Last updated on February 19th, 2019.
The privacy of your data is a big deal to us. While the Service processes your information, we’ll only ever access your account to help you with a problem or fix a software bug. We’ll never do any action on your account unless you ask us to. We log access to the Service by IP address, browser, and operating system so we can verify unauthorized access to the system (as long as the logs are available).
When you sign up for the Service, we ask for your email address so we can send invoices, updates, and other essential information. When you create a new user, we ask for their email address so we can verify their access to your account. When you create a new company, we ask for their email address, what is optional so that we can send them system messages such as a booking confirmation on your behalf. We’ll never sell personal data to third parties, and we won’t use your name or company in marketing statements unless you’ve publicly shared the information or expressly provided us such permission.
When you write to us with a support question, we may access your account to assist with our response, and we’ll keep that correspondence and the email address for future reference. When you browse our marketing pages and use the Service, we’ll track that for statistical purposes (measuring conversion rates, testing new designs, determining most used features, etc.). We also store any information you volunteer, like surveys, for as long as it makes sense.
You as a user of the Service can store any legal information in the system. The Service does not share that data or generally know what type of data you or other users are storing and processing. The account owner, account admins, account users and invited people such drivers uses the data as they intend to use it.
We’ll share your info only:
You have the right to access the personal information we store about you. You can review the personal information you provide to us and make any desired changes to the data, or the settings for your account, at any time by signing into your account and editing the information. You can also contact us at email@example.com. Please include your name, address, and email address when you reach us.
Even after you have consented to our collection and use of your personal information, you may opt-out of having your sensitive data collected or used by us by contacting us via one of the methods described above. Doing so, however, may prevent you from using the Service and may result in closing your account.
You probably heard about the General Data Protection Regulation (“GDPR”) in Europe. The GDPR gives people under its protection certain rights concerning their personal information collected by us. The Service complies with GDPR and respects those rights, except as limited by applicable law. The GDPR rights include:
right of access - this includes your right to access the personal information we gather about you, and your right to obtain information about the sharing, storage, security and processing of that information;
right to correction - this is your right to request correction of your personal information;
right to be forgotten - this is your right to demand, subject to certain limitations under applicable law, to erase your personal information from our possession; however, if applicable law requires us to comply with your request to delete your data, fulfillment of your claim may prevent you from using the Service and may result in closing your account;
right to complain - you have the right to make a complaint regarding our handling of your personal information with the appropriate supervisory authority;
right to restrict processing - this is your right to request restriction of how and why your personal information is used or processed;
right to object - this is your right, in certain situations, to object to how or why we use your personal information;
right to portability - this is your right to receive the personal information we have about you and the right to transmit it to another party;
right to not be subject to automated decision-making - this is your right to object and prevent any decision that could have a legal, or similarly significant, effect on you from being made solely based on automated processes; this right is limited, however, if the decision is necessary for performance of any contract between you and us, is allowed by applicable European law, or your grant an explicit consent to.
Many of these rights can be exercised by signing in and directly updating your account information. If you have questions about applying these rights or need assistance, please contact us at firstname.lastname@example.org.
The Service will comply with EU and Norwegian privacy regulations.
As part of the Service we provide, and only to the extent necessary, we may use specific third-party processors to process some or all of your personal information. For identification of these processors and their locations, please see our Subprocessors listing. We have signed appropriate data processing contracts that comply with GDPR with each processor.
While we may be required to disclose your personal information in response to a lawful request by public authorities, including to meet national security or law enforcement requirements, we won’t otherwise hand your data over to law enforcement unless a court order says we have to. And unless we’re legally prevented from it, we’ll always inform you when such requests are made.
The Service may also contain embedded “share” buttons to enable users to share content through social networks, such as Twitter. These sites may set a cookie when you are signed in to their service. We do not control the setting of cookies from these websites. Please check the third-party websites for more information about their cookies and how to manage them.
When you visit a website, your browser automatically shares specific information, such as your IP address and other device information. Some of this information may also be sent to third-party content providers (advertisers, website analytic companies, etc.) that provide content on the website. Such sharing may allow the website or content providers to track you over time and across multiple sites. However, many current browsers offer Do Not Track plugins that give you the power to disable such tracking and tell websites you visit, by sending an electronic beacon, this preference. At this time, the Service does not respond to Do Not Track beacons transmitted by browser plugins.
All data is encrypted via TLS (SSL) when transmitted from our servers to your browser. The database backups are also encrypted. Data is unencrypted while it’s running in our database because it needs to be ready to send to you when you need it, but we do our best and always follow the latest industry security standards to secure your data in the system.
For more information about how we keep your information secure, please review our Security Overview.
You understand that Company uses third party vendors and hosting partners to provide the necessary hardware, software, networking, storage, and related technology required to provide you with the Service. A current list of vendors is available upon request.
When you cancel your account, we purge your account data from the live system. However, we keep your data in our backups for at least 30 days in case you change your mind. Beyond that, we purge your data from our servers for good. You can specifically request to have your data deleted by contacting us at email@example.com.