ScenariosThe serviceBuilt forFAQFree report
Back to home
Legal

Privacy policy

Last updated: 15 May 2026

This Privacy Policy explains how MagiPort Ltd (“MagiPort”, “we”, “us”) collects, uses, shares and protects personal data when you visit magiport.com, when you contact us through this website, and when MagiPort is used by one of our customers (an airline, OTA, marketplace, or tourism brand) to power a personalised destination portal that you interact with as a traveller.

Who is the data controller?

For data collected via this website (magiport.com), MagiPort is the data controller. For data processed inside a customer-branded destination portal, MagiPort acts as a data processor on behalf of the travel brand that operates the portal — that brand is the data controller and their privacy policy applies to your booking and traveller data.

What we collect

  • Information you give us through this website: your name, work email, company, phone (optional) and the contents of any message you send via our contact or demo-request forms.
  • Usage data: anonymous information about how this website is used (pages viewed, approximate region, device type) collected via privacy-respecting analytics. We do not use third-party advertising trackers.
  • Customer booking data (only when processing on behalf of a customer): booking confirmations, itineraries, destination, dates, and traveller profile fields that the customer chooses to share with MagiPort in order to render a personalised portal.

How we use it

  • To respond to demo requests and contact inquiries.
  • To operate, maintain and improve our products and this website.
  • When acting as a processor, strictly to render destination portals and provide analytics back to the customer, in line with the data processing agreement signed with that customer.
  • To comply with legal obligations and protect against fraud, abuse, or security incidents.

Lawful basis (UK GDPR / EU GDPR)

We rely on the following lawful bases: (i) legitimate interests to respond to inquiries and to run our business; (ii) contract to provide our services to customers; and (iii) consent where we ask for it (for example to send optional product updates).

Sharing

We share personal data only with the sub-processors needed to operate the service (e.g. hosting, transactional email, analytics). We do not sell personal data. A current list of sub-processors is available on request to hello@magiport.com.

International transfers

Where personal data is transferred outside the UK or EEA, we rely on the UK International Data Transfer Addendum or the EU Standard Contractual Clauses, together with appropriate supplementary measures.

Retention

Contact-form submissions are retained for up to 24 months for business records, then deleted. Booking data processed on behalf of customers is retained only for the period specified in the relevant data processing agreement, and is deleted on customer instruction or contract termination.

Your rights

You have the right to access, correct, port, restrict, or delete your personal data, and to object to certain processing. You also have the right to lodge a complaint with a supervisory authority (in the UK, the Information Commissioner's Office). To exercise any right, email hello@magiport.com.

Cookies

We use a small set of strictly necessary cookies and privacy-respecting analytics. We do not use third-party advertising cookies. You can configure your browser to refuse cookies at any time.

Contact

MagiPort Ltd · hello@magiport.com