Privacy Policy

Issta is committed to protecting your privacy and this Privacy Policy sets out what information we collect, how we collect it,
and what we do with it.

INFORMATION ABOUT YOU

Your Information
This refers to information such as your name, contact details, travel preferences and special needs/disabilities/dietary requirements that you supply us or is supplied to us, including any information about other persons on your booking relating to the same ("your information"). Your information is collected when you request information from us, contact us (and vice versa) or make a booking with us. You are responsible for ensuring that other members of your party are aware of the content of our Privacy Policy and consent to your acting on their behalf in all your dealings with us.
We will update your information whenever we get the opportunity to keep it current, accurate and complete.

Our Use of Your Information
(1) We may disclose your information to our service providers (who could be located outside the EU/EEA) for the purpose of providing you with our services, including your flight, holiday or insurance, etc. Only information necessary for this purpose will be disclosed to them. For overseas travel, it may be a mandatory requirement (imposed on airlines, etc. by governments at the point(s) of departure and/or destination) to disclose your information for security and anti-terrorism purposes, or any other purposes which they determine appropriate. Even if not mandatory, we may also exercise our discretion to assist where appropriate.

(2) We may collect and use your information for the purposes set out in our data protection registration with the Office of the Information Commissioner, and disclose the same to our "group companies" (i.e. our holding companies and all group companies of our holding companies, some of whom are outside the EU/EEA) for business purposes. We may also disclose your information to companies who act as "data processors" on our behalf, or to our service providers operating systems or business functions on our behalf, some of whom are outside the EU/EEA. These purposes include administration, providing services (and contacting you where necessary), customer care, improving our service, business management and operation, re-organisation/structuring/sale of our business (or our group companies), risk assessment, security and crime prevention/detection, research and analysis, marketing, monitoring, measuring and assessing customer purchasing preferences and trends, dispute resolution, credit checking and debt collection. If we search against the files of credit reference agencies, they will record the search and hence the way in which you conduct your account with us may be shared with other lenders and credit agencies.

(3) Some of your information may be considered "sensitive personal data" under the Data Protection Act 1998. (For example, information relating to health or religion.) We collect it to cater to your needs or act in your interest, and we are only prepared to accept sensitive personal data from you on the condition that we have your positive consent. By booking your holiday with us you also agree for your insurers, their agents and medical staff to disclose relevant information (which may contain sensitive personal data) to us in circumstances where we need to act in the interest of everyone in the group you are travelling with. For example, if your illness at resort is infectious we may need to make special arrangements for you and also ensure that you do not return with the group immediately.