The security of your information is our top priority. This is why we use the latest security in our WordPress websites, optimise the site for content, speed and security and use only trusted plugins and partners.

Our booking partners / booking system(s) handle and store your booking information. All are fully GDPR compliant.

Our partners do not store your credit card information. It is securely transmitted to our payment processor Stripe or Trust My Travel via 168-bit encryption. Stripe & Trust My Travel are world leaders in secure online transactions.

Our marketing partners store your email & full name - all are fully GDPR compliant. These include Mailchimp, MailPoet & Travefy.

All communication from your computer to our servers as well those of our partners are encrypted.


At Northern Secrets Ltd we take your data protection and privacy very seriously. We never pass your personal information to any 3rd party or organisation. The information we collect will only be used in accordance with the Data Protection Act 1998 and General Data Protection Regulation 2018. We collect personal information about you only to process your booking or subscribe you to our mailing list. Northern Secrets Ltd (‘we’ or ‘us’) collect, use and are responsible for certain personal information about you. When we do so we are regulated under the above regulations which apply across the EEA (including the United Kingdom post 31 December 2020) and we are responsible as ‘controller’ of that personal information for the purposes of those laws.

Should you book, we collect several pieces of information about you - your name, address, phone number, email address, booking preferences sometimes date of birth and/or dietary requirements. This information is stored by us and our, relevant to your specific tour, travel partners (e.g. hotels, ferry company etc.). If you subscribe to our newsletter, we only collect your email address and full name.

Some of the information we collect about you could be considered sensitive. That is why it is never passed on to any parties outside of Northern Secrets Ltd, except where your tour requires this (e.g. when this is run by a travel partner when we will supply details of your booking to them). All our travel partners comply with data protection laws and we then act as the tour agent & 'processor'.

Your email address is kept for contact purposes, allowing our staff to keep you up to date on any changes that may occur between you booking a tour and taking part. In addition we will send you one email for feedback shortly after your tour. If you have subscribed to our mailing list, we will use your email address to send you our newsletter. You can unsubscribe from the list at any time by clicking a link in a newsletter. All of our marketing partners are GDPR compliant. If you require further information about these, please contact us on the email given below.

We may use cookies or Google Analytics to help us measure site performance, and for anonymous gathering of usage information. Third party applications we embed in our site like Facebook and Twitter also use cookies to understand user behaviour and marketing purposes and each has their own privacy policy which you can view by clicking the respective link.

We are members of the ICO (Information Commissioner's Office (ref. ZA835602).

If you have any questions, please get in touch with our data protection officer on [email protected] and we will be happy to help.