NH FlyPrivacy Policy

Last updated: April 2026

Privacy Policy

This Privacy Policy explains how New Horizons Gulf (“NH Fly”, “we”, “us”, or “our”) collects, uses, and protects personal data when you use the NH Fly B2B booking portal. We are committed to handling personal data responsibly and in accordance with applicable data protection law, including the General Data Protection Regulation (GDPR).

1. Data We Collect

We collect the following categories of personal data:

Agent account data

Your name and Google account email address, collected when you sign in via Google OAuth.

Passenger booking data

Full name, date of birth, gender, email address, phone number, passport number, passport expiry date, and nationality — provided by you when making a booking on behalf of a client.

Transaction data

Records of bookings made, amounts charged, and wallet balance movements associated with your agent account.

Usage data

Standard server-side logs (IP address, request timestamps) retained briefly for security and debugging purposes.

2. How We Use Your Data

Personal data is used exclusively for the following purposes:

  • Authenticating agents and controlling access to the portal.
  • Submitting flight booking requests to our airline technology partners and reservation systems.
  • Sending booking confirmation emails to passengers.
  • Maintaining financial records of bookings and wallet transactions.
  • Investigating security incidents or misuse of the portal.

We do not use personal data for marketing, profiling, or any purpose unrelated to the operation of the NH Fly portal.

3. Third-Party Sharing

We share personal data only with the following third parties, and only to the extent necessary to operate the service:

Airline technology partners and reservation systems

Passenger details (name, date of birth, passport information, contact details) are transmitted to our airline technology partners and reservation systems to create flight orders on behalf of your clients.

Cloud infrastructure providers

Agent account data, booking records, and transaction history are stored securely within our cloud infrastructure providers. Data is retained only as long as necessary for operational and legal purposes.

Google LLC

Authentication only. We use Google OAuth to verify your identity. We do not receive or store your Google password.

We do not sell personal data to any third party and do not share it with advertisers.

4. Data Retention

We retain booking and passenger data for as long as necessary to fulfil the purposes described above and to comply with any applicable legal or financial record-keeping obligations. Agent account data is retained for as long as your account is active. You may request deletion of your account and associated data by contacting us (see Section 6).

Passenger data submitted for a booking is retained as part of the booking record. Where a booking is cancelled and no regulatory obligation requires further retention, we will delete or anonymise the data upon request.

5. Your Rights

If you are located in the European Economic Area or United Kingdom, you have the following rights under the GDPR:

  • The right to access the personal data we hold about you.
  • The right to rectification of inaccurate or incomplete data.
  • The right to erasure (“right to be forgotten”), subject to legal retention requirements.
  • The right to restrict or object to processing in certain circumstances.
  • The right to data portability.

To exercise any of these rights, please contact us at the address in Section 6. We will respond within 30 days.

6. Contact

For any privacy-related enquiries, data access requests, or to exercise your rights, please contact us at: newhfly@gmail.com.

NH Fly is operated by New Horizons Gulf.