Opodo Limited, with VAT number GB-766445988 and registered address at 26-28 Hammersmith Grove, London W6 7BA, United Kingdom.
During the purchase process, we ask you only for the personal data that we need to provide you with our mediation services to contract travel products, as well as to attend you and solve any post-contractual query, claim or request.
When you make a reservation for someone else through this website, we will request personal information and travel preferences about that individual. You should obtain the consent of other individuals prior to providing us with their personal information and travel preferences, as any access to view or change their information will be available only through your account.
When you book a trip with us, we subscribe you to our newsletters, unless you say otherwise before confirming your booking. Anyway, you will be able to unsubscribe at any moment, using the link that you will find in every newsletter for this purpose.
If you provide us with your contact email address, but then you are unable to finish your booking, we use it to contact you in a personalized manner and help you to book your trip, if you are still interested. We also keep it to recognize you when you visit our website again, in order to improve your user experience.
When you visit our Website, we may automatically collect certain information from your device (such as IP address, browser type, internet service providers, geographic location, technical information about the device, the time and duration of request and visit, the method used to submit the request to the server). Please note that we may associate this information with your account.
We use this information, as well as the personal data provided defined hereinafter, and share it with third parties, to customize advertising, analyze traffic, provide you with social media related services, improve quality and tailor your searches, to prevent and detect fraud; where some of them, such as payment providers and financial institutions (fraud detection, prevention or chargeback purposes) could be acting as autonomous data controllers.
Some of this information may be collected by using cookies or similar tracking technology. For more information, please check our Cookies Policy.
If you sign up for our website using your social media account, link your account on our website to your social media account, or use certain other social media features of ours, we may access information about you via that social media provider in accordance with the provider's policies. The information may include your name, email address, profile picture, gender, list of friends, and other information that you authorize us to receive.
We do not make automated decisions based on profiles, beyond the customization of advertising and the legitimate prevention of fraud on the Internet.
We will keep your personal data while we have legal liabilities in relation to the services we have provided you with.
In addition to the above, if you are subscribed to our newsletters, we will keep your email address for this purpose until you ask to be unsubscribed. Moreover, if you provide us with your contact email address, but then you are unable to finish your booking, we will keep your email address only temporarily and, in any case, for a maximum period of 15 months.
The information collected by our cookies is also kept for a maximum period of 15 months.
The collection and processing of your personal data are mainly based on the contractual relationship you have with us.
When we send our newsletters to you or we use your email address to contact you in a personalized manner or to recognize you when you visit our website again, this is based on our legitimate interest in providing you with our services.
The processing of the information collected by our cookies is based on the consent provided under the applicable laws.
In order to provide you with our services, we need to communicate your personal data to the Travel Providers involved, in order that they can provide you with the products or services you have requested, i.e. the airline which has to issue your ticket and/or operate your flight, the hotel you have booked, the car rental company you have contracted through our Website, etc., as well as those other parties to which it is necessary to disclose your personal data in order to provide you with the requested services in a diligent manner, which will be operating as autonomous data controllers.
We will also share your personal data with third-party companies (including the eDreams ODIGEO Group for internal purposes relating to management centralization). In particular, the eDreams ODIGEO Group centralizes the processing of personal data through the Spanish subsidiary eDreams International Network, SL and has adequate internal policies to ensure that any data processing carried out by third parties is made under the strictest security requirements and according to the applicable laws.
Our third-party service providers process your personal data on our behalf and under our instructions for the purposes described hereinabove, acting as data processors or acting as autonomous data controllers (such as those providing us with IT and hosting services, customer support, analytics, payment and financial service providers for chargeback, fraud detection, prevention purposes…). Where third-party service providers have access to data they will only collect information as needed to perform their functions. They are not permitted to share or use the information for any other incompatible purpose.
The transmission of personal data as described herein may include overseas transfers of personal data to countries whose data protection laws are not as comprehensive as those of the countries within the European Union. We shall transfer personal data to recipients offering an adequate level of data protection. In these situations, as may be required, we make contractual arrangements to ensure that your personal data is still protected in line with European standards.
Under the General Regulation (EU) 2016/679, of 27 April 2016, on Data Protection (GDPR), the following rights are recognised in relation to the processing of your personal data:
Based on the nature of our services and the purpose of the collection and the processing of your personal data, the Right to portability is not applicable.
In order to exercise your rights, please, send an email to email@example.com or send your request by post courier to the following address: Data Protection – Paseo Zona Franca, 195-205, 08038 Barcelona, Spain. In your request, you have to clearly state (i) your personal identity, by indicating your complete name and the email address you used to purchase or create an account, and (ii) the right or rights you are exercising.
You can also ask the Spanish Authority on Data Protection (www.agpd.es) for protection to ensure that your rights are respected, if you wish.
The exercise of these rights is free of charge, unless you make unjustified or excessive requests. In this case, we will be entitled to charge you with a reasonable fee based on administrative costs.