Last updated: 17 July 2026

This Privacy Policy explains how Get Lost Forever Ltd collects, uses,
stores and shares personal information when you visit
getlostforever.com,
create an account, submit an enquiry, subscribe to our communications,
make a payment or otherwise interact with us.

1. About us

Get Lost Forever Ltd operates the Get Lost Forever website and related
services. For the purposes of applicable data protection law,
Get Lost Forever Ltd is the controller responsible for the personal
information described in this Privacy Policy.

Get Lost Forever Ltd
Registered in England and Wales
Company number: 16582968
Registered office: 167–169 Great Portland Street, 5th Floor,
London, England, W1W 5PF
Email:
hello@getlostforever.com
Website:
https://getlostforever.com/

We have not appointed a formal Data Protection Officer. Questions,
requests and complaints concerning personal information should be sent
to the email address above.

2. Scope of this policy

This Privacy Policy applies when you:

  • Visit or use our website;
  • Create or manage a website account;
  • Submit a travel enquiry;
  • Ask us to introduce you to a travel or trekking provider;
  • Subscribe to our newsletter or marketing communications;
  • Contact us by email, form or another communication method;
  • Make a payment through our website;
  • Click an affiliate or partner link;
  • Interact with embedded videos, maps or similar content; or
  • Otherwise communicate or do business with us.

This policy does not govern websites, booking platforms or services
operated independently by travel providers, affiliate partners or other
third parties. Those organisations are responsible for their own privacy
practices.

3. Personal information we collect

3.1 Identity and contact information

This may include:

  • Your name;
  • Email address;
  • Telephone number, where provided;
  • Postal or billing address;
  • Account username; and
  • Other contact details you choose to provide.

3.2 Account information

When you create or use an account, we may collect:

  • Login and account identifiers;
  • Password information in encrypted or hashed form;
  • Account preferences;
  • Saved content or enquiries;
  • Account activity;
  • Account status; and
  • Records relating to account support or password resets.

3.3 Travel-enquiry information

When you use our Plan Your Trip form or another enquiry form, we may
collect:

  • Your intended destination;
  • Your preferred or estimated travel dates;
  • The type of trip or activities that interest you;
  • Your stage of travel planning;
  • Your expected trip duration;
  • The number of travellers;
  • Your interests and travel preferences;
  • Your approximate budget, where requested;
  • Information needed to identify a potentially suitable travel provider;
    and
  • Any additional information you voluntarily provide.

Where you provide information about another traveller, you should ensure
that you have their permission to give that information to us and, where
relevant, to the travel provider handling the enquiry.

We do not normally ask for passport details, detailed medical records or
other sensitive information through our general website forms. Please do
not provide this information unless we specifically request it and explain
why it is needed.

3.4 Payment and transaction information

Where a payment is offered for a Get Lost Forever service, we may collect:

  • Your name and contact details;
  • The service or item purchased;
  • Payment status;
  • Transaction amount and currency;
  • Invoice or receipt information;
  • Limited payment identifiers supplied by our payment provider; and
  • Records required for accounting, taxation, fraud prevention and dispute
    resolution.

Payments are processed through Stripe. We do not normally receive or store
your complete payment-card number or card security code.

Unless we expressly state otherwise, payments for trips, tours,
accommodation or activities supplied by an independent travel provider
are made directly to that provider or its appointed booking platform.

3.5 Marketing information

This may include:

  • Whether you have subscribed to our newsletter;
  • The date, source and wording of your marketing consent;
  • Your communication preferences;
  • Email delivery, opening and link-interaction information where permitted;
  • Unsubscribe requests; and
  • Records showing that you should not receive further marketing
    communications.

3.6 Technical and website-usage information

When you use our website, we and our authorised service providers may
collect:

  • Your IP address;
  • Browser type and version;
  • Device type and operating system;
  • Language settings;
  • Approximate location derived from your IP address;
  • The referring website, advertisement or campaign;
  • Pages viewed;
  • Links and buttons selected;
  • Session duration and navigation activity;
  • Cookie and similar technology identifiers;
  • Account and login activity;
  • Website errors, security events and diagnostic information; and
  • Advertising or conversion activity where you have given the required
    permission.

Further information is provided in our
Cookie Policy.

3.7 Communications

We collect the information contained in emails, enquiry forms, support
requests, complaints and other correspondence you send to us.

3.8 Affiliate and referral information

When you follow an affiliate or partner link, we or the relevant partner
may record:

  • The page or link selected;
  • The affiliate, referral or campaign identifier;
  • The date and time of the referral;
  • Whether the referral resulted in a qualifying action or purchase; and
  • Commission or reporting information supplied by the relevant partner.

The destination website may collect additional information under its own
privacy policy and cookie settings.

4. How we obtain personal information

We may obtain personal information:

  • Directly from you when you complete a form, create an account, make a
    payment, subscribe or contact us;
  • Automatically through cookies, pixels, scripts, server logs and similar
    technologies;
  • From travel providers where they update us about an enquiry or referral;
  • From payment, analytics, advertising and affiliate-service providers;
  • From social-media or external-content services when you interact with
    their features; and
  • From publicly available sources where this is appropriate and lawful.

5. How and why we use personal information

We only use personal information where we have an appropriate lawful basis
under applicable data protection law.

PurposeInformation normally usedLawful basis
Operating the website and providing core functionalityAccount, contact and technical informationPerformance of a contract or steps requested by you; legitimate
interests
Creating and managing user accountsIdentity, contact, login and account informationPerformance of a contract; legitimate interests
Responding to travel enquiriesIdentity, contact and travel-enquiry informationSteps requested by you before a potential contract; legitimate
interests
Matching enquiries with travel providersIdentity, contact and relevant travel informationYour request; legitimate interests; consent where required
Sharing enquiries with selected providersContact and travel-enquiry information reasonably necessary for
the referral
Steps requested by you; legitimate interests; consent where
required
Processing paymentsIdentity, transaction and payment informationPerformance of a contract; legal obligations
Sending newsletters and promotional emailsContact details, consent and communication preferencesConsent or another applicable direct-marketing permission
Measuring website useTechnical and website-usage informationConsent where cookies or similar technologies require consent
Advertising, remarketing and conversion measurementTechnical, advertising and website-usage informationConsent
Loading optional videos, maps and external contentTechnical and website-usage informationConsent where required
Operating affiliate links and measuring referralsReferral and technical informationLegitimate interests; consent where non-essential tracking
technologies are used
Protecting the website and preventing fraud or misuseAccount, transaction, technical and security informationLegitimate interests; legal obligations where applicable
Maintaining tax, accounting and business recordsIdentity, payment, transaction and correspondence informationLegal obligations; legitimate interests
Handling complaints, legal claims and privacy requestsRelevant account, correspondence, enquiry and transaction
information
Legal obligations; legitimate interests
Improving our content and servicesEnquiry, account, technical, aggregated and usage informationLegitimate interests, or consent where optional tracking is
involved

Our legitimate interests may include:

  • Operating and protecting our business;
  • Responding to enquiries requested by travellers;
  • Facilitating introductions to relevant travel providers;
  • Improving our content, website and services;
  • Understanding general business performance;
  • Preventing fraud, misuse and security incidents; and
  • Establishing, exercising or defending legal claims.

Where we rely on legitimate interests, we consider whether the processing
is necessary and whether your rights and interests override ours.

6. Travel enquiries and independent travel providers

Get Lost Forever is a travel-content, enquiry and referral platform. We do
not operate every trip, tour, trek, activity or other travel service
presented or discussed on our website.

When you ask us to help with a trip or connect you with a provider, we may
share relevant parts of your enquiry with selected:

  • Trekking companies;
  • Tour operators;
  • Local travel specialists;
  • Guides;
  • Accommodation providers;
  • Activity providers; and
  • Other businesses relevant to your requested trip.

Information shared may include your name, contact details, destination,
travel dates, group size, approximate budget and stated travel preferences.

We will only share information that we reasonably believe is relevant to
the requested enquiry. Where appropriate, we may initially share an
anonymous or limited trip brief.

A travel provider receiving your information may act as an independent
data controller. This means that it will be separately responsible for
explaining how it uses your information and for handling any subsequent
booking, payment, contract or travel service.

Submitting an enquiry does not automatically create a booking or travel
contract with Get Lost Forever or with any provider.

7. Newsletters and direct marketing

We may send promotional emails where you have provided valid consent or
where another applicable direct-marketing rule allows us to do so.

Marketing communications may include:

  • Destination guides;
  • Travel inspiration;
  • New articles and website content;
  • Partner or affiliate offers;
  • Get Lost Forever services; and
  • Relevant travel promotions.

You can stop receiving marketing at any time by:

  • Using the unsubscribe link in a marketing email;
  • Updating any available communication preferences; or
  • Emailing

    hello@getlostforever.com
    .

Withdrawing from marketing does not prevent us from sending necessary
service messages about your account, payment, enquiry or privacy request.

We may retain a limited suppression record after you unsubscribe so that
we can honour your request and avoid adding you back to a marketing list.

8. Cookies and similar technologies

We use cookies and similar technologies to operate our website and, with
your permission, measure website use, support marketing and load optional
external content.

These technologies may include:

  • Cookies;
  • Tracking pixels;
  • Scripts and tags;
  • Browser and session identifiers;
  • Local storage; and
  • Other technologies that store or access information on a device.

We use Axeptio to manage cookie and tracking choices. You can use our
cookie banner or the Cookie settings link on our website
to accept, reject or change your optional choices.

Depending on the services enabled and your choices, we may use:

  • Google Analytics 4 for website analytics;
  • Meta Pixel for advertising and conversion measurement;
  • VBOUT for website engagement, forms, email marketing and automation;
  • YouTube for embedded videos;
  • Google Maps for embedded maps; and
  • Other services identified in our Cookie Policy and cookie-preference
    interface.

Non-essential tracking technologies are intended to remain disabled unless
you give the relevant permission. Technologies required for website
security, consent records, login, payments and features specifically
requested by you may operate without optional consent where legally
permitted.

You may withdraw your cookie consent through Cookie settings at any time.
Withdrawing consent does not affect the lawfulness of processing carried
out before the withdrawal.

Please read our
Cookie Policy
for more information.

9. Organisations with which we share personal information

We may share personal information with the following categories of
recipient where reasonably necessary.

9.1 Travel providers

Selected trekking companies, tour operators, guides and other travel
providers may receive information needed to respond to an enquiry or
provide a service you have requested.

9.2 Website infrastructure and security providers

Providers supporting our hosting, content delivery, server management,
backups, security and technical operations may include:

  • Vultr;
  • ServerAvatar;
  • Cloudflare; and
  • Relevant WordPress, database, backup, security and technical-service
    providers.

9.3 Consent, analytics and marketing providers

These may include:

  • Axeptio;
  • Google, including Google Analytics and Google Search Console;
  • Meta;
  • VBOUT; and
  • Other analytics, advertising or communications providers disclosed in
    our Cookie Policy.

9.4 Payment providers

Stripe processes payment information and provides payment-processing,
fraud-prevention and transaction services.

9.5 External-content providers

YouTube, Google Maps and other embedded-content services may receive
technical information when their content is permitted to load.

9.6 Affiliate and commercial partners

Affiliate networks, booking platforms and merchants may receive referral
information when you follow a tracked partner link.

9.7 Professional advisers

We may share relevant information with accountants, insurers, auditors,
legal advisers and other professional advisers where reasonably necessary.

9.8 Authorities and legal recipients

We may disclose information where necessary to:

  • Comply with law, regulation, a court order or a lawful request;
  • Report or investigate fraud, security incidents or criminal conduct;
  • Enforce our agreements;
  • Protect individuals, our website or our business; or
  • Establish, exercise or defend legal rights.

9.9 Corporate transactions

Personal information may be disclosed as part of a proposed or completed
merger, sale, financing, restructuring or transfer of some or all of our
business. Any recipient would be required to handle the information
appropriately.

We do not sell personal information in exchange for direct payment.

10. International transfers

Some service providers and travel partners are located outside the United
Kingdom or allow information to be accessed from other countries.

This may include providers or systems located in the United States, Nepal
and other countries relevant to your travel enquiry.

Where applicable data protection law treats a transfer as restricted, we
use an appropriate transfer mechanism where required. Depending on the
destination and recipient, this may include:

  • UK adequacy regulations;
  • The UK International Data Transfer Agreement;
  • The UK Addendum to approved contractual clauses;
  • Another legally recognised safeguard; or
  • A legally permitted exception where the transfer is necessary and
    proportionate.

You may contact us for more information about the safeguards relating to a
particular transfer.

11. How long we retain personal information

We retain personal information only for as long as reasonably necessary
for the purposes described in this policy, including legal, accounting,
security and dispute-resolution requirements.

Our normal retention periods are:

InformationNormal retention period
Active account informationWhile the account remains active
Closed or inactive accountsNormally up to 24 months after account closure or prolonged
inactivity
General travel enquiries and provider referralsNormally 24 months after the last meaningful contact
Newsletter subscription recordsUntil you unsubscribe or the subscription becomes invalid
Marketing suppression recordsAs long as reasonably necessary to honour the marketing opt-out
Payment, invoice and accounting recordsNormally six years after the end of the relevant financial period
Customer-service correspondenceNormally up to three years after the matter is closed
Privacy complaints and rights-request recordsNormally up to six years after closure where needed to demonstrate
compliance or address a claim
Website security and access logsNormally up to 90 days, unless a security incident requires longer
retention
User-level analytics informationNormally up to 14 months, subject to the relevant provider
configuration
Cookie and consent recordsFor as long as reasonably necessary to record and demonstrate your
choices

We may retain information for longer where:

  • The law requires it;
  • A complaint, investigation or dispute is ongoing;
  • It is needed to establish, exercise or defend a legal claim;
  • Fraud or security concerns exist; or
  • You ask us to retain it for a valid reason.

Information that has been irreversibly anonymised may be retained for
statistical, research or business purposes because it no longer identifies
an individual.

12. Security

We use technical and organisational measures designed to protect personal
information against accidental loss, misuse, unauthorised access,
alteration and disclosure.

These measures may include:

  • Encrypted website connections;
  • Access controls;
  • Account authentication;
  • Restricted administrator permissions;
  • Network and server-security tools;
  • Security monitoring;
  • Backups;
  • Software updates; and
  • Contractual and technical controls over providers processing information
    for us.

No website, transmission method or storage system can be guaranteed to be
completely secure. You are responsible for keeping your account password
confidential and should contact us if you believe your account or
information has been compromised.

13. Your data-protection rights

Depending on the circumstances and the applicable law, you may have the
right to:

  • Request access to your personal information;
  • Ask us to correct inaccurate or incomplete information;
  • Ask us to erase personal information;
  • Request restriction of processing;
  • Object to processing based on legitimate interests;
  • Object to direct marketing at any time;
  • Receive certain information in a structured, commonly used and
    machine-readable format;
  • Withdraw consent at any time;
  • Complain about how your information has been handled; and
  • Request information about safeguards used for an international transfer.

These rights are not absolute. Legal exceptions may allow or require us to
retain or continue using certain information.

To exercise a right, email

hello@getlostforever.com

and provide enough information for us to identify you and understand your
request.

We may ask for reasonable evidence of identity before disclosing or
changing personal information. We will normally respond without undue delay
and within one month, subject to any extension permitted by law.

You will not normally be charged for exercising your rights. We may charge
a reasonable fee or refuse a request where the law permits us to do so,
including where a request is manifestly unfounded or excessive.

14. Data-protection complaints

You have the right to complain if you believe that we have not handled your
personal information properly.

Please email

hello@getlostforever.com

using the subject line Data Protection Complaint.

Please include:

  • A clear explanation of what happened;
  • The information or processing concerned;
  • The outcome you are seeking;
  • Any relevant dates; and
  • Any evidence or supporting information that may help us investigate.

We will acknowledge receipt of a data-protection complaint within 30 days,
take appropriate steps to investigate it, keep you informed where
appropriate and communicate the outcome without undue delay.

You also have the right to complain to the Information Commissioner’s
Office, the UK supervisory authority for data protection.

Information Commissioner’s Office
Telephone: 0303 123 1113
Website:

Make a data-protection complaint to the ICO

You do not have to contact us before approaching the ICO, although giving
us an opportunity to investigate may allow the issue to be resolved more
quickly.

15. Children’s information

Our services are intended primarily for adults arranging travel, making
enquiries or managing payments.

We do not knowingly collect personal information directly from children
under 13. Anyone under 18 should use our services with the involvement of a
parent or legal guardian.

If you believe that a child has provided personal information without
appropriate permission, please contact us so that we can investigate and,
where appropriate, delete the information.

16. Automated decision-making

We do not currently use personal information to make decisions based
solely on automated processing that produce legal or similarly significant
effects.

We may use rules, segmentation, analytics, lead scoring or marketing
automation to organise communications or understand engagement. These
activities do not independently determine your legal rights or access to an
essential service.

17. Third-party and affiliate links

Our website contains links to travel providers, booking platforms,
affiliate merchants, social-media services and other third-party websites.

When you leave our website, the third party may collect and use information
under its own privacy policy and cookie settings. We do not control those
independent websites and are not responsible for their privacy practices.

An affiliate link may allow the relevant partner to identify that you
reached its website through Get Lost Forever. We may receive a commission
if you subsequently complete a qualifying purchase or action, at no
additional cost to you unless clearly stated otherwise.

18. Changes to this policy

We may update this Privacy Policy to reflect changes to:

  • Our services;
  • The providers and technologies we use;
  • Our business operations;
  • Legal or regulatory requirements; or
  • The ways in which we process personal information.

The latest version will be published on this page with a revised
“Last updated” date.

Where a change materially affects how we use personal information, we will
take reasonable steps to bring it to the attention of affected users.

19. Contact us

For privacy questions, rights requests or data-protection complaints,
contact:

Get Lost Forever Ltd
167–169 Great Portland Street
5th Floor
London
England
W1W 5PF

Email:

hello@getlostforever.com

Company number: 16582968