Legal

Privacy Policy

Last updated: 21 May 2026

This Privacy Policy explains how PartiiTrip Ltd collects, uses, stores, and protects your personal data when you use the PartiiTrip app or website. We are committed to being transparent about our data practices and to handling your information responsibly and in compliance with applicable data protection law.

Please read this policy carefully. If you have any questions or concerns, contact us at contact@partiitrip.com. Our Terms & Conditions also apply to your use of the Service.

1. Who We Are

PartiiTrip Ltd is a private limited company incorporated in England and Wales. We operate the PartiiTrip group trip planning app and website, available at partiitrip.com and via the Apple App Store and Google Play Store.

For the purposes of UK data protection law, PartiiTrip Ltd is the data controller in respect of any personal data processed through the Service. This means we determine the purposes and means of processing your personal data.

If you have any questions about this Privacy Policy, about how we handle your personal data, or about your data subject rights, please contact us:

2. What Data We Collect

We collect only the personal data that is necessary for the operation of the Service. The categories of personal data we collect are as follows:

We do not collect special category personal data (such as health, political, religious, or biometric data) and we do not ask you to provide it. Please do not include such data in your Trip content or notes.

3. How We Use Your Data

We use the personal data we collect for the following purposes:

We do not use your personal data for advertising, marketing to third parties, or any purpose not described above without your explicit consent.

4. Legal Basis for Processing

Under UK GDPR, we are required to have a lawful basis for each type of personal data processing we carry out. Our lawful bases are as follows:

5. Data Sharing

We do not sell, rent, or trade your personal data to any third party for marketing or commercial purposes. We share personal data only in the following circumstances:

With service providers acting as data processors: We share personal data with the following third-party service providers under data processing agreements, as required by UK GDPR. These providers are authorised to process your personal data only on our instructions and for the purposes described:

With independent controllers for payment processing: Where you make in-app purchases, your payment data is handled directly by Apple (App Store), Google (Play Store), or Stripe (web purchases). These companies act as independent data controllers for payment data under their own privacy policies. PartiiTrip Ltd does not receive or store your payment card details.

With other Trip members: Certain personal data you provide - such as your display name, profile information, expense contributions, and (if provided) bank account details - is shared with other members of the same Trip as part of the core functionality of the Service. Please be mindful of the information you choose to share within a Trip group.

Where required by law: We may disclose personal data where required to do so by applicable law, court order, or the request of a competent regulatory or law enforcement authority.

6. Bank Account Details

If you choose to add your bank account details (sort code, account number, and account name) to your PartiiTrip profile, the following applies:

We strongly recommend that you only share bank account details within Trip groups where you know and trust all members.

7. Data Retention

We retain your personal data for as long as your Account remains active and for a reasonable period thereafter to allow for account recovery requests. The specific retention practices are as follows:

Where you request deletion of your Account, we will confirm by email once the deletion has been completed. If you have any questions about how long we retain specific types of data, contact us at contact@partiitrip.com.

8. Your Rights (UK GDPR)

As a data subject under UK GDPR, you have the following rights in respect of your personal data. These rights apply subject to certain legal exceptions and conditions:

To exercise any of these rights, please contact us at contact@partiitrip.com. We will respond within 30 days of receiving a valid request. We may ask you to verify your identity before processing a request. Requests are free of charge unless they are manifestly unfounded or excessive.

9. Cookies and Local Storage

PartiiTrip uses minimal local storage in your browser or device to enable the Service to function. We do not use advertising cookies, third-party tracking cookies, fingerprinting technologies, or any other tracking mechanism that would require a cookie consent banner under UK PECR (Privacy and Electronic Communications Regulations).

The local storage items we use are strictly necessary for the operation of the Service:

Because we use only strictly necessary local storage (with no third-party tracking or advertising elements), we are not required to display a cookie consent banner. If you clear your browser's localStorage, you will be logged out and any local preference flags will be reset.

10. Security

We take the security of your personal data seriously and implement technical and organisational measures designed to protect it against unauthorised access, disclosure, alteration, or destruction. Our key security measures include:

While we take all reasonable steps to protect your personal data, no transmission over the internet and no method of storage can be guaranteed to be 100% secure. If you discover or suspect a security vulnerability in the Service, please report it responsibly to contact@partiitrip.com.

11. International Data Transfers

Where personal data is transferred outside the United Kingdom or the European Economic Area (EEA), we ensure that appropriate safeguards are in place in accordance with UK GDPR. The international transfers involved in operating the Service are as follows:

If you have questions about the safeguards we have in place for international data transfers, contact us at contact@partiitrip.com.

12. Children

The Service is not directed at, and is not intended for use by, individuals under the age of 18. We do not knowingly collect personal data from children under 18.

If you are a parent or guardian and you believe that your child has provided personal data to PartiiTrip without your consent, please contact us immediately at contact@partiitrip.com. We will take prompt steps to identify and delete any personal data belonging to a child that has been collected without appropriate consent.

Where a user is between 16 and 18 years of age and wishes to use the Service, verifiable parental or guardian consent must be obtained in accordance with our Terms & Conditions.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our data practices, changes to the Service, or updates to applicable data protection law. The effective date of the current version is shown at the top of this page.

When we make material changes - meaning changes that significantly affect how we collect, use, or share your personal data, or that affect your rights - we will notify you:

For minor or non-material changes (such as clarifications, corrections, or updates that do not alter the substance of the policy), we may update this page without prior notice. We recommend reviewing this page periodically.

Your continued use of the Service after the effective date of any revised Privacy Policy constitutes your acceptance of the changes. The current version of this policy is always available at partiitrip.com/privacy.html.

14. Contact and Complaints

For all data protection queries, subject access requests, or requests to exercise your UK GDPR rights, please contact us at:

Email: contact@partiitrip.com
Website: partiitrip.com

We will acknowledge your request promptly and respond fully within 30 days.

If you are not satisfied with our response to your data protection concern, or if you believe that we are processing your personal data in a manner that is not compliant with UK GDPR, you have the right to lodge a complaint with the Information Commissioner's Office (ICO), the UK's independent supervisory authority for data protection:

We would, however, appreciate the opportunity to address your concern directly before you contact the ICO, and encourage you to contact us in the first instance.