Privacy Policy

Last updated: January 2025

NOBLEDRIVE ("we," "our," or "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect your information in accordance with the General Data Protection Regulation (GDPR) and Dutch privacy laws (Algemene Verordening Gegevensbescherming - AVG).

NOBLEDRIVE is the data controller responsible for the processing of your personal data as described in this Policy.

1. Information We Collect

1.1 Personal Information You Provide

When you book a transfer with NOBLEDRIVE or contact us, we collect the information you provide directly, such as:

• Contact Details: Full name, email address, phone number
• Booking Information: Pick-up and drop-off locations, date and time, flight details (if provided), hotel or accommodation details
• Invoice and Company Details: Company name, billing address and VAT number (for corporate bookings)
• Special Requests: Any additional notes you choose to share (e.g. luggage requirements, child seat, accessibility needs, preferred silence ride)

1.2 Payment Information

Online payments are processed securely via our payment provider Mollie. We do not store or have access to your full credit card details.

We receive limited payment information from Mollie, such as:

• Confirmation that a payment was successful or failed
• Payment method (e.g. iDEAL, credit card)
• Transaction reference needed for our administration

1.3 Technical and Log Information

When you visit our website, our hosting provider may automatically collect basic technical information in server logs, such as:

• IP address and approximate location
• Browser type and operating system
• Date, time and pages visited

We use this information only to keep the website secure, prevent abuse (for example, hacking attempts) and to solve technical problems. We do not use this information to create personal profiles or track individual visitors across websites.

2. How We Use Your Information

We process your personal data only for clear and legitimate purposes:

• Service Delivery: To process and confirm your booking, plan your transfer, and provide chauffeur services.
• Communication: To send booking confirmations, updates, and important information related to your trip (for example pick-up time or changes).
• Customer Support: To answer questions, handle complaints, and assist you with booking changes.
• Payment and Administration: To process payments through Mollie and keep financial records as required by law.
• Security and Misuse Prevention: To monitor and protect our website and services against fraud, abuse, and technical problems.

We do not use your data to send newsletters or mass marketing emails, and we do not sell your data to third parties.

3. Legal Basis for Processing

We process your personal data based on the following legal grounds under the GDPR:

• Contract Performance: Processing is necessary to fulfil our agreement with you (booking and providing transfer services).
• Legal Obligation: Certain data must be stored for a specific period for tax, accounting, and administrative purposes under Dutch law.
• Legitimate Interest: We have a legitimate interest in keeping our services secure, preventing fraud, and improving our communications and planning, as long as this interest does not override your rights and freedoms.

4. Data Sharing and Third Parties

We do not sell or rent your personal data. We only share your data with third parties when this is necessary for our services or required by law:

• Payment Provider (Mollie): To process online payments securely.
• Chauffeur(s): The driver receives only the booking details needed to perform your transfer (name, pick-up time, location, contact phone number).
• IT and Hosting Providers: To host our website and keep it technically operational and secure.
• Authorities: When we are legally obliged to do so, for example tax authorities or law enforcement.

Where third parties process data on our behalf, we make sure there is a data processing agreement in place in line with GDPR requirements.

5. Data Retention

We keep your personal data only for as long as necessary for the purposes described in this Policy or as required by law. In practice this means:

• Booking and Invoice Data: Information that is part of our financial administration (such as invoices and payment records) is kept for up to 7 years, in line with Dutch tax law.
• Communication and General Booking Details: Emails and messages relating to your booking are kept only as long as needed to handle your trip and any follow-up questions, after which they are deleted or anonymised.

If we no longer need your data for the purposes described and there is no legal obligation to keep it, we will delete or anonymise it.

6. Your Rights Under GDPR

You have the following rights regarding your personal data:

• Right of Access: You can request a copy of the personal data we hold about you.
• Right to Rectification: You can ask us to correct data that is inaccurate or incomplete.
• Right to Erasure ("Right to be Forgotten"): You can request deletion of your data, unless we are legally required to keep it (for example for tax records).
• Right to Restriction: You can request that we temporarily restrict the use of your data.
• Right to Data Portability: In some cases you can request to receive your data in a structured, commonly used, and machine-readable format.
• Right to Object: You can object to processing based on legitimate interest, if you believe your interests outweigh ours.

To exercise any of these rights, contact us at bookings@nobledrive.nl. We will respond as soon as possible and within 30 days where required by law.

7. Data Security

We take appropriate technical and organisational measures to protect your personal data against loss, misuse, unauthorised access, disclosure, alteration, or destruction. These measures include:

• Encrypted connections (HTTPS/SSL) for our website
• Secure payment processing via Mollie
• Restricted access to booking and invoice data
• Use of reputable hosting and IT providers

No system is 100% secure, but we do our best to protect your data using reasonable and appropriate measures.

8. Cookies and Tracking

Our website may use cookies that are necessary for its basic functioning (for example to remember a booking form in progress). We do not use cookies to send you marketing emails.

For more information about the cookies we use and how you can control them, please refer to our Cookie Policy available on our website.

9. International Data Transfers

Our intention is to use service providers that store and process data within the European Economic Area (EEA) wherever possible. If in the future we use services that process your data outside the EEA, we will do so only where this is permitted under GDPR and we will update this Privacy Policy with the relevant information.

10. Children's Privacy

Our services are intended for adults and business travellers. We do not knowingly offer services directly to children under 18. If you believe we have inadvertently collected personal data of a minor, please contact us so we can delete it where appropriate.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time, for example when our services or legal requirements change. The "Last updated" date at the top indicates the latest version. If changes are significant, we may actively inform you (for example via email or a notice on our website).

12. Contact Us

If you have questions about this Privacy Policy, your personal data, or if you wish to exercise your rights, you can contact us at:

NOBLEDRIVE
Email: bookings@nobledrive.nl
Phone: +31 6 5790 0409

13. Supervisory Authority

You have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) if you believe your data is not processed in accordance with privacy laws:

Autoriteit Persoonsgegevens
Website: autoriteitpersoonsgegevens.nl