Last updated: 3 July 2025
KennyTravel.ie is committed to protecting your privacy and handling your personal data in a transparent, fair, and lawful manner. This policy explains what data we collect, why we collect it, how we use it, and your rights under the General Data Protection Regulation (GDPR) and the Data Protection Acts 1988β2018.
KennyTravel.ie is the data controller for the personal information you provide to us. Our registered details are as follows:
We collect personal data that you provide directly to us, or that is generated through your use of our website and services. This may include:
We process your personal data on the following legal bases under GDPR Article 6:
Your personal data is used for the following purposes:
We do not sell your personal data. We may share it with trusted third parties only where necessary:
Some of our third-party suppliers (such as airlines and international hotel chains) may be based outside the European Economic Area (EEA). Where we transfer your data outside the EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission, to protect your data in accordance with GDPR.
We retain your personal data only for as long as necessary for the purposes set out in this policy, or as required by law. In general:
As a data subject under GDPR, you have the following rights:
Our website uses cookies to improve your experience and to analyse site traffic. Cookies are small text files stored on your device. We use the following types of cookies:
We take the security of your personal data seriously. We implement appropriate technical and organisational measures to protect your data against unauthorised access, loss, or disclosure. All payment data is processed by Stripe using industry-standard TLS encryption. Our systems are regularly reviewed for security vulnerabilities.
To exercise any of your rights, or if you have a concern about how we handle your data, please contact us at [email protected] or in writing to our registered address. We will respond within 30 days. If you are not satisfied with our response, you have the right to lodge a complaint with the Data Protection Commission (DPC) of Ireland:
We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. The date at the top of this page shows when it was last updated. We encourage you to review this policy periodically.
Contact us and we'll respond within 30 days.