Privacy Policy

Last updated: 28.11.2025

Coaster Breaks LTD is committed to protecting your personal information. This Privacy Policy explains how we collect, use, store and share your data when you visit our website, make a booking, or travel with us.

Coaster Breaks LTD is a company registered in England and Wales (Company No. 12836944).

Registered address: 10 Satinwood Close, Bognor Regis, West Sussex, PO22 6SB.

Contact email: info@coasterbreaks.com

1. The Data We Collect

We collect personal data at two stages. If you do not provide essential booking or travel information (e.g., passport details, medical or dietary information), we may be unable to complete your booking or allow you to travel.

A) Data collected at the time of booking

To process and secure your place on a tour, we collect:

Essential Booking Data

Full name (as per passport)
Email address
Phone number
Billing address
Date of birth
Nationality

Passport & Travel Document Data

Passport number
Passport expiry date
Passport nationality
Date of birth (if not already collected)

Payment Information

We do not store or process your card details.
Payments are processed securely through PPS / Protected Trust Services, depositing funds into our trust account as required for UK Package Travel Regulations.

B) Data collected 10 weeks before departure

Closer to travel, we must collect additional information so we can deliver the tour safely and effectively:

Travel Operations Data

Dietary requirements
Medical information relevant to participation
Accessibility needs
Emergency contact name & phone number

Special Category Data

This may include health or dietary information that you choose to provide.
We only collect this with your explicit consent and only when absolutely necessary for your safety and experience on tour.

C) Automatically collected website data

When using our website, we collect:

IP address
Browser type
Device information
Pages visited and duration
Referring website

Collected via:

Google Analytics
Meta/Facebook Pixel
Advertising cookies (Google Ads / Meta Ads)
Squarespace’s built-in analytics

You may control cookies via your browser settings or cookie banner. Advertising and analytics cookies operate only with your consent via the website’s cookie banner.

2. How We Use Your Personal Data

We use your data for the following purposes:

To process and manage your booking

This includes:

Creating and managing your reservation
Taking payments
Sending booking confirmations and updates
Contacting you about itinerary changes

To deliver the tour you have booked

We use your data to:

Provide hotels with names for room lists (names only)
Provide transport and flight operators with required passport data
Manage theme park entrance bookings where required
Allocate rooms and seating arrangements
Address dietary and medical requirements (with consent)

To send service communications

Examples:

Pre-departure reminders
Requests for additional information (10-weeks-out forms)
Safety notices
Operational updates

To send marketing emails (optional)

You must agree to receive marketing messages. You may unsubscribe at any time.

To improve our website & advertising

We analyse website traffic and use Meta/Google advertising to improve our services.

Legal Bases for Processing
We process your personal data under the following legal bases:
– Contract: to process your booking and deliver your tour
– Consent: for marketing communications and special category data
– Legitimate interests: to improve our website, advertising, and service efficiency
– Legal obligation: when required by travel or transport regulations (e.g., providing passport data to transport operators)

3. Sharing Your Personal Data

We only share your data where necessary to deliver your tour.

We may share your data with:

A) Hotels (outside UK/EU)

Names only for rooming lists

B) Transport providers (airlines, Eurotunnel/Le Shuttle, ferries)

Passport number, expiry date, nationality, date of birth, full name

(Transport companies legally require this data.)

C) Theme parks / attraction partners

Names only (if required for group tickets)

D) Protected Trust Services (PTS) / PPS

Handles all payments securely
No card data is stored by Coaster Breaks LTD

E) Service providers operating as processors

Squarespace (website hosting and forms)
Google Analytics
Meta/Facebook Pixel

These companies process data in accordance with GDPR-compliant agreements.

Our website is hosted by Squarespace. Their privacy policy is available at https://www.squarespace.com/privacy.

4. International Data Transfers

We operate tours in multiple countries.
Therefore, some of your data is transferred outside the UK/EU only when necessary to fulfil your booking.

Transfers include:

Hotels abroad — names only
Transport providers (airlines, Eurotunnel/Le Shuttle) — passport data & DOB when required

Transfers take place under:

UK GDPR Article 49(1)(b) – transfer necessary for performance of your travel contract
Standard Contractual Clauses where appropriate
Supplier GDPR compliance checks

We do not transfer sensitive health data abroad unless you explicitly consent.

5. Special Category / Sensitive Data

We only collect health-related or dietary information:

when necessary for your participation in the tour,
with your explicit consent,
and only for the purpose of ensuring safety and accommodation of needs.

We never share medical information with hotels or third parties unless absolutely required for your safety, and only with consent.

6. How Long We Keep Your Data (Retention)

We retain:

Booking & travel data: 6 years (for accounting, insurance & legal compliance)
Medical & dietary information: deleted within 30 days after your tour ends
Marketing data: until you unsubscribe
Website analytics data: per Google/Squarespace retention settings (typically 14–26 months)

7. Your Rights Under UK GDPR

You have the right to: