Booking.com policy change — Booking.com Privacy Statement

CA-C-001307

Booking.com — Booking.com Privacy Statement

Entity

Booking.com

Document

Booking.com Privacy Statement

Date detected

April 18, 2026

Effective date

April 18, 2026

Severity

Low

Direction

Neutral

Affected users

all users

Changes

1 sentence modified

Share 𝕏 Share in Share 🔒 PDF

Watch Booking.com Get alerts when this policy changes.

Watch — Free

Event Summary

The detected change appears to be a technical update to Booking.com's server-side security infrastructure rather than a substantive modification to privacy terms. The HTML document containing security challenge code was updated with new nonce values and timestamps, which are routine security measures that prevent token reuse. This type of update does not materially alter what data Booking.com collects, uses, or discloses about users.

LOW

Consumer Impact

This change is a technical update to Booking.com's security infrastructure and does not modify the actual privacy policy terms, rights, or data practices disclosed to users. The updated nonce values and timestamps are standard security measures used to prevent unauthorized access and token replay attacks when users access the privacy policy page. No action is required from consumers in response to this change.

Governance Analysis

While this change does not modify Booking.com's privacy policy substance, understanding that nonce and timestamp values are regularly rotated for security purposes reassures users that Booking.com is maintaining active security measures on its policy delivery infrastructure.

Key Clauses Affected

security nonce update

Nonce values updated from 17761467425430 to 17764988588080 and chal_t timestamp updated from 1760623098515 to 1776498858808 for bot-detection script execution.

Full clause-by-clause analysis available with Compliance.

These clauses may change again. Get alerted when they do. Watch Booking.com — Free

ⓘ

This change record describes what was added, removed, or modified in the document. Analysis reflects what the updated agreement states or permits. It does not constitute a legal determination about enforceability. Applicability may vary by jurisdiction. Methodology

Evidence Verification

✓ Verified

Previous Version

5e76cfb2543549526317c3af1785b355d5f2c3bcb85ff536f49b0a967d0d0461

April 2, 2026 06:05 UTC

✓ Verified

Current Version

fc4948ad7d79233a58c0d7dc1b2101fdab29432cd0e0fd76a835886d1cf86c75

April 18, 2026 07:54 UTC

✓ Verified

Change Detected

April 18, 2026 07:54 UTC

✓

Analysis Methodology

summarize_events-v7

✓ Verified

Source Document

https://www.booking.com/content/privacy.html

Citation Record

Entity: Booking.com
Document: Booking.com Privacy Statement
Record ID: CA-C-001307
Captured: 2026-04-18 07:54:18 UTC
URL: https://conductatlas.com/change/2026-04-18-bookingcom-bookingcom-privacy-statement-1307/
Accessed: June 28, 2026

Permanent archival reference. Stable identifier suitable for legal filings, compliance documentation, and research citation.

For legal and compliance teams

Institutional Analysis

Assessment

This change is a technical refresh of security tokens and timestamps in the HTML delivery layer of Booking.com's privacy statement, not a modification of the policy substance itself. It does not alter data collection, processing, or disclosure practices. No compliance obligation or policy documentation change is created by this update. It is a routine infrastructure maintenance activity.

Full compliance analysis

Obligation analysis, escalation trigger, board language, and recommended action.

Monitor $19/mo Compliance $249/mo

Monitor: regulatory citations + obligations. Compliance: full compliance memo.

ConductAtlas provides verified policy intelligence sourced directly from platform documents. All analysis is intended to support, not replace, legal and compliance review. Record CA-C-001307.