1. Important information and who we are
Omega World Travel Limited is part of the Omega group of companies (“Omega”) and respects individual privacy and values the confidence of its customers, employees, consumers, vendors and business partners. Our registered office is at 3rd Floor, Kingsway House, 103 Kingsway, London WC2B 6QX. Our website is at www.omegaworld.co.uk. Our Data Protection Officer is Nicola Smith.
Direct: 020 7061 6878
Mobile: 07785 426 924
3. The Data we collect
Omega collects, uses and discloses personal information only for the benefit of our customers to achieve their travel bookings, arrangements for meetings and events and concierge and VIP services. At all times the collection and retention of personal information is compliant with the laws of the United Kingdom and GDPR and the earlier Data Protection Act. Omega relies upon its clients to ensure that the business travellers arrangements which require the processing of their personal data arises from their consent and understanding that the transmission of the data to suppliers of services is necessary to make the booking concerned.
Omega has a tradition of upholding the highest ethical standards in its business practices. The General Data Protection Regulation (GDPR) and for the United States the EU-US Privacy Shield Framework sets forth the privacy principles Omega follows with respect to the collection, retention and transmission of personal information when required from the European Union (EU) to the United States.
The information you may be asked to provide includes, but is not limited to; name, address, telephone number, billing information (including credit card data), passport information, frequent flyer rewards schemes, dietary requirements, travel preferences. Unless stated otherwise, this collected data and information is used for the provision of our travel services and may be shared with our affiliates, subsidiaries, Global Distribution Systems, Industry Reporting Authorities, and other travel supplies that are deemed necessary to fulfill travel arrangements.
4. The Data we process
Omega World Travel may be required to disclose personal information in response to a lawful request made by public authorities, including tomeet national security or law enforcement requirements.
Omega confirms that it will only transfer personal data for the specified purpose and will not process it further without express permission. Personal Data may be transferred to our Agents strictly for the purpose of making the travel booking for the traveller.
Omega has and will take all appropriate security measures to prevent any unauthorised or unlawful processing and against any accidental loss or damage to personal data. Omega uses only approved suppliers and third parties to process data only where necessary to achieve travel bookings and where there are agreements in place to protect the data.
Omega staff are trained to understand the importance of data protection and the confidential nature of the data.
“Agent” means any third party (GDS, industry reporting authorities, internet booking engines, and other travel related suppliers that are deemed necessary to fulfill travel bookings and obligations) that collects or uses personal data under the instructions of, and solely for, Omega or to which Omega discloses personal information for use on Omega's behalf.
“Omega” means Omega World Travel Limited, its predecessors, successors, subsidiaries, divisions, affiliates and groups in the United Kingdom and the United States.
“Personal data” means any information or set of information that identifies or could be used by or on behalf of Omega to identify an individual. Personal data does not include information that is encoded or anonymized, or publicly available information that has not been combined with non-public personal information.
“Sensitive personal information” means personal information that reveals race, ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, or that concerns health or sex life. In addition, Omega will treat as sensitive personal information any information received from a third party where that third party treats and identifies the information as sensitive.
The GDPR applies to all personal data received by Omega in the United Kingdom in any format, including electronic, paper or verbal and the protection under GDPR extends to data protection in all EU countries. Our U.S parent Omega World Travel Inc. has made further precautions to protect personal data by registration with the US Privacy Shield Framework ensuring that both European and American traveller data in their possession is fully protected to these high standards.
7. Choice and opting out
Omega will offer individuals the opportunity to choose (opt-out) whether their personal information is (a) to be disclosed to a non-agent third party, or (b) to be used for a purpose other than the purpose for which it was originally collected or subsequently authorized by the individual.
For sensitive personal information, Omega will give individuals the opportunity to affirmatively and explicitly (opt-in) consent to the disclosure of the information to a non-agent third party or the use of the information for a purpose other than the purpose for which it was originally collected or subsequently authorized by the individual. An individual wishing to limit the use or sharing of their data should contact our Data Protection Officer
8. Data Integrity and Purpose Limitation
Omega will use personal information only in ways that are compatible with the purposes for which it was collected or subsequently authorized by the individual. Omega will take reasonable steps to ensure that personal information is relevant to its intended use, accurate, complete, and current.
9. Accountability for Onward Transfer
Omega will obtain assurances from its Agents that they will safeguard personal data consistently with this Policy. These Agents may use this information to fulfill travel arrangements and other duty of care obligations. If Omega has knowledge that an agent is using or disclosing personal information in a manner contrary to this Policy, Omega will take reasonable steps to prevent, stop the use, or remediate the unauthorized processing of data. In addition, Omega will attempt to limit the purposes for which the data may be processed and ensure the Agent will provide a similar level of privacy protection.
10 Access and Correction
Omega acknowledges the right of individuals to access their personal data. Upon request, Omega will grant individuals reasonable access to personal data that it holds about them. In addition, Omega will take reasonable steps to permit individuals to correct, amend, or delete data that is demonstrated to be inaccurate or incomplete.
Omega will take reasonable and appropriate precautions to protect personal data in its possession from loss, misuse and unauthorized access, disclosure, alteration and destruction.
12. Transfer of personal data outside of the EU
Omega may transfer, store and process your personal data outside of the European Economic Area, when this is necessary for the travel booking concerned and where we are requested to produce management information for our clients. We will not transfer personal data outside of the EEA without the client's written consent unless Omega is fulfilling a travel booking with an entity in a country recognised as having equivalent data protection as the EEA or has entered into standard contractual clauses (for controller to processor transfers) with Omega.
13. Recourse, Enforcement and Liability
Omega will conduct compliance audits of its relevant privacy practices to verify adherence to this Policy. Any employee that Omega determines is in violation of this policy will be subject to disciplinary action up to and including termination of employment.
14. Your legal rights
(i) the right to be informed
Omega's Clients have the right to access all information provided under our contract with them.
(ii) the right to access and rectification
As a Travel Management Company, Omega receives traveller data in order to create and manage travel bookings for its corporate clients. Data can be accessed, verified and rectified upon request.
(iii) the right to erasure
Omega can be requested to erase data at the data subjects request.
(iv) subject access request
The data subject can make a written request for access to his personal data.