Privacy Notice
Basic information about the processing of Personal Information
| Data Controller | Amadeus IT Group, S.A. (Collectively referred to as “Amadeus” or “we”.). |
| Purpose of the Personal Data processed | Personal data shall be processed for the purpose of managing and responding to demo requests for One Trip product. |
| Legal Grounds for Processing | Processing personal data is based on pre-contractual steps requested by you by completing and sending the form in the landing page to us. |
| Personal Data Amadeus Processes About You | – Identification data. – Organizational information. |
| Recipients of the Personal Data | Your personal data will be shared: (i) with Amadeus’ affiliates (entities within Amadeus’ group companies), (ii) third parties service providers, and (iii) If legally required to public and government authorities. |
| International Transfers of Personal Data | Amadeus may share your personal data with its affiliates, this may involve transferring personal data outside the European Economic Area. |
| Retention Period | Amadeus retains personal data to fulfil the purposes it was collected for, including for the purposes of satisfying any legal, accounting or reporting requirements, in accordance with the applicable retention policy and its attachments. |
| Data Subject’s Rights | You have the right to access, rectification, erasure, to object to and/or to restrict processing of personal information and the right to lodge a complaint with a supervisory authority (Spanish Data Protection Authority). You may exercise your rights via e-mail: dataprotection@amadeus.com or by sending your request to our registered office at Calle Salvador de Madariaga, 1, 28027 Madrid (Spain). |
| Additional information | More detailed information on the processing of your personal data can be found in the full Privacy Notice. |
Last Updated: 06th November 2025
Data Controller
This Privacy Notice (“Notice”) describes how Amadeus IT Group, S.A. (“Amadeus”) uses, as data controller, personal data concerning you as a consequence of the use of the website One Trip – Business travel shouldn’t be this hard.
Purpose of the Personal Data Processed
Your personal data will be used for the following purpose:
- Managing and responding to your demo requests for One Trip product.
Legal Grounds for Processing
We process your personal data because:
- The processing is necessary in order to take pre-contractual steps at your request by completing and sending the form to us.
Personal Data Amadeus Processes about You
For the purposes described in this Notice we process the following personal data concerning you:
- Personal data directly collected from you:
- Identification data: first name, family name(s).
- Organizational information: company, company email address,
Recipients of the Personal Data
We may share personal data with other Amadeus group entities which may be in any location around the world. These Amadeus group entities may process your personal data for the purposes described in this Notice. A link to the complete list of Amadeus group entities and their locations can be found here.
In addition, and as explained above, we may also disclose your personal data to:
- If necessary: (a) under applicable law, including laws outside your country of residence; (b) to comply with legal processes; (c) to respond to requests from public and government authorities, including public and government authorities outside your country of residence; (d) to enforce our terms and conditions; (e) to protect our operations or those of any of other group entities; (f) to protect our rights, privacy, safety, property, and/or that of other group entities, you, or others; and (g) to permit us to pursue available remedies or limit the damages that we may sustain.
Where such disclosures take place Amadeus requires the appropriate technical and organizational security measures to be in place to protect personal data, and for personal data to be processed lawfully.
Amadeus only allows other group entities and third parties service providers to use personal data for specified purposes and in accordance with Amadeus’ instructions.
International Transfers of Personal Data
When Amadeus shares your personal data, this may involve transferring personal data outside the European Economic Area (“EEA”). When personal data is transferred to a third country, it will continue to receive adequate protection through contractual or other arrangements in place. For these transfers, at least one of the following appropriate safeguards will be implemented:
- Personal data will be transferred to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission;
- Standard contractual clauses as approved by the European Commission which, together with supplementary measures, will ensure personal data transferred will retain the same protection it has in EEA; or
- Any other lawful transfer mechanism as foreseen in applicable laws and/or as approved by the European Commission or relevant data protection authority.
Further information on the appropriate safeguards used when transferring personal data outside the EEA can be requested through the contact details set out below in the section Data Subjects’ Rights. When requesting this information please make a reference to the transfer of personal data outside the EEA.
Retention Period
Amadeus keeps your personal data for as long as is necessary to fulfil the purposes for which it was collected. Your personal data will be deleted after 2 years from the date of the recording, unless a longer retention period is required or permitted by applicable laws.
Data Subject’s Rights
You may exercise your rights of access, rectification, erasure, objection, portability and/or restriction of processing in relation to your personal data by sending an email to dataprotection@amadeus.com or by sending your request to our registered office at Calle Salvador de Madariaga, 1, 28027 Madrid (Spain). You may also use those details in case you have doubts around how we process your personal data.
You may also lodge a complaint before competent data protection authorities.