• Explore...
  • Places to see
  • Things to do
  • Trip inspiration

Customer Privacy Policy

Protecting your Personal Data is a priority for us. We therefore only use your Personal Data within the scope of applicable legal regulations, in particular the EU General Data Protection Regulation ("GDPR"). This privacy policy outlines how GetYourGuide uses and processes your Personal Data when you use GetYourGuide's services, such as through our website and mobile apps. It also informs you about your rights regarding your Personal Data and how you can contact GetYourGuide.

If you are a resident of the United States, please consult the section titled “United States Residents’ Rights” and review our supplementary CCPA notice for more information.

If you are an Activity Provider or marketing partner, please refer to our Supplier Privacy Policy to understand how Personal Data is processed within the scope of your business relationship.

I. Terms

The following terms are used in this privacy policy:

  • Activity” refers to the tours, attractions, or touristic experiences offered by Activity Providers through the GetYourGuide Platform.
  • Activity Provider” means the provider of the tours, attractions, or touristic experiences that are offered on the GetYourGuide Platform.
  • CCPA” refers to the California Consumer Privacy Act of 2018.
  • GDPR” refers to the General Data Protection Regulation (EU) 2016/679.
  • GetYourGuide Platform” refers to the booking platform operated by GetYourGuide accessible via www.getyourguide.com, related websites, partner websites, apps, tools, and platforms, devices, or other facilities.
  • Personal Data” refers to any Personally Identifiable Information, meaning any information relating to an identified or identifiable natural person.

II. Controller and Contact

The Controller responsible for processing your Personal Data when you use or access GetYourGuide’s services is:

  • Controller: GetYourGuide Deutschland GmbH
  • Address: Sonnenburger Strasse 73, 10437 Berlin, Germany
  • Contact: You can find our contact form here

Please note that any data processing by Activity Providers in connection with a booked Activity is outside the control of GetYourGuide and is subject to the Activity Provider’s own privacy policy. Activity Providers act as separate data controllers.

III. Data Processing Activities

1. Automated Data Collection

When you visit the GetYourGuide Platform, GetYourGuide automatically collects the following information. The following data is stored separately from other data that you may transmit to us:

  • URL of the accessed page
  • Latency of the network connection
  • Date and time
  • Information about your device and device-specific settings (e.g., operating system, internet browser, application version, language settings, app crashes and other systematic activity)
  • Information about clicks and pages shown to you
  • IP address

We collect this data to ensure the proper operation and security of our platform and prevent fraudulent activities based on our legitimate interest (Art. 6 para. 1 lit. f GDPR).

Your IP address is stored encrypted and is deleted after a period of 30 days.

2. Data Collected in Connection with Your GetYourGuide Account

2.1. Registration

Registration is not required to use GetYourGuide’s Services. However, if you create a GetYourGuide account you may provide us with the following data:

  • Full name
  • Email address
  • Password

Alternatively, you can log in using your Facebook, Googe or Apple account. In this case, we receive the following Personal Data from Facebook, Google or Apple which we use to create your GetYourGuide account:

  • Name
  • Email address
  • Photo (Facebook only)
  • an authentication token

GetYourGuide processes this data to set up and manage your GetYourGuide account as outlined in our General Terms and Conditions on the basis of Art. 6 para. 1 lit. b GDPR.

2.2. Wishlists

You have the option to create wish lists that allow you to save Activities that you are interested in booking at a later point in time. When you add Activities to your wishlist, we use this information to provide you with personalized recommendations and targeted advertisements. This is based on our legitimate interest to enhance your user experience and improve our services (Art. 6 para. 1 lit. f GDPR).

2.3. Activity Reviews

Our website offers the possibility to review and rate a booked Activity after you have participated. Your review may be displayed in the context of the reviewed activity on the GetYourGuide Platform, websites of affiliated companies or in promotional materials. You have the option to submit the review anonymously. When you submit a review, we collect any information you decide to share with us, including your rating, comments, photos, your age range, the country you are from and your first name. You can request your review to be deleted any time by contacting our customer service through our contact form.

You can object at any time to receiving review requests by clicking the unsubscribe link in each review request email. If you have an account, you can also do so from the Settings -> Notifications section on your profile. Otherwise, you can also reach out to our customer service team via the link above.

The processing of your data for these purposes is done based on our legitimate interest to enhance our offerings, assist other GetYourGuide customers in making informed decisions, and for marketing purposes (Art. 6 para. 1 lit. f GDPR).

3. Customer Service

3.1. Processing of Enquiries

If you contact our customer service team or reach out through other means such as our social media channels, your request may be handled by our subsidiary, GetYourGuide Global Services GmbH. We also work with specialized customer service providers such as Transcom WorldWide AB (“Transcom”), Cohere Outsourcing Philippines (“Cohere”), and Teleperformance SE (“Teleperformance”). When handling customer requests, these entities may process Personal Data provided in the request, such as name, email address, booking number or other information shared during the communication. Transcom, Cohere and Teleperformance may also process Personal Data in countries outside the European Economic Area. Therefore, we have concluded the standard contractual clauses approved by the European Commission, in accordance with Art. 46 para. 2 lit. c GDPR. You can find more information on how Transcom processes Personal Data here. The privacy policy of Teleperformance is here.

We and/or GetYourGuide Global Services GmbH use a communication platform provided by Zendesk, Inc. (“Zendesk”) to manage any customer service interactions, including handling inquiries, support requests, and feedback. Zendesk may process Personal Data in countries outside the European Economic Area, specifically in the USA. Zendesk participates in the EU-U.S. Data Privacy Framework, the UK Extension to the EU-U.S. Data Privacy Framework and the Swiss-U.S. Data Privacy Framework, ensuring that all Personal Data transferred is adequately protected.

We additionally use the services provided by Chatbotize sp. z o.o. (“Zowie”), and aiConomix GmbH (“Automaited”) that offer AI technology that assists in managing and responding to customer queries.

Zendesk, Zowie and Automaited may process any Personal Data that you provide on our behalf such as your name, email address, booking number or other information shared during your communication with us. You can find more information on how Personal Data is processed by Zendesk here, by Automaited here and Zowie here.

Furthermore we use the services of Sprout Social, Inc. (“Sprout Social”) for managing inquiries that come in through our social media channels. Sprout Social may process your social media handle, username, profile picture, biography, follower counts as well as any information you provide in connection with your request. Sprout Social may process Personal Data in countries outside the European Economic Area, specifically in the USA. Sprout Social participates in the EU-U.S. Data Privacy Framework, the UK Extension to the EU-U.S. Data Privacy Framework and the Swiss-U.S. Data Privacy Framework, ensuring that all Personal Data transferred is adequately protected. You can find more information on how Personal Data is processed by Sprout Social here.

3.2. Improving our Customer Service

To continuously improve our customer service, we may analyze inquiries using specific parameters and keywords. We may also invite you to participate in customer satisfaction surveys to help us enhance the quality of our customer service. The processing of Personal Data required within this context serves our legitimate interest as well as that of our customers in the continuous improvement of our customer service (Art. 6 para. 1 lit. f GDPR).

For the evaluation of inquiries, we use the systems of Chattermill Analytics Ltd. (“Chattermill”) and the business intelligence platform Looker, provided by Google, Ltd. Chattermill may process Personal Data in countries outside the European Economic Area, specifically in the UK. The UK has been recognized by the European Commission as providing an adequate level of data protection. You can find more information on how Personal Data is processed by Chattermill here.

To evaluate customer satisfaction surveys, we use a tool provided by Duoventures Limited designed for collecting and analyzing customer feedback via surveys (“Simplesat”). Simplesat may process personal data in countries outside the European Economic Area, specifically in Hong Kong. Therefore, we have concluded the standard contractual clauses approved by the European Commission with Simplesat, in accordance with Art. 46 para. 2 lit. c GDPR. You can find more information on how Personal Data is processed by Simplesat here.

3.3. Translating Enquiries

In certain cases, it is necessary for us to translate incoming requests into a specific language. This may require the processing of Personal Data necessary to protect our legitimate interest in providing international customer service, Art. 6 para. 1 lit. f GDPR. For this purpose, we use the services of DeepL SE (“DeepL”) and Open AI, Inc. (“OpenAI”). You can find DeepL’s privacy policy here and OpenAI’s privacy policy here.

3.4. Storage and Evaluation of Telephone Calls

Telephone calls are only stored and analyzed if you have given us your prior consent. We will only use this data for the purpose of improving our customer service. The recordings will be deleted after three months. The legal basis is Art. 6 para. 1 lit. a GDPR. You have the option to revoke your consent at any time by contacting one of the contact channels mentioned in this privacy policy. This will not affect the lawfulness of the processing carried out by us until your revocation.

4. Technical Service Providers

4.1. Hosting of the website

For the hosting of our website, we use the services of Amazon Web Services EMEA S.a.r.l. ("AWS"). Accordingly, when you interact with our website or provide personal data, it is processed on AWS servers. We only use servers located in the European Union. To cover remote maintenance and similar constellations. AWS may process Personal Data in countries outside the European Economic Area, specifically in the USA. AWS participates in the EU-U.S. Data Privacy Framework, the UK Extension to the EU-U.S. Data Privacy Framework and the Swiss-U.S. Data Privacy Framework, ensuring that all Personal Data transferred is adequately protected. You can find more information on how AWS processes Personal Data here.

4.2. Email system

For sending emails, we use the Sendgrid service of Twilio Inc. ("Twilio"). Twilio may process Personal Data in countries outside the European Economic Area, specifically in the USA. Twilio participates in the EU-U.S. Data Privacy Framework, the UK Extension to the EU-U.S. Data Privacy Framework and the Swiss-U.S. Data Privacy Framework, ensuring that all Personal Data transferred is adequately protected. You can find more information on how Twilio processes Personal Data here.

4.3. Protection against bots

To protect us from bots and similar technologies, we use the Cheq service provided by CHEQ AI Technologies Ltd. ("Cheq") and Datadog Inc. (“Datadog”). Cheq will use the data automatically transmitted by your device to determine whether the request most likely originates from a human. No further storage of the data will take place. The processing is carried out in order to ensure the security of the processing in accordance with Art. 32 GDPR and on the basis of our legitimate interest in protecting ourselves against misuse of our service (Art. 6 para. 1 lit. f GDPR). Cheq may process Personal Data in countries outside the European Economic Area, specifically in Israel. Israel has been recognized by the European Commission as providing an adequate level of data protection. You can find more information about how Cheq processes Personal Data here.

Datadog may process Personal Data in countries outside the European Economic Area, specifically in the USA. Datadog participates in the EU-U.S. Data Privacy Framework, the UK Extension to the EU-U.S. Data Privacy Framework and the Swiss-U.S. Data Privacy Framework with the U.S. Department of Commerce, ensuring that all Personal Data transferred is adequately protected. You can find more information about how Datadog processes Personal Data here.

5. Marketing Newsletters

You can subscribe to our newsletter through our website to receive personalized information on offers, tours, activities or special promotions. By subscribing, you consent to us processing your email address and interactions with newsletters for the purpose of sending the newsletter and analyzing your interaction, based on Art. 6 para. 1 lit a GDPR. We store your IP address and the date and time of your subscription to document your consent, in compliance with Art. 6 para. 1 lit. c in conjunction with Art. 7 para. 1 GDPR.

If you have booked an Activity via our website or if you have created a GetYourGuide account, we may send you newsletters to inform you about similar Activities that might interest you. This is based on our legitimate interest in promoting similar services to your bookings or account (Art. 6 para. 1 lit. f GDPR, § 7 para. 3 UWG) unless you have objected to this use. If cookies are used for newsletter personalisation, we will obtain your separate consent.

You can withdraw your consent and opt out of receiving newsletters at any time either by deselecting the corresponding checkbox during registration, by clicking the unsubscribe link in the respective emails or by contacting our customer service via the contact form. In addition, if you have a GetYourGuide account, you can always subscribe or unsubscribe to different types of communication from the Settings -> Notifications section on your profile.

For the dispatch of our newsletter and the personalisation of content, we use the services of the provider Braze Inc. ("Braze"). Braze may process Personal Data in countries outside the European Economic Area, specifically in the USA. Braze participates in the EU-U.S. Data Privacy Framework, the UK Extension to the EU-U.S. Data Privacy Framework and the Swiss-U.S. Data Privacy Framework, ensuring that all Personal Data transferred is adequately protected. You can find more information on how Personal Data is processed by Braze here.

6. Booking Activities

6.1. Activity Providers

When you book an Activity on the GetYourGuide Platform, we collect the data required to organize and carry out the Activity. This typically includes your first and last name, billing address, email address, telephone number, number of participants, booking date and time, and details about the booked Activity. Depending on the specific Activity, we may also ask for further information, such as your passport number or the age of the participants. We use this Personal Data to provide our services to you, specifically to complete and manage your booking based on Art. 6 para. 1 lit. b GDPR. To the extent necessary, we will transfer this information to the Activity Provider responsible for the Activity. The Activity Provider will process your Personal Data as outlined in their own privacy policy, acting as an independent data controller. If a transfer to a country outside the European Economic Area is necessary, this is based on Art. 49 para. 1 lit. b, c GDPR.

If you make bookings via partner sites, you will be redirected to the GetYourGuide website to complete the booking. In this case, GetYourGuide will process the Personal Data as described above. If you book an Activity through a travel agency, your data is collected by the travel agency, acting as an independent data controller as outlined in their privacy policy. The travel agency forwards the data required for the booking to us, so we can complete the booking.

Once you have booked an Activity, you can share the booking details with other participants by providing their email address. GetYourGuide will send them the booking confirmation and important communication related to the booking. In this case, it is your responsibility to get consent from the participant to share their email address with GetYourGuide.

6.2. Booking Confirmations

To keep you updated on your bookings, we will send you booking confirmations, reminders, and updates for upcoming bookings (e.g. in case of time or meeting point changes). Booking confirmations are sent via email address, SMS (if provided)or through a push notification from the GetYourGuide app. If you have a GetYourGuide account, you can customize your notification preferences in the section “Settings” under the tab “Notifications” of your profile. When sending you booking confirmations we process your Personal Data as necessary to provide you our services (Art. 6 para. 1 lit. b GDPR).

6.3. Booking Cancellation Insurance

For some Activities you have the option to book cancellation upgrades where the costs for a last cancellation are covered by insurance. The insurance coverage is offered to you by Companjon Admin GmbH (“Companjon”) If you book this option, your Personal Data will be processed based on Art. 6 para. 1 lit. b GDPR. You can find more information on how Companjon processes Personal Data here.

With regards to the data processing connected to offering these insurances on the GetYourGuide website, GetYourGuide and Companjon act as joint data controllers. With regards to the data processing directly connected to the insurance contract (such as eligibility, decision making process, claim processing etc.), Companjon acts as an independent data controller.

You can exercise your data subject rights towards either GetYourGuide or Companjon and we will ensure the request is forwarded to the responsible party.

7. Payments

We offer different payment methods to pay for your booked Activity. Depending on the payment method you choose, we will process your Personal Data to facilitate the transaction as described below. This processing is necessary to fulfill our contractual obligations in accordance with Art. 6 para. 1 lit. b GDPR.

7.1. Credit Card Payments

To process credit card payments, we use the service provider Adyen N.V. ("Adyen"). Adyen forwards the payment data you provide to the respective banks or financial institutions to process the transaction. We only receive confirmation of whether the payment was successful, along with the first six and the last four digits of the credit card number. We do not have access to your full credit card number. You can find more information on how Adyen processes Personal Data here.

Additionally, we use the payment orchestration services of Primer API Ltd. (“Primer”). Primer automatically redirects the payment request to the appropriate payment service provider. Primer may process Personal Data in countries outside the European Economic Area, specifically in the UK. The UK has been recognized by the European Commission as providing an adequate level of data protection. You can find more information on how Primer processes Personal Data here.

7.2. Other Payment Services (PayPal, Stripe, checkout.com, J.P. Morgan)

If you choose to process your payment via payment services, we receive confirmation of your payment. Additionally, we may receive billing and contact information such as your email address associated with your payment method. The providers of our payment services act as both a responsible data controller when providing the payment services to you and may act on our behalf as data processors when directed to process payments by us. Regarding data processing as a data controller, the relevant privacy policy of the payment service provider applies to their processing of your data. GetYourGuide currently works with the following payment service providers:

7.3. Payment by Invoice

If you pay by invoice, we will transfer to Klarna Bank AB (publ) ("Klarna"). Klarna will initially use this data for credit assessment purposes and, if necessary, for payment processing. The credit assessments may include probability values (score values), which are calculated on the basis of scientifically recognised mathematical-statistical procedures and also include address data in their calculation. You can find more information on how Klarna processes Personal Data here.

7.4. Chargebacks

In the event of chargebacks, we use the services of Global Merchant Risk Technologies Ltd. (“Chargebacks911”) to process a chargeback on behalf of GetYourGuide. For this purpose, we provide Chargebacks911 with access to your booking data, including payment information. Chargebacks911 will then manage the chargeback with your bank. The processing is necessary for fulfilling our contractual obligation toward you (Art. 6 para. 1 lit. b GDPR) as well as on the basis of our legitimate interest in the effective processing of chargebacks (Art. 6 para. 1 lit. f GDPR). You can find more information on how Chargeback911 processes Personal Data here.

8. Fraud Prevention

To safeguard our services and protect ourselves, our Activity Providers and customers from fraud, we use fraud prevention tools provided by Sift Science, Inc. (“Sift Science”), Adyen N.V. (“Adyen”) and Ethoca Inc (“Ethoca”). These tools help us analyze transaction data and user behavior patterns to detect potential fraud, security threats, and other malicious behavior. We process this data based on our legitimate interest in preventing fraud and ensuring the safety of the GetYourGuide Platform (Art. 6 para. 1 lit. f GDPR).

Sift Science may process Personal Data to countries outside the European Economic Area, specifically in the USA. We have therefore concluded the standard contractual clauses approved by the European Commission with Sift Science pursuant to Art. 46 para. 2 lit. c GDPR. Ethoca may process Personal Data to Canada. Canada has been recognized by the European Commission as providing an adequate level of data protection. You can find more information on how Personal Data is processed by Sift Science here, by Adyen here and by Ethoca here.

9. Cookies and Tracking Technologies

We use so-called "cookies" and other online tracking technologies to offer certain functions of our website to optimize the use of our website and our apps or for the purpose of executing our marketing and advertising strategy.

Specifically, we use (unless other cookies are specified elsewhere in this privacy policy or our cookie consent) the following cookies and tracking technologies:

  • Session cookies: These cookies are needed to store certain technical data during your visit to our website, e.g. to determine whether you have logged in.
  • Persistent cookies: These cookies are needed to store data beyond a browser session if you wish to do so.
  • Web beacons (such as tags or tracking pixels): They can be used to retrieve information from your device, such as your device type or operating system, your IP address, and the time of your visit. They are also used to serve and read cookies in your browser or to trigger the placement of a cookie
  • Scripts: These are small computer programs embedded within our web pages that support different functionality (security features, interactive features etc). They can also be used for analytical or advertising purposes. For example, a script can collect information about how you use our website, such as which pages you visit or what you search for.
  • Tracking URLs: These are links with a unique identifier in them used to track which website brought you to our website or the app.
  • Software Development Kits (SDKs): These are part of our app source code and unlike browser cookies, SDK data is stored in the app storage. They’re used to analyze how the apps are being used, send personalized push notifications or to allow the app to share data with third parties. To do this, they record unique identifiers associated with your device, like device ID and IP address, as well as your in-app activity and your network location.

We categorize cookies and other tracking technologies into the following categories:

  • Strictly Necessary Technologies: These are technologies required for our websites and apps to function and they must be enabled in order for you to use our services.
  • Analytical Technologies: These measure and track how our website and apps are used. We use this information to improve our website, apps and services.
  • Marketing Technologies: These are used by GetYourGuide and other trusted partners to collect information about user journeys both on the website and in the app, in order to deliver relevant sponsored content about our products and to execute our marketing and advertising strategy.

You can find more detailed information about each category and give or withdraw consent from Analytical or Marketing Technologies by accessing the link “Cookies and Marketing Preferences” in our website footer or the “Privacy Preferences” section in the App menu.

The tool enables you to activate or deactivate cookies, trackers, SDKs and other technologies used on our website and in the GetYourGuide apps. You can navigate between the different groups of technologies and find detailed information about each group, as well as more information about the third parties GetYourGuide might share your data with. You have the option to turn each of the categories on or off individually.

Your preferences will be remembered across devices and platforms (Website and Apps): for example, when you accept or reject all non-essential tracking technologies by using this tool while navigating the website, your choice will be remembered with the help of a unique identifier and non-essential tracking technologies will be automatically enabled or disabled when you access the GetYourGuide App. The legal basis for the use of these cookies is § 25 para. 2 of the German Telecommunications Digital Services Data Protection Act (TDDDG) or Art. 6 para. 1 lit. b GDPR, insofar as they are necessary for the use of our website and the functions you have accessed. Otherwise, we use cookies and other tracking technologies – as described below – on the basis of your consent. You can revoke your consent at any time via our consent manager.

10. Customer Research

10.1. Customer Surveys and Research Panels

We, or research agencies we partner with, might invite our customers, or independently recruited external participants, to take part in research studies. Your participation, and if applicable any video recordings, will only occur with your prior explicit written consent in accordance with Art. 6 para. 1 lit. a GDPR. The research agencies we might collaborate with are: Respondent, Inc. (“Respondent”), Userlytics Corp. (“Userlytics”) and Lookback Group Inc. (“Lookback”). These research agencies act as data controllers.

They may process Personal Data in countries outside the European Economic Area, specifically in the USA. We have concluded the standard contractual clauses approved by the European Commission, in accordance with Art. 46 para. 2 lit. c GDPR. You can find Respondent’s privacy policy here, Userlytics’ privacy policy here and Lookback’s privacy policy here.

Additionally, when visiting our website, you might be asked to answer some questions about the GetYourGuide product or features. Your responses are collected in an aggregated form and are not linked personally to you. Participation is entirely voluntary.

10.2. Visitor Journey Recordings

We use heat mapping services of Hotjar Ltd. (“Hotjar”). These services help us identify areas of a webpage where visitors frequently move their mouse or click, highlighting the points of interest. Data collection is limited to specific pages and a select number of random visitor sessions. The recording is kept for a period of 365 days and then automatically deleted. We process this data based on your consent (Art. 6 para. 1 lit. a GDPR). Hotjar honors generic “Do Not Track” requests, if you want to exercise this right you can access Hotjar’s opt-out information here. You can find more information about how Hotjar processes Personal Data here.

11. Marketing and Remarketing Services

We use the following marketing and remarketing services. We use these services based on your consent (Art. 6 para. 1 lit. a GDPR). You can review and withdraw your consent at any time by changing the settings in the “Cookies and Marketing Preferences” section of the footer of our website or by changing the settings in the “Privacy Preferences” section of the App menu. This will not affect the lawfulness of any processing that has taken place until you withdraw your consent.

11.1. Evaluation of Advertising

With regard to our social media advertising, we use a service provided by Smartly.io Solutions Oy (“Smartly”) and Adjust GmbH (“Adjust”) to analyze the success of our advertisements. For more information, please click on “Cookies and Marketing Preferences” in the footer of our website or the “Privacy Preferences” section in the App menu.

11.2. Google Services

We use the services of Google Ireland Limited ("Google"). Google may process Personal Data in countries outside the European Economic Area, specifically in the USA. Google participates in the EU-U.S. Data Privacy Framework, the UK Extension to the EU-U.S. Data Privacy Framework and the Swiss-U.S. Data Privacy Framework, ensuring that all Personal Data transferred is adequately protected. More information on how Google processes Personal Data can be found here.

11.2.1. Google Analytics 360

If you have consented, we may use Google Analytics 360, a web analytics service. Google Analytics 360 collects pseudonymized data about the usage of our website, including your shortened IP address. Google will use this information to analyze any website and app activity. Your data will be stored by Google Analytics for a period of up to 26 months. After this period, the data is deleted and only aggregated statistics are kept.

You can revoke your consent at any time and deactivate Google Analytics using a browser add-on. Alternatively, you can revoke your consent as described here. You can also revoke your consent via our consent manager. This does not affect the lawfulness of the processing carried out until your revocation.

11.2.2. Google Campaign Manager, Display & Video 360, Google Ads

If you have consented, we use advertising products from Google. To enhance your advertising experience, we analyze how you use our website and app through remarketing cookies, client Tags, server-to-server connections or software development kits (SDKs). This helps us understand your interests so we can show you more relevant advertisements for our products when you visit other websites within the Google advertising network (including Google Search, Youtube and other sites operated by Google, its subsidiaries, as well as Google's advertising partners). To enable this personalized advertising, we share certain data with Google and its advertising partners. Additional data processing will only occur if you consent to Google connecting your browsing history to your Google Account and using your Google Account information to personalize ads you see across the web. If you provide this consent, Google will combine your data with Google Analytics information to create targeted advertising groups. This process involves Google temporarily linking your personal data with Google Analytics data to form these groups.

The remarketing cookies are automatically deleted as soon as they are no longer necessary for the purposes for which we collected or used it.

You have the following options in regards to Google advertising:

  • You can deactivate personalized advertising from Google (see here)
  • You can disable personalized advertising on a device-by-device basis (see here)
  • You can disable personalized advertising by browser (see here)

11.3. Meta Services (Facebook, Instagram)

We use the services of Meta Platforms Ireland Limited ("Meta") as described below.

Meta may process Personal Data in countries outside the European Economic Area, specifically in the USA. Meta participates in the EU-U.S. Data Privacy Framework, the UK Extension to the EU-U.S. Data Privacy Framework and the Swiss-U.S. Data Privacy Framework, ensuring that all Personal Data transferred is adequately protected. You can find more information on how Personal Data is processed by Meta here.

11.3.1. Meta Pixel and Server to Server

We share data about some of your GetYourGuide interactions with Meta to show you more relevant ads or to help find similar audiences. Your shared data also helps us monitor and analyze our marketing success to optimize ad efficiency. GetYourGuide and Meta are Joint Controllers for this technology.

If you have consented, the Meta pixel and server to server connection is used on our website and the app to transmit data to Meta. We track when you perform certain actions on our website and apps, as well as usage data (such as URL, referrer URL, IP address, device and browser characteristics and timestamp) and transmit it to Meta associated with hashed identifiers. If available, your Facebook ID is transmitted. Meta will use this information to understand which ad you clicked, to measure the success of certain ads and to provide us with this information in aggregate form. If you have a Facebook profile and log in there, you can be presented with targeted personalized advertising on Facebook based on the data transmitted. Data from users who do not have a Facebook or Instagram profile is discarded by Meta without being used.

11.4. TikTok Ads

We use services provided by TikTok Technology Ltd. (“TikTok”)

If you have consented, we will use the Services to show you relevant interest-based ads on the TikTok platform. The information you provide to TikTok when interacting with an ad also helps us monitor and analyze the success of our marketing efforts. TikTok may transfer personal information to countries outside the European Economic Area. Therefore, we have entered into the standard contractual clauses approved by the European Commission with TikTok in accordance with Art. 46 para. 2 lit. c GDPR.

You can find more information on how Personal Data is processed by TikTok and the choices you can make about your privacy at TikTok here.

You can find more information on how personal data is processed by Reddit and the choices you can make about your privacy in Reddit's privacy policy here.

11.5. Other Remarketing Services and Affiliate Networks

If you have consented, we may also use the remarketing services described below on our website. In each case, cookies or similar technologies are used to analyze your use of our site. These companies use this information to serve personalized ads on third party websites.

  • Remarketing service provided by Criteo S.A. ("Criteo"). Criteo will serve personalized ads on sites connected to the Criteo network.
  • Remarketing services provided by Microsoft Ireland Operations Limited, located in Ireland ("Microsoft"). Microsoft will use the cookie information to serve personalized ads through the Bing search engine and to display ads to you on third party websites.
  • Remarketing service provided by Snap Group Limited, based in the United Kingdom ("Snapchat"). Snapchat will use the cookie information to show you personalized ads.
  • Affiliate network services provided by AWIN AG, Eichhornstrasse 3 10785 Berlin, Germany.
  • Affiliate Network Services provided by Conversant Europe Ltd. 1st Floor, 2 Television Centre, 101 Wood Lane, London W12 7FR, United Kingdom.
  • Affiliate Network Services provided by Tradedoubler GmbH, Herzog-Wilhelm-Strasse 26, 80331 Munich, Germany.
  • Affiliate Network Services provided by Rakuten Marketing Australia Pty Ltd Suite 1, Level 3, 7 Macquarie Place Sydney NSW 2000 Australia and LinkShare Japan, Kabushiki Kaisha 1-14-1 Tamagawa, Setagaya-ku, Tokyo, Japan.

12. Integrated Third-Party Content

We have also embedded third-party content on our site. This content is loaded from the servers of the respective providers, so that your end device transmits certain technically necessary data to the third-party provider. In particular, it cannot be ruled out that these providers will take note of the IP address assigned to you. To the extent that personal data is processed, this is done on the basis of the privacy policies of the respective third-party providers. The integration by us is based on our legitimate interest in being able to provide our users with the appropriate content and functionalities and to be able to operate our website economically, Art. 6 para. 1 lit. f GDPR. In particular, we have integrated content from Contentstack LLC (“Contentstack”). For more information on data protection at Contentstack please visit their privacy policy here.

13. Social Media

13.1 Facebook

Our Facebook Page can be found here.

Facebook is operated by Meta. If you visit or like our Facebook Page as a registered Facebook user, Meta collects Personal Data from you. Even if you are not registered with Facebook and visit our Facebook Page, Meta may collect pseudonymous usage data from you. In addition, as part of the operation of our Facebook Page, we are jointly responsible with Meta for the processing of so-called Page Insights. With the help of these Page Insights, Meta analyzes the behavior on our Facebook Page and makes this information available to us in a form that is not personally identifiable. For this purpose, we have entered into a joint controller agreement with Meta Ireland, which you can view here. In this agreement, Meta agrees, among other things, to assume primary responsibility under the GDPR for the processing of Page Insights and to comply with all obligations under the GDPR with regard to the processing of Page Insights.

For more information, please see Meta’s privacy policy here. In the privacy policy, you will also find information on the settings options for your Facebook account. Your Personal Data may also be provided to other Meta companies. This may involve the transfer of Personal Data to the USA and other third countries. Meta participates in the EU-U.S. Data Privacy Framework, the UK Extension to the EU-U.S. Data Privacy Framework and the Swiss-U.S. Data Privacy Framework, ensuring that all Personal Data transferred is adequately protected.

13.2. Instagram

Our Instagram Page can be found here.

Instagram is operated by Meta. Instagram's privacy policy and more information about the control options for your account can be found here.

Your Personal Data may also be made available to other Meta companies. This may involve the transfer of Personal Data to the USA and other third countries. Meta participates in the EU-U.S. Data Privacy Framework, the UK Extension to the EU-U.S. Data Privacy Framework and the Swiss-U.S. Data Privacy Framework, ensuring that all Personal Data transferred is adequately protected.

In addition, as part of the operation of our Instagram Page, we are jointly responsible with Meta for the processing of so-called Page Insights. With the help of these Page Insights, Meta analyzes the behavior on our Instagram Page and makes this information available to us in a form that is not personally identifiable. For this purpose, we have entered into a joint controller agreement with Meta, which you can view here. In this agreement, Meta agrees, among other things, to assume primary responsibility under the GDPR for the processing of Page Insights and to comply with all obligations under the GDPR with regard to the processing of Page Insights. The processing that takes place within this context is based on our legitimate interest in optimizing our Instagram activities (Art. 6 para. 1 lit. f GDPR).

13.3. X (previously “Twitter”)

You can find our X account here.

X is operated by X Corp. ("X"). X's privacy policy and more information about the control options for your account can be found here.

Please note that X may transfer Personal Data to third countries outside the European Economic Area, specifically to the USA. X participates in the EU-U.S. Data Privacy Framework, the UK Extension to the EU-U.S. Data Privacy Framework and the Swiss-U.S. Data Privacy Framework, ensuring that all Personal Data transferred is adequately protected.

13.4. Pinterest

You can find our Pinterest Page here.

Pinterest is operated by Pinterest Europe Ltd ("Pinterest"). Pinterest's privacy policy and more information about the control options for your account can be found here.

Please note that Pinterest also processes Personal Data in third countries outside the European Economic Area, specifically in the USA. We receive non-personal information and analytics from Pinterest about the use of our account. This information allows us to analyze and optimize the effectiveness of our Pinterest activities. The processing that takes place within this context is based on our legitimate interest in optimizing our Pinterest activities (Art. 6 para. 1 lit. f GDPR).

13.5. TikTok

You can find our TikTok page here.

Depending on your location TikTok is operated by TikTok Technology Limited and TikTok Information Technologies UK Limited (EU/EEA/UK/Switzerland residents), TikTok Inc. (US residents), TikTok Pte. Ltd. (all other regions) (“TikTok”). TikTok's privacy policy can be found here.

Please note that TikTok may transfer Personal Data to third countries outside the European Economic Area for which there is no European Commission adequacy decision. To the extent that such transfer occurs, TikTok will take appropriate data protection measures, such as entering into the standard contractual clauses approved by the European Commission.

In addition, as part of the operation of our TikTok Page, we are jointly responsible with TikTok for the processing of so-called TikTok Analytics. With the help of these TikTok Analytics, TikTok analyzes the behavior on our TikTok Page and makes this information available to us in a form that is not personally identifiable. For this purpose, we have entered into a joint controller agreement with TikTok, which you can view here. In this agreement, TikTok agrees, among other things, to assume primary responsibility under the GDPR for the processing of Page Insights and to comply with all obligations under the GDPR with regard to the processing of TikTok Analytics. The processing that takes place within this context is based on our legitimate interest in optimizing our Instagram activities (Art. 6 para. 1 lit. f GDPR).

13.6. YouTube

You can find our YouTube channel here.

YouTube is operated by Google Ireland Limited ("Google"). Google’s privacy policy and more information about the control options for your account can be found here. Please note that your Google account may be used for various Google services (e.g. Gmail, YouTube, Google Search) and Google may merge Personal Data relating to the Google services you use in accordance with your Google account settings.

Finally, we receive non-personal information and analytics from Google about the use of our account or interactions with our videos. This information allows us to analyze and optimize the effectiveness of our YouTube activities. The processing that takes place within this context is based on our legitimate interest in optimizing our YouTube activities (Art. 6 para. 1 lit. f GDPR).

13.7. LinkedIn

You can find our LinkedIn account here.

For users located in the European Economic Area and Switzerland, LinkedIn is operated by LinkedIn Ireland Unlimited Company ("LinkedIn"). You can find LinkedIn's data protection guidelines here. In it you will also find information on the settings options for your LinkedIn profile.

Please note that LinkedIn also transfers personal data to third countries outside the European Economic Area. Insofar as such a transfer occurs, LinkedIn will use the standard contractual clauses approved by the EU Commission. Corresponding information can be found here.

Finally, we receive non-personal information and analytics from LinkedIn about the use of our account or interactions with our posts. This information allows us to analyze and optimize the effectiveness of our LinkedIn activities. The processing that takes place within this context is based on our legitimate interest in optimizing our LinkedIn activities (Art. 6 para. 1 lit. f GDPR).

13.8. WhatsApp

You can also contact us with enquiries via WhatsApp. WhatsApp is operated by Meta. The privacy policy for WhatsApp can be found here. In it you will also find information on the settings options for your account.

The processing takes place in order to be able to deal with the enquiries you send to us (Art. 6 para. 1 lit. b GDPR). Further storage of the data transmitted within the context of your enquiry is based on our legitimate interest in the proper documentation of our business operations and the safeguarding of our legal positions (Art. 6 para. 1 lit. f GDPR) and, if applicable, for the fulfillment of legal obligations (Art. 6 para.1 lit. c GDPR).

13.9. Competitions

Occasionally, we also run competitions via our social media channels. To participate, you must, for example, comment on certain content, "like" us or tag us. We process the data you provide within this context in order to run the competition and notify the winner(s) (Art. 6 para. 1 lit. b GDPR).

13.10. Social Media Management

In order to measure the success of our social media activities, we also record when we are tagged on social media networks. Within this context, we also process information about the people who tag us. The processing that takes place within this context is based on our legitimate interest in optimizing our social media activities (Art. 6 para. 1 lit. f GDPR).

13.11. Analysis of our social media activities

We also evaluate the success of our social media postings. We analyze how often individual postings are clicked. For this purpose, we use the business intelligence platforms such as Looker, provided by Google, Ltd. and Google Analytics. The data processing is based on our legitimate interest in analyzing our reach and the success of our social media activities (Art. 6 para. 1 lit. f GDPR).

14. CRM System

To manage our customer relationships, we store your Personal Data in our CRM system. This enables us to answer any enquiries in a targeted manner and to send you contextual advertising within the permissible framework. The processing that takes place within this context is based on our legitimate interest in managing our customer relationships, Art. 6 para. 1 lit. f GDPR. For this purpose, we use the services of the provider Braze ("Braze"). Braze may process Personal Data in countries outside the European Economic Area, specifically in the USA. Braze is certified to the EU-U.S. Data Privacy Framework and the Swiss-U.S. Data Privacy Framework with the U.S. Department of Commerce, ensuring that all Personal Data transferred is adequately protected. In case of your consent (Art. 6 para. 1 lit. a GDPR) via our “Cookies and Marketing Preferences” or via the “Privacy Preferences” section in the App menu, we send newsletters, push notifications or in-app messages depending on your interests and usage of our website. You can find more information on how Personal Data is processed by Braze here.

15. Personalization of Website Content

We also process your data in order to display personalized content on our website. The legal basis for this is our legitimate interest in showing you tours and activities that are relevant to you, Art. 6 para. 1 lit. f GDPR.

16. Further Sharing of Data

Beyond the cases described, your Personal Data will only be passed on without your express prior consent in the following cases:

  • If it is necessary for the clarification of an illegal use of our services or for legal prosecution, Personal Data will be forwarded to the law enforcement authorities and, if necessary, to injured third parties. However, this only happens if there are specific indications of unlawful or abusive behavior. A transfer may also take place if this serves to enforce terms of use or other agreements. We are also legally obliged to provide information to certain public authorities upon request. These are law enforcement agencies, authorities that prosecute administrative offenses subject to fines and the tax authorities. This data is disclosed on the basis of our legitimate interest in combating abuse, prosecuting criminal offenses and securing, asserting and enforcing claims and provided that your rights and interests in the protection of your personal data are not overridden, Art. 6 para. 1 lit. f GDPR or on the basis of a legal obligation pursuant to Art. 6 para. 1 lit. c GDPR.
  • We disclose Personal Data to auditors, accounting service providers, lawyers, banks, tax consultants and similar bodies insofar as this is necessary for the provision of our services (Art. 6 para. 1 lit. b GDPR) or the proper operation of our business (Art. 6 para. 1 lit. f GDPR) or we are obliged to do so (Art. 6 para. 1 lit. c GDPR).
  • If necessary for the cooperation with our partners we may share booking events with our partners when these events are related to promotional content provided on their websites or apps. This sharing is based on our legitimate interests to measure the effectiveness of certain partnerships and campaigns, or to reimburse our partners accordingly (Art. 6 para. 1 lit. f GDPR).
  • We rely on contractually affiliated third-party companies and external service providers ("processors") to provide the services. In such cases, personal data is passed on to these processors to enable them to continue processing. These processors are carefully selected and regularly reviewed by us to ensure that your rights and freedoms are protected. The processors may only use the data for the purposes specified by us and are also contractually obliged by us to treat your data exclusively in accordance with this privacy policy and the German data protection laws. The transfer of data to processors takes place on the basis of Art. 28 para. 1 GDPR. We ensure by contract that processing of your Personal Data in non-EU/EEA countries only takes place if either an adequacy decision (Art. 45 GDPR) guarantees a level of data protection or other appropriate safeguards (Art. 46 GDPR), e.g. standard contractual clauses (SCC), exist for the transfer to these third countries.
  • As part of the further development of our business, it may happen that the structure of GetYourGuide Deutschland GmbH changes by changing the legal form, founding, buying or selling subsidiaries, parts of the company or components. In such transactions, customer information is passed on together with the part of the company to be transferred. Whenever personal information is disclosed to third parties to the extent described above, we will ensure that this is done in accordance with this privacy policy and the relevant data protection laws.Any disclosure of Personal Data is justified by the fact that we have a legitimate interest in adapting our corporate form to the economic and legal circumstances as necessary (Art. 6 para. 1 lit. f GDPR).

17. Automated Individual Decisions or Profiling Measures

We may use automated decision-making to enhance the security of our platform and prevent fraudulent activities. This involves the use of fraud scores provided by our fraud prevention tools to automatically block transactions that are deemed as high risk (see Section 8). If your transaction is blocked, you will not be able to directly complete the booking on our platform. However, you have the right to request human intervention, express your point of view, and contest the decision by contacting our privacy team (see contact details below).

18. Erasure of your data

We delete or anonymise your personal data as soon as it is no longer necessary for the purposes for which we collected or used it in accordance with the above paragraphs. We also continue to retain your data if we are obliged to do so for legal reasons or if the data is needed for a longer period of time for criminal prosecution or to secure, assert or enforce legal claims.

If you delete your user account, your profile will be deleted completely and permanently. However, we will retain backup copies of your data to the extent and for as long as this data is required for legal reasons or to secure, assert or enforce legal claims based on our aforementioned legitimate interests according to Art. 6 para. 1 lit. f GDPR.

If data must be retained for legal reasons, processing will be restricted. The data is then no longer available for further use.

19. Your rights as a data subject / Data Protection Officer

You have the rights described below with regard to the processing of your Personal Data. To exercise your rights, you can make a request here, by post or by email to the address above.

You can reach our dedicated data privacy team by sending an email to: dpo.inbox[at]getyourguide.com and our Data Protection Officer here: https://freshcompliance.de/en/legal-notice/

19.1. Right of access to information (Art. 15 GDPR)

You have the right to receive information from us at any time, upon request, about the Personal Data we process that concerns you, to the extent and subject to the conditions of Art. 15 GDPR.

19.2. Right to correct incorrect data (Art. 16 GDPR)

You have the right to request that we correct Personal Data relating to you without delay if it is inaccurate.

19.3. Right to erasure (Art. 17 GDPR)

You have the right to demand that we delete the Personal Data concerning you under the conditions described in Art. 17 GDPR. These conditions provide in particular for a right to erasure if the Personal Data is no longer necessary for the purposes for which it was collected or otherwise processed, as well as in cases of unlawful processing, the existence of an objection or the existence of an obligation to erasure under Union law or the law of the Member State to which we are subject.

19.4. Right to restriction of processing (Art. 18 GDPR)

You have the right to demand that we restrict processing in accordance with Art. 18 GDPR. This right exists in particular if the accuracy of the Personal Data is disputed between the user and us, for the duration that the verification of the accuracy requires, as well as in the event that the data subject requests restricted processing instead of erasure in the case of an existing right to erasure; furthermore, in the event that the data is no longer required for the purposes pursued by us, but the user requires it for the assertion, exercise or defence of legal claims, as well as if the successful exercise of an objection is still disputed between us and the user.

19.5. Right to data portability (Art. 20 GDPR)

You have the right to receive from us the Personal Data relating to you that you have provided to us in a structured, commonly used, machine-readable format in accordance with Art. 20 GDPR.

19.6. Right to object (Art. 21 GDPR)

You have the right to object at any time, on grounds relating to your particular situation, to the processing of Personal Data concerning you which is carried out, inter alia, on the basis of Art. 6 para. 1 lit. e or f GDPR, in accordance with Art. 21 GDPR. We will then stop processing your Personal Data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

19.7. Right to lodge a complaint (Art. 77 para. 1 GDPR)

You have the right to contact a supervisory authority of your choice in case of complaints.

19.8. Right to withdraw your consent (Art. 7 para. 3 GDPR)

You have the right to withdraw your consent in accordance with Art. 7 para. 3 GDPR (e.g. you can contact us if you wish to cancel a previously given consent to a newsletter).

19.9. Data processing when exercising your rights

Finally, we would like to point out that we process the Personal Data provided by you when exercising your rights pursuant to Art. 15 to 22 GDPR for the purpose of implementing these rights and to be able to provide evidence thereof. This processing is based on the legal basis of Art. 6 para. 1 lit. c GDPR in conjunction with Art. 15 to 22 GDPR

20. United States residents’ rights

20.1. Disclosure

If you are a resident of certain states, including California, Colorado, Connecticut or Virginia, you may have specific rights. The additional disclosures and rights relevant to residents of certain U.S. states that have enacted data protection laws and regulations are set out below.

The California Consumer Privacy Act of 2018 ("CCPA"), the California Privacy Rights Act of 2020 (“CPRA”) and other states privacy laws provide certain U.S. residents with specific rights regarding Personal Data. This section of the Privacy Policy describes those rights and how to exercise them. This section does not apply to publicly available information.

Some information is collected automatically when you access our website (See Section 4 of this privacy policy).

More details on the Personal Data we collect, how we collect it and why we collect it can be found below:

  • When you create an account on our website (see Section 2);
  • When you decide to leave reviews (see Section 2.3);
  • Where you need customer support (see Section 3);
  • By our service providers (see Section 4);
  • When you subscribe to our newsletter (see Section 5);
  • When you book activities on our Platform (see Section 6);
  • For fraud prevention purposes (see Section 8);
  • To protect us against bots (see Section 4.3);
  • By using cookies (see Section 9);
  • For marketing purposes (see Section 11);
  • Some of our trusted partners may collect some of your personal information as described in Section 12;
  • When you interact with us on social media (see Section 13);
  • For customer support purposes (see Section 14);
  • For product development purpose;
  • For personalisation of website content purposes (see Section 15);

If it is necessary for providing a service you are requesting, we will collect, process or you may also supply us with sensitive personal information, such as username and passwords, government IDs (for example driver’s license) and passport number. For example, in a very limited number of cases, some tour providers selling you tickets and activities might require the collection of your passport number or other valid ID during the checkout process, as well as, if applicable, additional special requirements to provide the activity.

Depending on your cookie preferences, we may “share” categories of personal information, as defined by California law, to or with third parties and for the business and commercial purposes described in this Privacy Policy. According to the CPRA, “sharing” means the disclosure of your personal information to a third party or cross-context behavioral advertising, whether or not for monetary or other valuable consideration. See Sections 20.6 - 20.8 below for more information about the context in which we share your personal information and how you request to opt-out.

We do not “sell” personal information as defined under CPRA or under Consumer Data Protection Act (Virginia privacy law) (“CDPA”).

We do not “sell” your personal information as defined under the CCPA.

We do not knowingly “share” the personal information of known minors under 16 years of age.

20.2. Access to Specific Information Rights

You have the right to request that we disclose certain information to you about how we collected and used your personal information. Once we have received a valid request from you, we will disclose to you, to the extent permitted by law:

The categories of personal information we collected about you.

The categories of sources for your personal information we collected about you.

The business or commercial purpose for collecting, selling, or sharing your personal information, if applicable.

The categories of third parties with whom we share your personal information.

If we disclosed your personal information for a business purpose, the personal information categories that each category of recipient obtained.

20.3. Deletion Right

Residents of certain states have the right to request that we delete the personal information that we have collected about them, subject to certain exceptions described in Section 19.3 of this privacy policy and as set forth in applicable law(s).

20.4 Correction Right & Right to Limit

Residents of certain states have the right to request that we correct inaccurate personal information that we maintain about them as explained in Section 19.2 of this Privacy Policy, subject to certain exceptions set forth in applicable law(s). Residents of certain states have the right to request that we limit the use of sensitive personal information (for example, your social security number, financial account information, your precise geolocation data, or your health data etc.) for limited purposes, such as providing you with the services you requested.

20.5. No Discrimination

We will not discriminate against you for exercising any of your privacy rights.

20.6. Do Not Sell or Share My Personal Information

You are free to change your cookie preferences at any time and request to opt out of sharing of your personal information to third parties, subject to certain exceptions set forth in applicable law(s). By “sharing”, we refer to the processing of Personal Data as described above in Section 9 “Cookies and Tracking Technologies” and Section 11 “Marketing and Remarketing Services”. We and other companies place tracking technologies on our websites to allow us to collect and share, with selected partners, information about your behavior on our website in order to display interest-based advertising for our products on other pages or to improve our advertising accuracy and relevance.

If you decide to opt out of this data sharing, you can change the settings in the “Cookies and Marketing Preferences” section of the footer of our website or by changing the settings in the “Privacy Preferences” section of the App menu.

20.7. Opt Out of Targeted Advertising

Certain data collection and processing on our website for purposes of interest-based advertising may be deemed “targeted advertising,” or a “sale” or “sharing” of personal information by some state laws, like under the CDPA. Depending on your cookie preferences and to the extent permitted by law, we may disclose your personal information to our trusted partners for targeted advertising.

You may request at any time that we stop using and sharing your personal information for such targeted advertising by changing the settings in the “Cookies and Marketing Preferences” section of the footer of our website or by changing the settings in the “Privacy Preferences” section of the App menu.

20.8. Do not share or disclose my sensitive personal information

You have the right to limit how your sensitive personal information is disclosed or shared with third parties. To exercise your rights described in this privacy policy, please contact us.

20.9. Exercising Your Rights

You can exercise your rights as outlined in this privacy policy, subject to applicable laws.

Please provide sufficient information and detail your request clearly so we can respond appropriately. We may take reasonable steps to verify your identity before we respond to your request.

Residents of California may submit a request through an authorized agent registered with the California Secretary of State. Similarly, residents of Connecticut and Colorado can appoint an authorized agent to submit requests on their behalf.

You may also make a verifiable consumer request on behalf of your minor child.

Changes to this privacy policy

The current version of this privacy policy is always available at https://www.getyourguide.com/privacy_policy.

Last updated: November 2024