Hero Consumer Privacy Policy

This Consumer Privacy Policy (“Privacy Policy”) explains what types of personal information we may collect about Consumers of products & services sold via the Hero platform and how it may be used.

As a Consumer of products and services sold via the Hero platform, we want you to be familiar with how we collect, use and disclose Personal Information.

Personal Information supplied by You to your booking Agent will be gathered, stored and shared by Hero with third party Suppliers, for the purpose of arranging your travel.

This information, will not be used or released by Hero in any manner, and it will be kept strictly confidential, unless we are required to release the information by law.

What Types of Information Do We Collect From You?

Your booking Agent may be required to collect the following Personal Information from You, which will be recorded within Hero:

  • Identity of consumers (First name, Last Name)
  • Contact details of consumers (Phone Number, Email)
  • Additional Personal Information necessary for the provision of the product / service sold, such as: Age, Nationality, Dietary Requirements, Physical Disabilities, Height & Weight.

Credit Card Information

Credit card payment transactions are processed remotely via secure third-party merchant processors. Your credit card information is never shared with our company or our website. We have no record of your credit card information, and we have no way to access your credit card information. Our credit card merchant processors are PCI-DSS compliant.


Hero has implemented security features in our database to protect your personal information from unauthorised access. We maintain our servers in a controlled, secured environment. Only staff who need to have access to your personal information in order to perform their job function are authorised to access the database.

Constant changes to the Internet and technology mean that we cannot guarantee that data transmission will be 100% secure, or safe from attack by unauthorised intruders. We will endeavour to take all reasonable steps to protect the personal information collected.

Hero employees and the contractors who provide services related to our information systems are obliged to respect the confidentiality of any personal information held by us. However, we will not be held responsible for events arising from unauthorised access to your personal information.

All transactions are secured by 128 bit SSL encryption. SSL technology encodes information as it is being sent over the Internet, helping to ensure that the information transmitted remains confidential. Our servers are deployed to Microsoft Azure Web Services which is a PCI DSS Level 1 compliant provider.

Retention of Collected Information

Except as otherwise permitted or required by applicable law or regulatory requirements, we may retain your personal information only for as long as we believe it is necessary to fulfil the purposes for which the personal information was collected (including, for the purpose of meeting any legal, accounting or other reporting requirements or obligations).

Please send requests to access, delete, or correct your personal information to [email protected]

Any request by you to us to delete your personal information will not result in deletion of any information submitted by you to a third-party provider (e.g., the your booking Agent or supplier of the product / service purchased). If you require the third-party to delete any of your personal information, you must contact the third party directly to request such deletion.


If you have a complaint about any aspect of our Privacy procedures, please contact our Privacy Officer on [email protected] We will deal promptly with your complaint. If we cannot resolve the complaint to your satisfaction within a reasonable time, you or we may refer the complaint to the Privacy Commissioner.

Got a Question?

Contact Us