Privacy Policy

Runaway Travels Limited
Effective Date: 25/05/2025
Last Updated: 25/05/2025

1.Introduction

1.1 This Privacy Policy (“Policy”) describes how Runaway Travels Limited (“Runaway Travels”, “we”, “us”, or “our”) collects, uses, shares, and protects personal information through our website and online services (collectively, the “Platform”).
1.2 This Policy applies to all users globally and complies with the New Zealand Privacy Act 2020, the General Data Protection Regulation (GDPR) for users in the EU/EEA, and the California Consumer Privacy Act (CCPA) for California residents.
1.3 By accessing or using our Platform, you agree to the practices described in this Policy. If you do not agree, please discontinue use of the Platform.

2.Information We Collect

2.1 Personal Identification Information
We may collect: full name, email address, phone number, mailing or billing address, date of birth, and identification documents (e.g., passport) when required.

2.2 Booking and Travel Data
Includes flight preferences, booking history, destinations, seat choices, special requests, and itinerary changes.

2.3 Financial Information
Payment card data, billing addresses, and transaction history are collected for secure payment processing.

2.4 Technical & Usage Data
Automatically collected data includes IP addresses, browser and device information, referring URLs, and interactions with the Platform. Collected via cookies and analytics tools.

2.5 Location Data
With your consent, we may collect geolocation data to provide location-based services.

3.How We Use Your Information

3.1 To Provide Services

  • Manage bookings and reservations
  • Send confirmations, updates, and reminders
  • Process payments

3.2 To Communicate with You

  • Respond to inquiries and support requests
  • Send transactional or service-related emails

3.3 For Marketing and Personalisation

  • Offer travel deals, newsletters, or promotions (with opt-in consent where required)
  • Improve Platform functionality and content through user behaviour analysis

3.4 For Legal and Compliance Purposes

  • Comply with applicable laws and lawful requests
  • Prevent fraud or misuse of our services

4.Legal Bases for Processing (GDPR)

If you are located in the EU/EEA, we process your data under the following legal bases:

  • Contractual necessity: For booking and payment processing
  • Consent: For marketing communications
  • Legal obligation: For compliance with applicable regulations
  • Legitimate interests: To improve services and detect fraud

5.Sharing and Disclosure

5.1 With Service Providers
Shared with third-party vendors for payment processing, booking fulfilment, customer support, and IT services, under strict data protection terms.

5.2 With Travel Partners
Personal data necessary for completing flight or travel bookings may be shared with airlines and related travel providers.

5.3 For Legal Reasons
Shared with authorities if required by law, court order, or to protect our legal rights.

5.4 No Sale of Data (CCPA Compliance)
We do not sell your personal information. We also do not share it for cross-context behavioural advertising as defined under the CCPA.

6.International Transfers

6.1 We may transfer personal data to countries outside New Zealand, the EU/EEA, or California. In such cases, we ensure adequate safeguards are in place (e.g., Standard Contractual Clauses (SCCs) under GDPR, or agreements meeting New Zealand’s transfer principles).

7.Data Retention

7.1 We retain personal data only for as long as necessary to fulfill the purposes outlined in this Policy or as required by law (e.g., tax, fraud prevention).
7.2 When no longer needed, we securely delete or anonymise your data.

8.Your Rights

8.1 New Zealand Users (Privacy Act 2020):

  • Access and correct personal data
  • Request deletion of personal data (where legally applicable)

8.2 EU/EEA Users (GDPR):

  • Right to access, rectify, erase, or restrict processing
  • Right to data portability
  • Right to object to certain processing
  • Right to withdraw consent at any time
  • Right to lodge a complaint with your data protection authority

8.3 California Residents (CCPA):

  • Right to know what personal data we collect and why
  • Right to request deletion of personal information
  • Right to opt out of the sale (not applicable, as we do not sell data)
  • Right to non-discrimination for exercising privacy rights

To exercise your rights, email us at: privacy@runaway.co.nz

9.Cookies and Tracking Technologies

9.1 We use cookies and similar technologies to personalize content, remember preferences, and analyse traffic.
9.2 You may manage cookie preferences in your browser settings. Disabling cookies may affect your experience on the Platform.

10.Data Security

10.1 We apply reasonable administrative, technical, and physical security measures to protect your data from unauthorized access, disclosure, or destruction.
10.2 Despite these measures, no method of transmission over the internet is 100% secure.

11.Updates to This Policy

11.1 We may update this Privacy Policy as our practices evolve or to comply with legal obligations.
11.2 Material changes will be posted on this page, and we may notify users via email or notice on the Platform.

12.Contact Information

For any questions, concerns, or to exercise your rights under this Policy, contact:

Privacy Officer
Runaway Travels Limited
📧 Email: privacy@runaway.co.nz

13.Legal Disclaimer

This Policy is for general information and does not constitute a contract. Nothing in this document limits your statutory privacy rights.