Legal
Privacy Policy
How we handle your personal data under the EU General Data Protection Regulation (GDPR).
Last updated July 2026.
1. Who we are
destinationready.ai is a service operated by Global DMO Services, a limited liability company registered in Finland (Business ID / Y-tunnus: 3139669-3). Global DMO Services operates destinationready.ai as a trading name.
Data controller: Global DMO Services
Contact: info@globaldmoservices.com
2. What personal data we collect
When you register for the pilot community or complete the AIRETT — AI Readiness and Ethical Targeting Toolkit to assess organisations' AI readiness — assessment, we collect:
- Full name
- Organisation name and type
- Country
- Work email address
- Optional: a statement of why you are requesting access
- Optional: an indication of willingness to participate in doctoral research (see Section 7)
When you use the members area, we may collect:
- Login session data
- AIRETT assessment responses and scores
- Star ratings and optional comments submitted in the Destination AI Toolkit
- Discussion forum posts and replies submitted in the Member Exchange
- Use case submissions
3. Where your data is stored
All personal data and community content submitted through destinationready.ai is stored in a MySQL database hosted on servers operated by Hostingpalvelu Oy in Finland. Data does not leave the European Economic Area as part of normal site operation.
We do not use Notion, third-party cloud databases, or any external database service for storing member personal data or community content.
4. How we use your data
We use your data for the following purposes:
- To review and process your pilot community access request
- To provide you with access to the destinationready.ai member community
- To send you notifications about new blog posts when you have enabled this preference
- To send transactional emails including welcome messages, password reset links, and access confirmations
- To calculate and display community ratings in the Destination AI Toolkit
- To improve the community resources and content
5. Legal basis for processing
We process your personal data on the following legal bases under GDPR Article 6:
- Performance of a contract: processing necessary to provide you with community access
- Legitimate interests: maintaining the security and integrity of the community
- Consent: where you have explicitly opted in, such as blog notification emails and optional research participation
6. Email communications
We use Resend (resend.com) to send transactional emails including welcome messages, password reset links, and blog notifications. Resend processes email data on our behalf as a data processor. Resend is incorporated in the United States. Data transfers to Resend are governed by Standard Contractual Clauses approved by the European Commission.
We do not send marketing emails unless you have explicitly requested them. You can update your notification preferences at any time from your member dashboard under Notification Preferences.
7. Doctoral research
destinationready.ai is also part of a doctoral research project at the University of Gloucestershire, United Kingdom, supervised by Professor Bob Ryan. The research examines how destination marketing and management organisations adopt and govern artificial intelligence.
Participation in the community may contribute to this research. Any data used in academic outputs will be fully anonymised before analysis. No organisation or individual will be identifiable in any published research output.
Participation in the pilot community does not constitute consent to research use of your data. A separate voluntary consent process is conducted in accordance with University of Gloucestershire research ethics requirements. The optional research consent checkbox in the registration form indicates only a willingness to be contacted about this separate voluntary process.
Research conducted under this project is subject to ethics oversight by the University of Gloucestershire. No member data is used for research purposes until ethics approval is in place.
Where you have consented to research participation, your AIRETT assessment responses are recorded in anonymised form. The record contains only your organisation type, country, dimension scores, and individual statement responses. Your name, organisation name, and email address are not recorded in the research dataset. Records are stored in a separate MySQL database table on the hostingpalvelu.fi server and are accessible only to the principal researcher. Research data collection is inactive until formal ethics approval has been received from the University of Gloucestershire.
8. Data retention
We retain your personal data for as long as your pilot membership is active. If you request deletion of your account, we will delete your personal data from our database within 30 days, except where retention is required by law or legitimate interest (for example, transactional records required for accounting).
Community content you have submitted (forum posts, use cases, ratings) may be retained in anonymised form after account deletion to preserve the integrity of community discussions.
9. Your rights
Under GDPR, you have the following rights regarding your personal data:
- Right of access: you may request a copy of the personal data we hold about you
- Right to rectification: you may ask us to correct inaccurate data
- Right to erasure: you may ask us to delete your personal data
- Right to restrict processing: you may ask us to limit how we use your data
- Right to data portability: you may ask for your data in a portable format
- Right to object: you may object to processing based on legitimate interests
To exercise any of these rights, contact info@globaldmoservices.com. We will respond within 30 days.
If you are unhappy with how we have handled your data, you have the right to lodge a complaint with the Finnish Data Protection Ombudsman (tietosuoja.fi).
10. Cookies
This site uses only technically necessary cookies required for login session management. We do not use advertising cookies, tracking pixels, or third-party analytics cookies.
The Crisp chat widget (help.destinationready.ai) may set its own cookies when you interact with the chat. Crisp’s privacy policy is available at crisp.chat/privacy.
11. Changes to this policy
We may update this policy when the service changes significantly. The date at the top of this page shows when it was last updated. Continued use of the service after an update constitutes acceptance of the revised policy.
12. Contact
For any privacy-related question or to exercise your data rights:
Global DMO Services
info@globaldmoservices.com
Business ID (Y-tunnus): 3139669-3
Finland
Last updated: July 2026