GDPR Compliance
Our commitment to protecting your data rights under the General Data Protection Regulation.
Your Rights Under GDPR
Right to Access
Request a copy of all personal data we hold about you.
Right to Rectification
Request correction of inaccurate or incomplete data.
Right to Erasure
Request deletion of your personal data ("right to be forgotten").
Right to Portability
Receive your data in a structured, machine-readable format.
Right to Restriction
Request that we limit the processing of your data.
Right to Object
Object to processing of your data for specific purposes.
How We Comply
Lawful Basis for Processing
We process personal data based on legitimate legal bases: consent, contractual necessity, legal obligation, or legitimate interest. We clearly document the basis for each processing activity.
Data Minimization
We only collect personal data that is necessary for providing our services. Location data is collected solely for mileage tracking purposes and only when permissions are granted.
Data Protection by Design
Privacy is built into our product from the ground up. We implement encryption, access controls, and regular security assessments.
Breach Notification
In the event of a data breach, we will notify affected users and the relevant supervisory authority within 72 hours as required by GDPR.
Sub-Processors
We carefully vet all third-party processors and maintain Data Processing Agreements (DPAs) with each one to ensure your data is protected.
International Data Transfers
When transferring data outside the European Economic Area, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission to ensure your data receives adequate protection.
Exercise Your Rights
To exercise any of your GDPR rights, please submit a request to our Data Protection team. We will respond within 30 days.