured in line with GDPR requirements under their EU-US Privacy Shield Framework. A processor agreement is in place to protect the privacy of your data.
As a travel company it is sometimes necessary for us (or our suppliers) to send your data to countries outside the EEA and outside the EC list of countries deemed to have adequate levels of Data Protection for international transfers of data in order to fulfil your booking. Please ask if you have any concerns.
We use GDPR compliant software hosted on US servers to send our email marketing communications. We disclose only the personal information that is necessary to deliver the service and we have a contract in place that requires them to keep your information secure and not to use it for their own direct marketing purposes.
Do we collect any other information from you?
Like many other websites our website uses Cookies. Cookies are small pieces of information sent by an organisation to your computer and stored on your hard drive to allow that website to recognise you when you visit. They do not identify you as an individual but can collect statistical data about your browsing actions and patterns which can help us improve our website user experience and deliver a better service. Please see our Cookie Policy for more details.
Changes to our Privacy Policy
We may change this privacy policy from time to time. We will post any privacy policy changes on this page
Contact Us
Your information is controlled by Bright Consortia. If you have questions or concerns about how your information is handled, please direct your inquiry to Bright Consortia, as set out below:
Bright Consirtia
E-Mail: [email protected]
Privacy Policy Effective Date: 18th May 2019