All About Your Privacy!

ESD Travels, LLC dba  Signature Ways Away and  Groups Getaways (hereinafter “ESD Travels”, “we”, “us”, “our”)

cares deeply about your privacy. This Privacy Policy outlines how we collect, use, and disclose Personal Information submitted by you or collected through our website (“Website” or “Site”).

​

Please read this Privacy Policy carefully. It applies across all platforms through which you engage with us, including mobile-enabled and social media sites. By providing us with your personal information, you consent to its transfer, storage, and processing as outlined here.  By making a booking or submitting personal information, you agree to this Policy and agree to us handling your personal information as set out below. If you do not agree to us using your personal information in these ways, unfortunately, we can’t process your booking, and you shouldn’t use our sites.

​

At times, we do make changes to this Policy; these changes are effective immediately, so please visit these pages regularly to keep up to date with any changes we’ve made. You acknowledge and agree that it is your responsibility to review this site and this Privacy Policy periodically, and be aware of any modifications.

​

What kind of personal information do we collect?

When you book through us, you need to provide certain information such as your name, address, e-mail, phone number and payment information. If you happen to fill in the contact page but for some reason don’t complete the booking, you will still be considered to have provided us with your information.

​

If you contact us, whether by phone, e-mail, or another method, you’ll be asked to provide certain information. This is likely to include your name, address, e-mail address and phone number. We need this information so that we can respond to you appropriately.

​

There are also other instances when you’ll provide us with information, for example if you register to manage your booking via our website, enter one of our competitions, or complete a survey.

​

Information you give to us about others in your party

If you’re booking with others or for someone else, you will have to give us their information as well, for example their name and date of birth. It is your responsibility to ensure that they are aware that you have done so, and that they accept how we use and process their information as well as yours.

​

What information do we collect automatically?

​When you visit our Website, we automatically collect certain information such as the device IP address, the date and time you visited, the hardware, software or browser used and information about your visit, including any pages you viewed and interacted with. We do this automatically, even when you don’t actually make a booking.

​

If you’re using a mobile device to reach us, we keep data that identifies your device, location details and any specific settings. No mobile information will be shared with third parties/affiliates for marketing/promotional purposes. All the above categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties.

​​

SMS Terms:

ESD Travels, LLC sends SMS messages only to people who have opted in. By opting in via a web form, phone, or other medium, you agree to receive SMS from ESD Travels for transactional purposes (booking updates, itinerary links, time‑sensitive travel alerts, and customer care) and/or promotional purposes (offers, group invites, Travel Insiders/Travelnestas news) as indicated at opt‑in. Promotional SMS are sent only to people who have provided a separate, explicit opt‑in for marketing; each promotional opt‑in indicates that messages may be sent using automated dialing systems and that “consent is not a condition of purchase.” Message frequency is shown at opt‑in and may vary by booking or subscription type. Msg & Data rates may apply. For help, text HELP or email info@esdtravels.com. Reply STOP to any message to opt out; STOP requests are processed immediately and the number is added to our central suppression list.

SMS Privacy Policy:
ESD Travels, LLC will not sell or share your mobile number or opt-in consent data with any third parties for marketing or promotional purposes. We may share contact details, including mobile numbers, with third‑party suppliers and service providers strictly as needed to deliver your booked travel services (for example, ground transportation providers, local guides, accommodation partners, or airline/ground contacts). Suppliers are contractually prohibited from using your number for marketing unless you give them separate, explicit permission.

​

Information we get from others

We might also get information about you from other sources, such as your schools, third parties like credit reference agencies, payment processors, search engines, or social media sites. We may use this information with other information you provide to complete or process your booking. We will notify you when we receive information about you from them and the purposes for which we intend to use that information.

​

How do we use your personal information?​

​

Your personal information could be used in the following ways:

​

• Process and fulfill bookings including flights, hotels, tours, transfers, and insurance etc.

• Set up user accounts for booking management and personalized services.

• Communicate about your booking status and important updates. 

• Deliver customer service and respond to queries.  If you do contact us by telephone, your call may be recorded and reviewed for quality and training purposes. Recordings are only kept for a limited period and then automatically deleted unless we have a legitimate interest in keeping them for a longer period.

• Personalize your experience with relevant offers.

• Send marketing communications if you have opted-in. You may opt out. at any time by changing your marketing preferences online, over the phone, using the “unsubscribe” link in our emails, replying STOP to the short code in our marketing text messages or by writing to us at any time. 

• Run promotional activities and improve our services.

• Ensure security and prevent fraud. We may use your data as part of efforts to keep our sites (and the information you provide to us) safe and secure, and to prevent fraud or unauthorized access/use of our sites.

• Defend against fraudulent claims.  We may use your personal information to prevent, detect, or defend any claims/actions we believe to be potentially fraudulent or detrimental to our legitimate interests.

• Comply with legal and regulatory requirements. We might need to use your information in relation to any legal disputes, regulatory, compliance or criminal investigations, or if necessary, to enforce our rights.

 

​​

Legal Basis for Processing Personal Data

When we process your information as described above, we will be relying on one or more of the following legal rights:

Performance of a contract: We use your information to carry out the contract that you have with us and your Service Providers. We’ll use the information that you provide us when making a booking to conclude and process the reservations with the relevant third-party Service Providers. These suppliers are contractually required to use your information only to fulfill the requested service and are prohibited from using your contact details for marketing unless you have provided separate, explicit consent.

​

Consent: You may, through your action(s) of providing us your details, consent to us sending you marketing and promotional material. If you do kindly give us this consent, we’ll rely on this consent when contacting you. You can always withdraw your consent at any time by simply unsubscribing.

Legitimate interest: We may use your information for our own legitimate interest, for example to provide you with the most relevant content on our site or to promote new services and for certain administrative and legal purposes. If you fail to complete a purchase, we may send you some follow-up emails to try and help you, or seek your feedback or offer you alternative products related to your selection.

​

Business transaction: We may use your data in connection with a business transaction such as the sale of a part or the whole of our business.

To Comply with a legal obligation:  We may share your personal data with regulatory authorities such as immigration, border control, security, anti-terrorism, and any other legitimate legal obligation as required.

​

To protect your vital interests or those of another individual: We may share your information in the case of an emergency.  For example, with insurance companies or medical personnel.

​

How do we store your data?

Any information that you provide is stored on secure servers and all payment transactions are encrypted in compliance with PCI DSS (Payment Card Industry Data Security Standard) regulations. Only authorized personnel are permitted to access your information in the course of their work with us. Our data security protections meet the “reasonable security requirements” of the New York “Shield Act”.  While we do our best to protect your information, no information transferred over the internet or stored electronically can be guaranteed to be completely secure and you provide your information to us at your own risk.  We’ll only retain your information for a reasonable period, or for so long as either you or the law allows.

​

When you pay for your tour, we don’t store your card details – instead we use an encrypted authorization ‘token’ issued by your payment provider to collect the payments.

​

For Residents of the European Union

Due to the nature of our business and the arrangements you have chosen, it may be necessary for your data to be transferred to, and stored at, a destination outside the European Economic Area ("EEA") and may not be subject to the same level of data protection controls as within the EEA. We will take all reasonable steps to ensure that your data is handled securely.

​

When do we share your data with third parties?

In certain circumstances, we may share the information you provide to us with organizations outside of ESD Travels. The third parties who we might share your data with include:

​

Service Providers: If you make a booking, we’ll have to share your booking data with the third parties, such as hoteliers, airlines, insurers, and transfer providers to complete your booking contract. The data shared may include your name and the names and ages of any guests travelling with you, any preferences, or special requests you told us about when you made your booking and your contact details. If you contact us with a query about your booking, we may pass this on to our providers if they are needed to answer you.

​

Third party support services: These includes anyone who provides support services or functions on our behalf, including payment card processing, business analytics, review agencies, advertising, and customer support services. This may be to send you marketing material on our behalf or to collate information that can be analyzed to improve our service. They have access to and may collect information only as required to perform their agreed functions and are not permitted to share or use information for any other purpose.

​

Payment Processors and other financial institutions: When you make a payment on your booking, we use a third-party payment processor to take your payment. If you request a chargeback on your booking, it may be necessary for us to share certain details with the payment processor and the relevant financial institution, so they can manage the chargeback. This may include a copy of your booking confirmation, financial details and the IP address that was used to make your booking.

​

Referring websites: If you were referred to our site via another webpage, we may share some information about you with that referring website so that they can contact you about their products and services, which may include Google Analytics.

​

Business Affiliates: We may share your data with our business affiliates with whom we offer relevant joint services. This may include other agencies and advertising networks. We do this to maximize the services that we provide you and so they may contact you directly about their relevant products and services that may interest you. You can unsubscribe from these emails at any time.

​

Law enforcement authorities: We will disclose personal information insofar as it is required by law or where we believe it is necessary for the prevention, detection, or prosecution of potentially criminal acts, including for fraud, immigration, customs, security, or anti-terrorism purposes.

Please note that while we have procedures and security features to protect your information from access by unauthorized persons and against unlawful processing, accidental loss, destruction, and damage, we don’t control the privacy practices of any of these third-parties or your Service Providers and we would encourage you to review their own privacy policies where appropriate.

Furthermore, any information that you provide directly to your Service Providers or other suppliers is not covered under this Privacy Policy and we would urge to check their own privacy policies before providing any personal information.

​

What rights do you have in relation to your personal information?

You have the following rights in relation to the personal information that we hold about you:

You may request a copy of the personal information we are keeping about you by submitting a request to us at the below address.

You may ask that we correct any inaccuracies in the data, ask us to transfer it to another party or provide it to you for transfer it to another party yourself.

​

You can ask us not to process your personal information for marketing purposes at any time by sending a request to the below address or clicking ‘unsubscribe’ on any of the emails that we send to you. Alternatively, you can also email info@groupsgetaways.com and it will be done for you. We will let you know if we intend to use your data for marketing purposes.

​

You have the right to request that we delete all personal information that we hold about you. If there is no other reason beside you providing your consent for us to hold your data, we will delete it upon receiving your request.

​

We may not delete your personal information if one of the following exceptions exists:

• Information is necessary to complete the transaction;                                                                                                              

• Information is necessary to detect security incidents;                                                                                                                

• Information is necessary to protect against deceptive, fraudulent, or illegal activity;

• Information is necessary to identify and repair errors;                                                                                                            

• Information is necessary to promote free speech;                                                                                                                       

• Information is necessary for scientific, historical, or statistical research in the public interest;

• Information is necessary for internal uses of the company if those uses are reasonably expected by consumers;

• Information is necessary to comply with a legal obligation; or                                                                                                     

• Information is used internally in a manner that is compatible with the context of the collection.

• ​

If you would like to exercise any of your above rights, please contact us at info@esdtravels.com writing ‘Data Subject Access Request’ in the subject line. We will deal with any requests we receive in accordance with the relevant Data Protection laws.

​

What about data that is collected through a mobile device?

Mobile devices can be used to access our services, as well as versions of our regular website. These mobile sites work in a similar way to our main website. Sometimes we make use of something known as cross-device tracking, which allows us to track user behavior across different devices. We use this to improve the service that we provide you and for marketing activities, so advertisements shown to you on other websites may be offered based on your activities on linked devices.

​

Our Policy on "Do Not Track" Signals under the California Online Protection Act (CalOPPA)

We do not support Do Not Track ("DNT"). Do Not Track is a preference you can set in your web browser to inform websites that you do not want to be tracked.

​

You can enable or disable Do Not Track by visiting the Preferences or Settings page of your web browser.

Tracking and Cookies Data

We use cookies and similar tracking technologies to track the activity on our Website and we hold certain information.

Cookies are files with a small amount of data which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your device. Other tracking technologies are also used such as beacons, tags, and scripts to collect and track information and to improve and analyze our Service.

​

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, some portions of our services may not perform properly.

​

Google Analytics

Google Analytics is a web analytics service offered by Google that tracks and reports website traffic. Google uses the data collected to track and monitor the use of our Service. This data is shared with other Google services. Google may use the collected data to contextualize and personalize the ads of its own advertising network.

​

You can opt-out of having made your activity on the Service available to Google Analytics by installing the Google Analytics opt-out browser add-on. The add-on prevents the Google Analytics JavaScript (ga.js, analytics.js and dc.js) from sharing information with Google Analytics about visits activity.

For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page: https://policies.google.com/privacy?hl=en.

How do we treat personal information of children?

​

You are only allowed to book through our site if you are over 18 years of age. We only process information about children with the consent of the parents or legal guardians. We are the operator.

​

Links to other sites

Our Service may contain links to other sites that are not operated by us. If you click a third-party link, you will be directed to that third party’s site. We strongly advise you to review the Privacy Policy of every site you visit.

​

We have no control over and assume no responsibility for the content, privacy policies or practices of any third-party sites or services.

Who exactly is responsible for processing personal information that is collected under the policy?

We control the processing of data over our sites – in legal terms, this means that Groups Getaways is the Data Controller for the purposes of EU Data Protection laws.

​

How can you contact us?

If you have any questions about this Privacy Policy or wish to exercise any of your rights under it,

 

Please contact us at:

​PO Box 428 Lambertville, NJ 08530

1-877-339-6001 ext 307

info@esdtravels.com