Privacy Policy

What law platform lies?

Our use of your Personal Data is subject to the UK`s Data Protection Act (“DPA”) and the EU General Data Protection Regulation (“GDPR”), and of course we process your Personal Data accordingly.

What is Personal Data?

Personal Data is any information relating to personal or material circumstances that relates to an identified or identifiable individual. This includes, for example, your name, date of birth, e-mail address, postal address, or telephone number as well as online identifiers such as your IP address and device ID.

What is Special Category Data?

Special category data is Personal Data that needs more protection because it is sensitive. This includes Personal Data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data, health data, sex life or sexual orientation. To lawfully process this data, consent is required.

What is processing?

Processing means any operation or set of operations which is performed upon Personal Data, whether or not by automatic means. The term is broad and covers virtually any handling of data.

Who is responsible for data processing?

The responsible party within the meaning of DPA and the GDPR is Click Booking of [128, City Road, London, EC1V 2NX, United Kingdom] (“Click Booking”, “we”, “us”, or “our”).

If you have any questions about this policy or our data protection practices, please contact us at dido.nikolov@yahoo.co.uk or write to us at the above address.

The Legal Bases for processing Personal Data

In accordance with the DPA and the GDPR, we must have at least one of the following legal bases to process your Personal Data: a) you have given your consent, b) the data is necessary for the fulfilment of a contract or pre-contractual measures, c) the data is necessary for the fulfilment of a legal obligation, d) the data is necessary to protect our legitimate interests, provided that your interests are not overridden.

Accessing our Platform

The Platform can be accessed via our website and downloaded from the Google Play Store or Apple App Store. Registration with the app store may be required.

Installing our Platform

Google may collect license checks, network/WLAN access, and location info. Data may be transferred outside your region. Google is solely responsible for this processing.

Similarly, Apple (Platform le) may collect device identifiers, IP addresses, and location information. Apple is solely responsible for this processing.

Device Information

We may collect hardware/software data, IP address, device ID/type, crash logs, ad IDs, signal strength, sensors data (accelerometer, gyroscope, compass), and payment confirmations.

Firebase

We use Firebase services (Analytics, Crashlytics, Messaging). Google may process this data abroad. See Firebase Privacy Policy.

Crashlytics

Used to log crashes without personal data. Only technical crash reports are sent to help improve stability. You can disable it in device settings.

Google Analytics for Firebase

Collects session counts, device models, regions, OS versions, etc. Uses device ad ID, instance ID, and masked IP. You can opt out by resetting your advertising ID.

Google Maps

Used to display your location. Google may process usage data. Governed by Google's Privacy Policy.

Foursquare API

Used for real-time location-based services. Allows sending personalized messages. Based on your consent and legitimate interest.

Authorizations and Access

We may request permissions for: internet, push notifications, gallery, camera, location access. You may deny access, but it may limit functionality.

Push Messages

We may send push messages for service updates even when not actively using the app. You can disable these via device or app settings.

Contacting us

Personal data is processed depending on the contact method. In addition to your name and email address, IP address or phone number, we usually collect the context of your message, which may also include certain Personal Data. The Personal Data collected when you contact us is used to process your request and the legal basis is your consent.

Contracting with us

The protection of your data is particularly important to us in the performance of our contractual services. We therefore only want to process as much Personal Data (for example, your name, address, e-mail address or telephone number, date of birth, gender) as is absolutely necessary. Nevertheless, we rely on the processing of certain Personal Data, to fulfil our contractual obligations to you or to carry out pre-contractual measures.

Registration

If you register, we will request mandatory and, where platform likable, non-mandatory data in accordance with our registration form including your name and email address. The entry of your data is encrypted so that third parties cannot read your data when it is entered, and your account is further secured and verified by a token authentication system. Your data will remain stored for as long as the registration lasts, in particular if the storage is necessary for the fulfilment/execution of the contract, to enforce our rights or for our other legitimate interests or we are required by law to retain your data (e.g., within the framework of tax retention periods).

Using our Platform

If you wish to use our Platform and its features, we process the Personal Data you voluntarily provide for the purpose of providing our Platform. Depending on how you use our services, we may process:

• Inventory data (e.g., personal master data, names or addresses).
• Contact data (e.g., e-mail, telephone numbers).
• Payment Data (e.g., when you pay for our services. Your payment data will be processed via our payment service provider Stripe. Payment data will solely be processed through Stripe, and we have no access to any Payment Data you may submit.)
• Meta/communication data (e.g., device information, IP addresses).

The legal basis for the processing of your Personal Data is the establishment and implementation of the user contract for the use of the service as well as your consent.

The main reason we use your Personal Data is to:

• to provide our services to you.
• to provide you with customer support and respond to your inquiries.
• to complete your transactions.
• to communicate with you about our services.
• to improve our services and develop new services.
• to develop new features and services.
• to prevent, detect and respond to fraud or other illegal or unauthorised activities.
• to address ongoing or perceived misconduct.
• to perform data analysis to better understand these activities and develop countermeasures.
• to retain data related to fraudulent activity to prevent recurrence.
• to ensure compliance with laws.
• to comply with legal requirements.
• to assist law enforcement; and
• to enforce or exercise our rights.

Aggregated Data

We also collect, use and share Aggregated Data such as statistical or demographic data for any purpose including improving our Platform and Services. Aggregated Data could be derived from your Personal Data but is not considered Personal Data in law as this data will not directly or indirectly reveal your identity. However, if we combine or connect Aggregated Data with your Personal Data so that it can directly or indirectly identify you, we treat the combined data as Personal Data which will be used in accordance with this privacy policy.

Administration, financial accounting, office organisation, contact management

We process data in the context of administrative tasks as well as organisation of our business, and compliance with legal obligations, such as archiving. In this regard, we process the same data that we process in the course of providing our contractual services. The processing bases are our legal obligations and our legitimate interest.

Promotional use of your data

We use your data within the legally permissible scope for marketing purposes, e.g., to draw your attention to special promotions and discount offers. In addition, we may draw your attention to comparable offers by email, e.g., we may inform you about exclusive sales, promotions, or special events. The legal basis for processing is our legitimate interest.

What we do not do

• We do not request Personal Data from minors and children.
• We do not process special category data without obtaining prior specific consent.
• We do not use Automated decision-making including profiling; and
• We do not sell your Personal Data.

Sharing

We will not disclose or otherwise distribute your Personal Data to third parties unless this is a) necessary for the performance of our services, b) you have consented to the disclosure, c) or the disclosure of data is permitted by relevant legal provisions. In addition, we may disclose your Personal Data: in connection with law enforcement, fraud prevention or other legal proceedings; as required by law or regulation; if Click Booking (or a part of Click Booking) is sold to or merged with another company; or if we have reason to believe that disclosure is necessary to protect our business.

International Transfer

We may transfer your Personal Data to other companies as necessary for the purposes described in this Privacy Policy. In order to provide adequate protection for your Personal Data when it is transferred, we have contractual arrangements regarding such transfers. We take all reasonable technical and organisational measures to protect the Personal Data we transfer.

Storage

In the course of our business and Platform operations, we process data in our Ireland based headquarters. All data collected is generally transferred to our Amazon Web Services (AWS) Server. The legal basis for the data processing is our legitimate interest in providing our Platform.

Data Security

Our Platform uses SSL or TLS encryption to ensure the security of data processing and to protect the transmission of confidential content, such as login data or contact requests that you send to us. We have also implemented numerous security measures (“technical and organisational measures”) for example encryption or need to know access, to ensure the most complete protection of Personal Data processed through our Platform.

Nonetheless, databases or data sets that include Personal Data may be breached inadvertently or through wrongful intrusion. Upon becoming aware of a data breach, we will notify all affected individuals whose Personal Data may have been compromised, and the notice will be accompanied by a description of the action being taken to reconcile any damage as a result of the data breach. Notices will be provided as expeditiously as possible after which the breach was discovered.

Your Rights and Privileges

Privacy rights

You can exercise the following rights:

• Right to information
• Right to rectification
• Right to object to processing
• Right to deletion
• Right to data portability
• Right to withdraw consent
• Right to complain to a supervisory authority
• Right not to be subject to a decision based solely on automated processing.

If you wish to exercise any of your rights, please contact us.

Updating your information

If you believe that the information, we hold about you is inaccurate or that we are no longer entitled to use it and want to request its rectification, deletion, or object to its processing, please do so by contacting us.

Withdrawing your consent

You can revoke consents you have given at any time by contacting us. The legality of the data processing carried out until the revocation remains unaffected by the revocation.

Access Request

In the event that you wish to make a Data Subject Access Request, you may inform us in writing of the same. We will respond to requests regarding access and correction as soon as reasonably possible. Should we not be able to respond to your request within thirty (30) days after receiving your request, we will inform you in writing within thirty (30) days of the time by which we will be able to respond to your request. If we are unable to provide you with any Personal Data or to make a correction requested by you, we shall generally inform you of the reasons why we are unable to do so (except where we are not required to do so under the respective legal regulations mentioned above).

What we do not do

• We do not request Personal Data from minors and children.
• We do not process special category data without obtaining prior specific consent.
• We do not use Automated decision-making including profiling; and
• We do not sell your Personal Data.

Complaint to a supervisory authority

The supervisory authority in the UK is: The Information Commissioner's Office (ICO) and is located at Wycliffe House, Water Ln, Wilmslow SK9 5AF, UK www.ico.org.uk. However, we would platform recite the opportunity to address your concerns before you contact the ICO.