Booking.com policy change — Booking.com Privacy Statement

CA-C-001230

Booking.com — Booking.com Privacy Statement

Entity

Booking.com

Document

Booking.com Privacy Statement

Date detected

April 5, 2026

Effective date

April 5, 2026

Severity

Low

Direction

Neutral

Affected users

all users

Changes

1 sentence modified

Share 𝕏 Share in Share 🔒 PDF

Watch Booking.com Get alerts when this policy changes.

Watch — Free

Event Summary

The document provided appears to be a technical challenge/WAF (Web Application Firewall) verification page with security scripts, not Booking.com's actual privacy statement. The changes detected between versions are limited to updates in security nonce values and a timestamp parameter in the challenge token, which are routine technical updates to anti-bot verification mechanisms. These changes do not affect privacy rights, data handling practices, or user protections outlined in a privacy policy.

LOW

Consumer Impact

This change affects only the technical security infrastructure used to verify that users are not bots when accessing Booking.com. No changes to privacy practices, data collection, data sharing, or user rights were detected. Users will not experience any changes to how their personal information is handled or what data Booking.com collects.

Governance Analysis

This change is infrastructure-level technical maintenance. It does not modify any privacy commitments, data handling practices, or user rights. Users should not perceive any functional change beyond routine security verification behavior.

Key Clauses Affected

Security nonce values

Updated cryptographic nonce tokens in script security attributes for WAF challenge verification.

Challenge token timestamp

Updated timestamp parameter in anti-bot challenge authentication from 1760623098515 to 1775369258596.

Full clause-by-clause analysis available with Compliance.

These clauses may change again. Get alerted when they do. Watch Booking.com — Free

ⓘ

This change record describes what was added, removed, or modified in the document. Analysis reflects what the updated agreement states or permits. It does not constitute a legal determination about enforceability. Applicability may vary by jurisdiction. Methodology

Evidence Verification

✓ Verified

Previous Version

cd0d46d8031319e54171446936c0c5b0404fc77e6bd75695c50af35541d5c784

April 3, 2026 05:39 UTC

✓ Verified

Current Version

5278b0da1357d8c378471ed9e0ec6f406b26af30917877cd9a2e7911e93ba115

April 5, 2026 06:07 UTC

✓ Verified

Change Detected

April 5, 2026 06:07 UTC

✓

Analysis Methodology

summarize_events-v7

✓ Verified

Source Document

https://www.booking.com/content/privacy.html

Citation Record

Entity: Booking.com
Document: Booking.com Privacy Statement
Record ID: CA-C-001230
Captured: 2026-04-05 06:07:38 UTC
URL: https://conductatlas.com/change/2026-04-05-bookingcom-bookingcom-privacy-statement-1230/
Accessed: June 28, 2026

Permanent archival reference. Stable identifier suitable for legal filings, compliance documentation, and research citation.

For legal and compliance teams

Institutional Analysis

Assessment

The detected change involves updates to security nonce values and challenge token timestamps in a WAF verification page. These are routine infrastructure updates with no bearing on privacy policy compliance obligations, data handling practices, or regulatory requirements. No DPA, privacy notice, or vendor contract modifications are required as a result of this technical update.

Full compliance analysis

Obligation analysis, escalation trigger, board language, and recommended action.

Monitor $19/mo Compliance $249/mo

Monitor: regulatory citations + obligations. Compliance: full compliance memo.

ConductAtlas provides verified policy intelligence sourced directly from platform documents. All analysis is intended to support, not replace, legal and compliance review. Record CA-C-001230.