Privacy Policy

Our Commitment to Your Privacy

Gwynedd Airport Taxis is committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information in accordance with UK data protection law, including the UK General Data Protection Regulation (GDPR).

✓ Your Data is Safe: We take data protection seriously. We use industry-standard security measures and only collect information necessary to provide our excellent service.

Last Updated: December 2025

If you have any questions about this policy or how we handle your data, please contact us below.

Information We Collect

We collect personal information only when necessary to provide our services. Here's what we may collect:

📋 When You Make a Booking

Contact Information: Name, phone number, email address
Booking Details: Pickup and drop-off locations, date and time, number of passengers
Special Requests: Accessibility needs, child seats, pet information, dietary requirements
Flight Information: Flight number (for airport transfers) to monitor arrivals
Payment Information: Card details (processed securely via encrypted payment gateways – we never store full card details)

📱 When You Contact Us

Messages via WhatsApp, email, or phone calls
Inquiries about services, pricing, or quotes
Feedback or complaints

🌐 Website Usage

Basic analytics (pages visited, time spent) – helps us improve our website
IP address and browser information (for security and service improvement)
Cookies – only essential cookies for functionality (no tracking cookies)

Note: We do NOT collect sensitive personal data (biometric data, health information) unless you specifically provide it for special requests (e.g., accessibility requirements).

How We Use Your Information

We use your personal data exclusively to provide and improve our services. Specifically:

Booking Management: Confirming your booking, scheduling pickups, sending confirmations and receipts
Service Delivery: Contacting you about your journey, updating you on arrival times, sending invoices
Flight Monitoring: Tracking flight status and automatically adjusting pickup times for airport transfers
Customer Support: Responding to questions, handling feedback or complaints, improving our service
Safety & Security: Complying with legal requirements, preventing fraud, protecting our business and customers
Marketing (with permission): Only sending promotional content if you've explicitly opted in – you can unsubscribe anytime
Service Improvement: Analyzing usage patterns to enhance our service, website, and customer experience

✓ We Don't: Sell your data to third parties, use it for purposes you haven't agreed to, or share it beyond what's necessary to provide our service.

Legal Basis for Processing Your Data

Under UK GDPR, we process your data on the following legal bases:

Contract: Information needed to fulfill your booking and provide the service you've requested
Legal Obligation: Information required for tax compliance, safety regulations, and legal requirements
Consent: Marketing communications – only sent if you've agreed to receive them
Legitimate Interest: Improving our service, preventing fraud, and protecting our business and customers

We will always seek your explicit consent before processing any special categories of personal data (such as accessibility needs or health information).

Who We Share Your Information With

We don't sell your data. We may share your information only when necessary:

Payment Processors: Stripe, PayPal, or your card provider – to process secure payments
Flight Tracking Services: Third-party APIs to monitor flight status for airport transfers
Legal Authorities: If required by law (court orders, police investigations)
Service Providers: IT support, website hosting, email services – all under strict confidentiality agreements
Insurance Companies: Claims processing if necessary

International Transfers: We may use services that process data outside the UK. Any transfers comply with UK GDPR requirements and include appropriate safeguards.

How We Protect Your Data

We take security seriously and implement reasonable technical and organisational measures:

✓ Encrypted connections (HTTPS) for all website transactions
✓ Secure payment processing with PCI-DSS compliance
✓ Limited access to personal data – only staff who need it for their role can access it
✓ Regular security reviews and updates
✓ Confidentiality agreements with all staff and service providers
✓ No storage of full credit card details – payment processors handle this securely

Note: While we use industry-standard security measures, no system is 100% secure. If you're concerned about data security, please contact us.

How Long We Keep Your Data

We only keep your personal data as long as necessary:

Booking Information: Retained for 3 years for tax and legal compliance, then securely deleted
Payment Records: Retained for 6 years (UK tax requirement), then deleted
Marketing Contacts: Retained until you unsubscribe, then deleted within 30 days
Website Analytics: Retained for 12 months, then automatically deleted
Customer Communications: Retained for 3 years for reference, then deleted

You can request deletion of your data at any time (subject to legal requirements – see Your Rights below).

Your Data Protection Rights

Under UK GDPR, you have the following rights regarding your personal data:

🔍 Right of Access

Request a copy of all personal data we hold about you, including how we use it.

✏️ Right to Rectification

Correct any inaccurate or incomplete personal data we hold about you.

🗑️ Right to Erasure

Request deletion of your personal data (subject to legal requirements).

🚫 Right to Restrict Processing

Ask us to limit how we use your data while we investigate your concerns.

📊 Right to Data Portability

Request your data in a structured, commonly-used format to transfer to another service.

✋ Right to Object

Object to certain types of data processing, including direct marketing.

⚖️ Right to Make Complaints

Lodge a complaint with the UK Information Commissioner's Office (ICO) if unhappy with how we handle data.

🤖 Right to Automated Decision-Making

Not to be subject to decisions based solely on automated processing.

How to Exercise Your Rights: Contact us using the details below. We'll respond to requests within 30 days (or explain if we need more time).

Contact Us About Your Data

If you have questions about this Privacy Policy, want to exercise your rights, or have concerns about how we handle your data, please contact us:

📧 Data Protection Officer / Privacy Contact

Email: info@gwyneddairporttaxis.co.uk

Phone: 07729 274868

WhatsApp: Message us on WhatsApp

Address: High Street, Criccieth, Gwynedd, LL52 0BS

We aim to respond to all data protection requests within 30 days. For urgent matters, please call us.

📋 Regulatory Authority

If you're unhappy with how we handle your data and we haven't resolved your concern, you can lodge a complaint with:

Information Commissioner's Office (ICO)
Website: www.ico.org.uk
Phone: 0303 123 1113

⚠️ Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We'll post any changes here with an updated revision date. Continued use of our service after changes means you accept the updated policy. For major changes, we'll provide additional notice.

Additional Information

Children's Data

We don't knowingly collect personal information from children under 13. If we become aware that a child has provided us information, we'll promptly delete it. For children 13-18, we follow strict privacy practices and seek parental consent where required.

Third-Party Links

Our website may contain links to third-party websites (social media, payment processors, etc.). We're not responsible for their privacy practices. Always review their privacy policies before providing information.

Cookies

We use only essential cookies for website functionality. We don't use tracking cookies for marketing. For details, see our Cookies Policy.

Legitimate Business Interests

Where we rely on legitimate business interests for processing, we balance them against your rights. This includes: improving our service, preventing fraud, marketing (with consent), and protecting our business.