travelcube
Login Favourites

Data & Privacy Policy

Data & Privacy

Last Updated 2nd December 2025

1. Introduction

This Privacy Policy explains how Travelcube Group Limited, a company registered in England and Wales under company number 16500506 whose registered office is at 5 Springfield Road, St Leonards On Sea, East Sussex, United Kingdom (“we”, “us”, “our”, “Travelcube”), collects, uses, discloses, and protects your personal information when you use our websites, mobile applications, widgets, and any other online services (collectively the “Platform”). We are the data controller for the personal data we process about you, unless otherwise stated, and we are fully committed to protecting your privacy and processing your personal data fairly and lawfully in compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. By using the Platform, you consent to the practices described in this Privacy Policy. If you do not agree, please do not use the Platform. We may update this Policy from time to time; changes will be effective upon posting with a new “Last Updated” date, and your continued use constitutes acceptance.

2. Information We Collect

We collect several types of information. This includes information you provide directly such as your full name, email address, postal address, phone number, date of birth, passport or ID details for all guests, payment card information (which is processed securely by our payment providers), special requests, correspondence, and any reviews you submit. We also collect information automatically, including your IP address, device and browser details, operating system, pages visited, time spent on pages, referring URLs, and usage data gathered via cookies and similar technologies. Finally, we may receive information from third parties such as hotels (for example booking updates or feedback), payment processors, analytics providers (like Google Analytics), and advertising partners.

3. How We Use Your Information

We use your information to create and manage your account, process bookings, and provide customer support; to facilitate payments and prevent fraud; to send important service messages such as confirmations, reminders, and updates; and, where we have your consent or a legitimate interest, to send you promotional offers and marketing communications. We also use it to analyse and improve the Platform, personalise your experience, conduct research, comply with legal obligations, and protect our rights or the rights of others.

4. Legal Bases for Processing

We only process your personal data when we have a valid legal basis. This is primarily for the performance of our contract with you (to fulfil your booking and provide our services), to comply with legal obligations (such as tax or anti-fraud requirements), and for our legitimate interests (including fraud prevention, security, direct marketing where permitted, and improving our services). Where we rely on consent, for example for optional marketing or non-essential cookies, you may withdraw it at any time through the members portal.

5. Sharing Your Information

We share your information only where necessary - with the relevant hotel so they can provide your accommodation and any requested services; with secure payment providers (Stripe or Square) to process transactions; with trusted service providers who help us run the Platform (hosting, email delivery, analytics, IT support) and who are bound by strict confidentiality obligations; and where required by law, regulators, or law enforcement, or to establish or exercise legal claims. In the event of a business transfer (merger, acquisition, or asset sale), your data may be transferred with appropriate safeguards. We do not sell your personal data to third parties.

6. International Data Transfers

Some hotels and service providers are located outside the UK/EEA. Whenever we transfer your data to countries that do not have an adequacy decision from the UK, we put in place UK-approved safeguards such as the International Data Transfer Agreement (IDTA) or rely on the provider’s certification under the relevant frameworks.

7. Data Retention

We keep your personal data only for as long as necessary for the purposes described in this Policy. Typically this is up to 7 years after your last booking to meet legal and tax requirements (or shorter where possible). Account data is retained while your account is active, and you may request deletion at any time, subject to any legal obligations we must fulfil.

8. Your Rights

You have the right to access, rectify, erase, restrict processing of, or object to the processing of your data, as well as the right to data portability and to withdraw consent where applicable. To exercise any of these rights, please contact us and we will respond within one month (extendable in complex cases).

9. Security

We implement appropriate technical and organisational measures including encryption, strict access controls, and secure servers to protect your data. However, please be aware that no method of online transmission or storage is 100% secure.

10. Cookies & Similar Technologies

We use cookies and similar technologies for essential functions, searches, bookings, registrations, login, analytics and marketing purposes.

11. Children

Our Platform is not intended for children under 18 to make bookings themselves. We do not knowingly collect personal data directly from children. Any data relating to children is provided by the parents or guardians who are the users of the Platform.

Contents Table

  1. Introduction
  2. Information We Collect
  3. How We Use Your Information
  4. Legal Bases for Processing
  5. Sharing Your Information
  6. International Data Transfers
  7. Data Retention
  8. Your Rights
  9. Security
  10. Cookies & Similar Technologies
  11. Children