top of page
Privacy Policy
The privacy of our customers' personal data and its protection is of primary importance to us. We want you to feel happy and safe when visiting our website and to consider the implementation of data protection as a customer-oriented quality feature.
Please read this privacy policy carefully because it informs you of your rights and the manner and scope of the processing of personal data by our website, which has fully complied with the General Data Protection Regulation (GDPR 2016/679 – General Data Protection Regulation). For the text of the regulation, you can click here.
The Regulation requires that any information to the data subject for the processing of the data be made in a concise, transparent, understandable and easily accessible form.
What is personal data and what data do we collect?
"Personal data" is defined as any information relating to an identified or identifiable natural person ("data subject"); an identifiable natural person is one whose identity can be ascertained, directly or indirectly, in particular by reference to an identifier; such as name, identification number, location data, online identifier or one or more factors that characterize the physical, physiological, genetic, psychological, economic, cultural or social identity of that natural person.
Anonymous information is not intended as such. Our website collects personal data
a) when you register on it,
b) when you register on its contact form,
c) when you use our services (reservations, etc.),
f) when you visit its pages and/or enter in its promotional / advertising programs.
The personal information collected is the minimum required to complete the above actions, which are identity data, contact data with you and/or your financial data. It is possible to collect and process the following types of personal data, such as information related to your computer, your visits to our website and your activity, for the purpose of correctly establishing the connection, comfortable use of our website and security of the system, (e.g. IP address, date and time of access, type and version of its browser, operating system, pages you preferred, etc.), information you provide when filling out a contact form on the website or in connected applications such as social media and any other personal information you choose to submit to our website.
Of course, the use of these will only take place if the Law allows us to do so. We do NOT collect special categories of your personal data, i.e. data “revealing racial or ethnic origin, political opinions, religious or philosophical beliefs or trade union membership, as well as genetic data, biometric data for the purpose of unmistakable personal identification, data that concern health or data concerning a natural person's sex life or sexual orientation" (Article 9 para. 1 GDPR/GDPR) or data concerning criminal convictions and offenses (Article 10 GDPR/GDPR).
If you do not allow us to collect your personal data for the purposes listed here, we may not be able to provide you with our services optimally.
How and why do we use your personal data?
When their use is necessary for the general performance of a contract to which you are a party (car rental) and when their use is necessary to comply with our legal obligation, i.e. we archive them for accounting and tax purposes, in accordance with Article 6 par. 1 b', c' and f GDPR/GDPR.
We also use your personal data to manage our website, to provide third parties with statistical information about you, but without the recipients of this information being able to identify you, and to keep the website and connected applications safe and to avoid fraud.
Advertising
As long as you have given us your express consent and depending on the personal data you have provided us with, we create your user profile, according to your personal interests and will send you advertising messages related to our activity (or to the activities of carefully selected third-party companies ) via e-mail, SMS, Viber, etc.
The legal basis for this processing is Article 6 para. 1 a and f GDPR/GDPR. At any time you can stop receiving updates from us, either by using the corresponding deletion link at the end of the message, or by contacting customer service at the call center +306980906366 or by sending an e-mail to cardel.rent@gmail.com
Use of cookies
In simple terms, cookies are small pieces of code that record your movements while navigating our website and are divided into "Cookies" that are necessary to recognize and/or maintain content entered by the subscriber or user during a connection (session ) on a website throughout the duration of the specific connection, e.g. when the user fills in an online form or to register the user's purchases in an online store (e.g. by selecting the "add to cart" button).
The same category also includes "persistent" cookies that are installed for the same purpose and last for a few hours. "Cookies" that are necessary for the authentication of the subscriber or user in services that require authentication (e.g. when making a banking transaction via the Internet).
"Cookies" that are installed for the purpose of the security of the subscriber or user, such as for example "cookies" that detect repeated unsuccessful attempts to enter a user's account on a particular website.
"Cookies" with multimedia content, such as flash player "cookies", during a connection (session) to a website. Such are, for example, the "cookies" that are installed by viewing a video on the website the user has visited.
"Cookies" that are necessary for carrying out the technique of load balancing (load balancing) in a connection to an internet website.
"Cookies" that "remember" the choices of the subscriber or user regarding the presentation of the website (e.g. "cookies" regarding the choice of language or the presentation of search results on a website).
"Cookies" that are installed through additional programs (plugins) on social network websites and relate to the sharing of content between certified members who have already logged in.
"Cookies" installed for the purpose of advertising and installed by the provider of the website visited by the user (first party cookies), as well as for "cookies" installed by others (e.g. advertising networks) through the provider of the website (third party cookies).
"Cookies" that are installed by others (e.g. advertising networks) through the website provider (third party cookies) and are necessary for other purposes (e.g. market research and analysis, improvement of advertised products, etc.) and are not related directly with user identification.
"Cookies" installed for the purpose of statistical analysis (web analytics).
Upon entering the main page of our website, you will be informed of a relevant note on the use of cookies and the possibility of disabling them or not.
The transfer of your data to third parties is generally prohibited.
Exceptionally, the data is processed by processors on our behalf. They are carefully selected each time, checked by us and contractually bound according to Article 28 GDPR. In addition, we may be required to pass extracts of your request to our counterparties (e.g. hotels) for the purpose of processing your request.
These may be auditors and professional consultants (lawyers, accountants, bank) and/or companies related to the transfer of products, professional service providers such as marketing, advertising and web support, optimization and hosting companies, payment control services , Cybercrime Prosecution, Consumer Protection and e-fraud prevention services, for cases of malicious use, social media if you choose to link your account on them with our website.
If the transmission of your personal data is required in an individual case, we will inform you about this in order to obtain your consent. The same applies even if we are required to transfer your personal data to recipients outside the European Union, e.g. in case of your trip to a country outside the EU and after we have informed you about the countries for which the E.U. considers that they provide an adequate level of protection for personal data (1. information about countries outside the EU, 2. information about the Protection Shield between the EU and the USA).
Security of your personal data
We have effectively implemented, both at the time of determining the means of processing and at the time of processing, appropriate technical and organizational measures, designed to apply data protection principles and to incorporate the necessary guarantees into the processing in such a way as to meet the requirements of the GDPR and to protect your rights.
We have also implemented appropriate technical and organizational measures to ensure that, by default, only personal data that is necessary for the purpose of the processing is processed.
We have active control procedures for a possible breach of personal data and in such a case we will immediately inform you as well as the competent supervisory authority.
How long do we keep your personal data?
The computers and programs used by our company are designed in such a way as to minimize the use of personal and identifying information. This data is processed only to the extent necessary to achieve the purposes stated in this Policy and will be stored for as long as is absolutely necessary to achieve the specific intended purposes.
In any case, the criterion used to determine the storage period is based on compliance with the deadlines permitted by law and the principles of data minimization, storage limitation or rational management of our records.
Find out your rights under the GDPR
If you are a resident of the European Union, you have the following rights in simple terms:
The right to information about how we use your personal data.
The right of access, i.e. you can request a copy of the personal data we hold about you.
The right to rectification, i.e. to correct your personal data, which may be incomplete or inaccurate.
The right to erasure (right to be "forgotten"), i.e. in certain cases to ask us to delete your personal data that we hold (unless there is a legal reason that prohibits us from doing so).
The right to restrict the processing of your personal data.
The right to portability of your data, i.e. to request a copy of your personal data in a common file format and to transfer said data to another company.
The right to object to the processing of your personal data, e.g. for direct marketing purposes.
The right not to subject the data subject to a decision made solely on the basis of automated processing, including profiling, which produces legal effects concerning you or significantly affects you in a similar way.
The right to complain to the competent data protection supervisory authority in the Member State in which you have your usual residence or your place of work.
The above rights are subject to specific regulations about when you can exercise them. You do not have to pay to access your personal data (or to exercise any of your rights), unless your request is unfounded, repetitive or excessive, in which case we may refuse to comply.
Please note that we may ask for some additional information to confirm your identity when you request access to your rights or to exercise any of your other rights and this is as a security measure that your personal data will not be disclosed to others.
We will respond to each of your requests within a period of one (1) month, if we need more time due to complexity or number of requests, we will inform you.
bottom of page