Plymouth To Airport Logo

GDPR & Data Protection Notice

1. Data Controller

This website and booking service is operated by Plymouth To Airport , acting as the data controller for the personal data you submit through our booking forms, payment pages and communication channels (e-mail, phone, chat or messaging apps).

We ask for your contact details because they are necessary to confirm and deliver your booking. In the same way, you are entitled to know who is responsible for processing your data.

E-mail for privacy matters: [email protected]
Purpose of this notice: to explain, in line with Regulation (EU) 2016/679 (GDPR), how we collect, use, disclose and protect your personal data.

2. Personal Data We Collect

We collect only the data that is necessary to deliver your transport / private hire booking and to run our service safely and lawfully. This may include:

  • Identification and contact data: name, phone number, e-mail address.
  • Booking data: pick-up and drop-off locations, via stops, date & time, number of passengers, luggage notes.
  • Payment-related data: amount, currency, method, payment status (card details are processed by the payment processor, e.g. Stripe; we do not store full card numbers).
  • Communication data: messages you send us via the contact form, booking form, chat or e-mail.
  • Technical data: IP address, device/browser information, basic analytics and security logs (used to protect the service).

If you make a booking on behalf of another passenger, you confirm that you are authorised to share their details with us.

3. Purposes and Legal Bases

We process your personal data under one or more of the lawful bases defined in GDPR (Art. 6):

  • Contract performance: to accept, confirm and deliver your booking, and to send trip / driver details.
  • Legal obligation: to comply with applicable private hire / transport / accounting requirements.
  • Legitimate interests: to protect our platform from abuse, to improve our service, to follow up on a booking, or to handle complaints.
  • Consent: where you explicitly opt-in to receive marketing or other non-essential communications.

4. Data Retention

We keep booking-related data only for as long as it is necessary to:

  • deliver the trip and any follow-up (lost items, complaints, invoices);
  • comply with licensing / accounting / tax requirements;
  • maintain records for safety and dispute resolution.

After the relevant retention period, data is securely deleted or anonymised.

5. Data Sharing & Recipients

We do not sell your personal data. We may share it only where necessary to provide the service or to meet legal/safety requirements, for example with:

  • drivers / operators, so they can collect you at the agreed time and place;
  • payment service providers (e.g. Stripe) to process your online payment securely;
  • IT / hosting / security providers who help us run this website;
  • authorities or law enforcement, where required by law or to protect vital interests.

All such parties are expected to respect confidentiality and data protection obligations.

6. International Transfers

Our service is primarily operated from the United Kingdom. If any of our processors or tools transfer or store data outside the UK/EU, we will ensure that appropriate safeguards are in place (such as Standard Contractual Clauses) as required by GDPR.

7. Your GDPR Rights

Under GDPR, you have the following rights in relation to your personal data:

  • Right of access – to know what data we hold about you.
  • Right to rectification – to correct incomplete or inaccurate data.
  • Right to erasure – to ask us to delete your data, where applicable.
  • Right to restriction – to limit the way we use your data.
  • Right to data portability – to receive your data in a structured, commonly used format.
  • Right to object – to processing based on legitimate interests or to direct marketing.

To exercise any of these rights, please contact us at [email protected]. We may need to verify your identity before acting on your request.

8. Cookies & Tracking

Our website may use essential cookies to make the site work (session, security, CSRF) and, where enabled, analytics cookies to understand how visitors use the site.

Non-essential cookies (including marketing / analytics) will be used only where legally required and, where applicable, with your consent. You can manage your cookie preferences in your browser.

9. Security of Your Data

We apply appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure or destruction. This includes access control on the server, secure payments through trusted providers and periodic checks on the hosting environment.

10. Complaints & Supervisory Authority

If you believe your data protection rights have been infringed, please contact us first so we can address the matter promptly and amicably.

You also have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) or with your local EU supervisory authority.

ICO (UK): https://ico.org.uk

11. Controller Details & How to Reach Us

To reduce the risk of our business contact details being misused or harvested for non-GDPR purposes, we do not display the full postal / correspondence address on this public page. This does not limit your GDPR rights.

If you require our full identification or correspondence details in order to exercise any of your rights (access, rectification, erasure, restriction, objection, data portability), please e-mail us at [email protected] and indicate the nature of your request. We will provide the necessary information in a timely and transparent manner.

This way we can balance transparency towards passengers with the protection of our drivers, systems and day-to-day operations.

12. Updates to This GDPR Notice

We may update this GDPR & Data Protection Notice from time to time to reflect changes in the law or in our service. The most recent version will always be available on this page.

Last updated: 31 October 2025
Document reference: GDPR-P2A-20251031

← Main Page