GDPR Compliance

Last updated: May 6, 2026

Our Commitment to GDPR

Cruise Horizon is committed to complying with the General Data Protection Regulation (GDPR) and UK data protection laws. This page outlines how we process your personal data in accordance with these regulations.

Legal Basis for Processing

We process your personal data under the following legal bases:

  • Consent: When you provide explicit consent for specific processing activities
  • Contract: When processing is necessary to fulfill our contractual obligations to you
  • Legitimate Interest: When we have a legitimate business interest that does not override your rights
  • Legal Obligation: When required to comply with legal requirements

Your Rights Under GDPR

As a data subject, you have the following rights:

Right to Access

You have the right to request a copy of the personal data we hold about you. We will provide this information within one month of your request.

Right to Rectification

If you believe any information we hold about you is incorrect or incomplete, you have the right to request that we correct or complete it.

Right to Erasure (Right to be Forgotten)

You have the right to request deletion of your personal data in certain circumstances, such as when the data is no longer necessary for the purposes it was collected.

Right to Restriction of Processing

You have the right to request that we restrict the processing of your personal data in certain circumstances.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transfer it to another data controller.

Right to Object

You have the right to object to our processing of your personal data based on legitimate interests or for direct marketing purposes.

Rights Related to Automated Decision Making

You have the right not to be subject to decisions based solely on automated processing, including profiling, which produces legal effects or similarly significantly affects you.

Data Protection Officer

For questions about how we process your personal data or to exercise your rights, please contact us at:

Email: [email protected]
Address: 42 Castle Street, Liverpool, L2 7LQ, United Kingdom

Data Transfers

We primarily store and process data within the United Kingdom. If we transfer data outside the UK, we ensure appropriate safeguards are in place to protect your information in accordance with GDPR requirements.

Data Breach Notification

In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify you and the relevant supervisory authority within 72 hours of becoming aware of the breach.

Supervisory Authority

If you have concerns about how we process your personal data, you have the right to lodge a complaint with the UK Information Commissioner's Office (ICO):

Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
Cheshire SK9 5AF
Phone: 0303 123 1113
Website: ico.org.uk

Changes to This Statement

We may update this GDPR compliance statement from time to time. Any changes will be posted on this page with an updated revision date.

Exercising Your Rights

To exercise any of your rights under GDPR, please contact us at [email protected]. We will respond to your request within one month. In complex cases, this may be extended by two additional months, and we will inform you of any such extension.