Last Updated: [December 2025] | 

Introduction & Commitment

P&P Group (“Company,” “we,” “us,” or “our”) operates the website travel.p-pgroup.com. We are committed to protecting your privacy and your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our travel booking services.

We process your data in accordance with the Personal Information Protection Law of China (PIPL) , the General Data Protection Regulation (GDPR) (if you are in the EU), and the California Consumer Privacy Act (CCPA) (if you are in California). We adhere to the principles of lawfulness, fairness, transparency, data minimization, and accountability .

Please read this policy carefully. By using our services, you consent to the practices described in this policy.

1. What Data We Collect

To provide you with travel bookings (flights, hotels, packages), we must collect specific data. The types of data we collect are:

  • Identity Data: First name, last name, title, date of birth, gender, passport number, nationality, and government-issued ID details.
  • Contact Data: Billing address, email address, telephone numbers.
  • Transaction Data: Payment card details (processed via PCI-DSS compliant gateways), billing history, booking confirmations, and cancellation requests.
  • Travel Data: Itinerary details, frequent flyer numbers, dietary requirements, special assistance needs, and accommodation preferences.
  • Technical Data: IP address, browser type, time zone setting, operating system, and cookies.
  • Usage Data: Information about how you use our website, products, and services.

2. How We Collect Your Data

We collect data through:

  • Direct Interactions: When you fill in forms, create an account, book a trip, or contact us.
  • Automated Technologies: As you navigate through our site (cookies and server logs).
  • Third Parties: We may receive data from analytics providers (such as Google), payment processors, or travel suppliers (airlines/hotels) when they confirm your booking.

3. How We Use Your Data (Lawful Basis)

We will only use your personal data when the law allows us to. Most commonly, we will use your data in the following circumstances :

PurposeLawful BasisData Type Used
Booking ManagementPerformance of a ContractIdentity, Contact, Transaction, Travel Data
Payment ProcessingPerformance of a ContractFinancial, Transaction Data
Customer ServicePerformance of a Contract / Legitimate InterestIdentity, Contact, Booking Data
Marketing CommunicationsConsentContact, Usage Data
Fraud PreventionLegal Obligation / Legitimate InterestIdentity, Technical, Transaction Data
Account Deletion RequestsLegal ObligationIdentity, Account Data

4. Data Sharing & Third Parties (Crucial for Travel)

To fulfill your travel bookings, we must share your data with third parties. We do not sell your personal information to third parties. However, we share data with the following categories of recipients :

  • Travel Suppliers: Hotels, airlines, car rental agencies, and tour operators. These parties process your data according to their own privacy policies and local laws.
  • Payment Processors: To process your payments securely.
  • IT Administrators: Companies that host our website or manage our email system.
  • Professional Advisers: Lawyers, bankers, and insurers who provide consultancy.
  • Government Authorities: If required by law (e.g., visa processing, border control, or tax authorities).

Cross-Border Data Transfer:
As a travel company, your data may be transferred to countries outside your home country (e.g., a hotel in Japan or a tour operator in Italy). When we transfer your personal data internationally, we ensure it is protected by appropriate safeguards, such as Standard Contractual Clauses approved by the European Commission or compliance with Chinese data export regulations .

5. Data Security

We have implemented appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorized way. We limit access to your personal data to those employees, agents, and contractors who have a business need to know .

Payment Security: All payment transactions are encrypted using SSL technology. We do not store full credit card details on our servers; this data is tokenized by our PCI-compliant payment gateway.

6. Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements .

  • Booking Data: Retained for [5] years to comply with tax and financial reporting laws.
  • Account Data: Retained until you request deletion.
  • Marketing Data: Retained until you opt-out or withdraw consent.

7. Your Rights (Deletion, Access & Correction)

To protect you from complaints and legal risks, we fully honor your data privacy rights. Depending on your location, you have the following rights :

  • The Right to Know: You can request what personal data we hold about you.
  • The Right to Correction: You can ask us to correct inaccurate data.
  • The Right to Deletion (The “Right to be Forgotten”): You can ask us to delete your account and personal data.
  • The Right to Restrict Processing: You can ask us to suspend the processing of your data.
  • The Right to Data Portability: You can request a copy of your data in a machine-readable format.
  • The Right to Withdraw Consent: At any time, for marketing communications.

⚠️ Important: Account Deletion Process

In compliance with Chinese CAC regulations (2025) and GDPR Article 17, we provide a straightforward account deletion mechanism .

  • How to Delete: You can request account deletion by logging into your account settings and selecting “Delete Account,” or by emailing us at privacy@travel.p-pgroup.com.
  • Timeline: We will process your deletion request within 15 business days (as required by law).
  • Consequence: Upon deletion, your account will be deactivated, and your personal data will be erased or anonymized, except for data we are legally required to keep (such as transaction records for tax authorities).
  • Verification: We may need to verify your identity before processing your request to ensure security.

8. Cookies

Our website uses cookies to distinguish you from other users, enhance your browsing experience, and analyze site traffic. You can set your browser to refuse all or some browser cookies. For detailed information, please see our [Cookie Policy] .

9. Children’s Privacy

Our services are not intended for children under 18. We do not knowingly collect data relating to children. If you are a parent or guardian and you are aware that your child has provided us with personal data, please contact us .

10. Changes to This Policy

We may update this policy from time to time. We will notify you of any changes by posting the new policy on this page with an updated revision date. In case of material changes, we will notify you via email or a prominent notice on our website .

11. Contact Us & Complaints

If you have any questions about this privacy policy, or if you wish to complain about how we have handled your personal data, please contact our Data Protection Officer (DPO):

  • Email: admin@travel.p-pgroup.com
  • Address: Travel – P&P Group

Supervisory Authority:
You have the right to lodge a complaint with a supervisory authority (e.g., your local data protection authority) if you believe your rights have been violated. However, we encourage you to contact us first so we may resolve your issue directly.

🌍 Select Language