Your Data is Safe

All data transmitted between your browser and our servers is protected by 256-bit SSL/TLS encryption (HTTPS enforced on every page). We also use HSTS to prevent downgrade attacks.

Sensitive data — including dietary requirements, medical information, survey responses, and Wi-Fi passwords — is encrypted at rest using AES-256 encryption before it's stored in our database.

Your data is completely isolated from other Tour Directors. No other TD can access your tours, travellers, or financial data — even platform administrators cannot browse your personal tour data.

• Role-based permissions: Tour Directors, Group Leaders, Hotels, and Travellers each see only what they need.
• Access codes: Hotels and Group Leaders access your tour only with a unique, time-limited code that you generate.
• Two-factor authentication (2FA): Every login requires email verification unless you're on a trusted device.
• CSRF protection: All actions are protected against cross-site request forgery.
• Rate limiting: Brute-force attacks on login and API endpoints are blocked automatically.

We use no analytics, no advertising pixels, and no third-party tracking cookies. There is no Google Analytics, no Meta Pixel, no Hotjar — nothing that follows you across the web.

The only cookies we use are essential session cookies for keeping you logged in and remembering your cookie preference. That's it.

Our built-in AI support assistant is a text-in, text-out system. It cannot access your database, modify your settings, cancel bookings, or perform any action on your behalf.

• The AI has zero database access — it only reads general help articles.
• Your personal data (tours, passengers, suppliers, finances) is never sent to the AI.
• The AI cannot promise refunds, confirm cancellations, or make commitments.
• Neither OpenAI nor Anthropic use your data for model training.

If you manage school group tours, student data receives extra protection:

• Student names and room assignments are automatically anonymised 90 days after the tour ends.
• Data is entered only by the Tour Director or Group Leader — never collected directly from children.
• Access to student data is restricted to authorised users via unique access codes.
• No student data is shared with AI services or third parties.

Under UK/EU GDPR, you have full control over your personal data:

• Download your data — export everything as JSON from your profile, anytime.
• Delete your account — one-click account deletion with full data erasure.
• See who's accessing your tours — only people you share access codes with can view traveller data.
• Review your login activity — see recent logins, timestamps, and locations from your profile.

Your data is stored on IONOS servers in the European Union, subject to EU data protection law. Where data must be sent to US-based processors (AI services), it's protected by Standard Contractual Clauses and the UK International Data Transfer Agreement.