EARLY RISERS TRAVEL
Privacy Policy
Early Risers Travel privacy NOTICE (October 2025)
Introduction
​
1 — Early Risers Travel Limited (referred to as “Early Risers Travel”, “we”, “us” or “our”) is the controller and responsible for your personal data. We are committed to respecting your privacy and protecting your personal information.
This Privacy Notice explains:
-
when we collect personal data;
-
what types of data we collect;
-
our legal basis for using it;
-
how we keep it safe;
-
who we share it with;
-
marketing communications;
-
data-retention principles;
-
your rights and choices;
-
how to contact us; and
-
how to make a complaint.
2 — This Privacy Notice was last updated in October 2025.
When we collect personal data about you
3 — We collect information whenever you make an enquiry or booking, or otherwise interact with us in person or via telephone, our website, email, or other contact methods (whether directly with us or through partners acting on our behalf).
The types of personal data we collect and why we collect it
4 — “Personal data” means any information identifying you. We may collect, use, store and transfer the following:
(A) Identity Data – name, title, date of birth, gender, nationality, passport details (where required).
(B) Contact Data – address, email, telephone, emergency contact or next of kin.
(C) Financial Data – bank-transfer references, Revolut/card authorisations (we do not store full card numbers).
(D) Transaction Data – details of payments to and from you and products/services purchased.
(E) Technical Data – IP address, browser type/version, time-zone setting, operating system, device type.
(F) Profile Data – booking references, interests, feedback, survey responses.
(G) Usage Data – how you use our website and services.
(H) Marketing & Communications Data – preferences for receiving marketing and communication methods.
​
Special Categories of Data – only where strictly necessary (e.g. health or dietary requirements) and with your explicit consent or, in emergencies, under vital interests. Without such data, we may be unable to accommodate specific needs.
How we collect personal data
​
-
Directly – you provide data by phone, email, forms or in person.
-
Automatically – cookies and analytics when you use our website.
-
Third parties – secure business systems (Google Workspace, Wix, Airtable, Revolut, QuickBooks), analytics or ad platforms (Google Analytics, Meta Ads), and lawful public sources.
-
​Social-media platforms – we may receive information you share with us through Instagram, Facebook, TikTok, YouTube, or X, including messages, comments, or tagged content relating to our brand. We may also use these platforms’ analytics or advertising tools to measure engagement and reach potential clients.
Lawful bases for using your data​
​
Purpose / Activity | Data Type | Lawful basis for processing (incl legitimate interests) |
|---|---|---|
Register and handle enquiries / quotes | Identity; Contact; Profile | Contract (pre-contract steps); Legitimate interests (provide efficient customer service) |
Process and deliver bookings with lodges / outfitters / transport | Identity; Contact; Booking & Travel; Passport / ID (if needed); Health / Dietary (if given) | Contract; Legal obligation (destination rules); Special category: Consent (+ vital interests in emergencies) |
Take and reconcile payments; issue invoices / receipts | Identity; Contact; Financial; Transaction | Contract; Legal obligation (tax / accounting) |
Manage customer relationships (policy updates, surveys, service messages) | Identity; Contact; Profile; Marketing & Comms | Contract; Legal obligation; Legitimate interests (keep records updated / understand service use) |
Handle support & complaints | Identity; Contact; Profile; Transaction; Correspondence | Legitimate interests (service quality / dispute resolution) |
Send marketing communications (newsletters, hosted-trip updates) | Identity; Contact; Marketing & Comms | Consent (you may withdraw any time) |
Website security / analytics / ads measurement | Technical; Usage; Cookie data | Legitimate interests (security / essential cookies); Consent (non-essential analytics / ads cookies) |
Legal / regulatory / risk management (claims & compliance) | Identity; Contact; Financial; Transaction; Profile; Usage; Special Category (if relevant) | Legal obligation; Legitimate interests (establish / defend legal claims) |
We collect only what is necessary to deliver our services and will inform you where data is optional.
​
How we keep your personal data safe
6 — We apply appropriate technical and organisational measures: secure servers, access controls, encryption in transit, backups, limited staff access, and staff training on data protection.
Who we share your personal data with
7 — We share data only as necessary:
-
Suppliers – lodges, outfitters, transport providers (many act as independent controllers).
-
Payment & finance – banks, Revolut, QuickBooks.
-
Business systems – Google, Wix, Airtable, and similar reputable providers.
-
Social-media platform providers, including Meta (Facebook & Instagram), TikTok, YouTube, and X, to help deliver or measure digital marketing campaigns and manage interactions with clients on those platforms.
-
Professional advisers / authorities – lawyers, auditors, insurers, border agencies, tax regulators.
-
Corporate events – if we sell or merge part of the business, the new owner may use data as set out here.
Third parties must process data securely and only for authorised purposes.
​
8 — We may share limited data within our group or appointed representatives solely to provide the services you have requested.
International transfers
9 — Where data goes outside the UK / EEA, we use recognised safeguards such as:
-
countries deemed adequate by UK or EU authorities; or
-
Standard Contractual Clauses / UK IDTA to ensure equivalent protection.
Marketing communications
10 — When you enquire, register or book, we may ask if you want to receive marketing. If you agree, we’ll send relevant travel updates and offers.
11 — You can change or withdraw your marketing preferences any time (unsubscribe links or by emailing us).
12 — We respect all marketing choices and communication methods.
Data retention
13 — We keep personal data only as long as necessary for the purposes described. For example, after travel we may retain booking information to handle complaints and meet record-keeping duties, then securely delete or anonymise it. We may keep data longer if:
-
you have an ongoing relationship with us;
-
a complaint or potential legal claim exists; or
-
law or regulation requires retention (e.g., tax / accounting).
When deciding how long to retain data we consider:
-
its amount, nature and sensitivity;
-
potential risk of harm from misuse;
-
whether purposes can be achieved otherwise; and
-
relevant legal and regulatory requirements.
Your rights and choices
14 — Under UK data-protection law (and EU GDPR where applicable) you may request to:
-
access your data; rectify inaccuracies; erase data; restrict processing;
-
object where we rely on legitimate interests or use data for marketing;
-
obtain data portability; and
-
withdraw consent at any time.
15 — We may need to verify your identity before responding. We aim to reply within 30 days.
Contact us
16 — If you wish to exercise your rights or have questions about how we handle personal data, please contact us:
Early Risers Travel Limited
27 Old Gloucester Street, London, WC1N 3AX, United Kingdom
Email: info@earlyriserstravel.com
Telephone: +44 7985 355 698
We will do our best to respond promptly and resolve any concerns.
Making a complaint
17 — If you are unhappy with our handling of your personal data, you may contact the Information Commissioner’s Office (ICO):
Information Commissioner’s Office
Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF
Helpline: 0303 123 1113 Website: www.ico.org.uk
If you are based in the EEA, you may also complain to your local data-protection authority.
Changes to this Privacy Notice
18 — We will update this Notice when necessary and display the latest version and date at the top of this page.