Privacy Policy of Instant Driver AS
The distribution of the services owed by the contract and marketed via this website and the personal data which is collected and processed in this context is supported by the technologies and resources of Instant Driver AS. Org nr: 912 640 949 Selma Ellefsens vei 6, 0581 Oslo. Hence Instant Driver AS, as the person responsible within the meaning of Art. 4 No. 7 GDPR, provides the following data protection declaration in accordance with Art. 13 GDPR.
In the following, we inform you about the collection and processing of personal data when using our website www.airporttransferoslo.com (same as the URLs with other country codes, hereinafter referred to as “website”) or the mobile app “Instant Driver Taxi & Limousine Booking” (hereinafter referred to as “mobile app”), which you can download to your mobile device. Where differences arise between the processing of personal data when using the website and mobile app, we will inform you in detail in Section B (website) or Section C (mobile app). Personal data means individual information on personal or factual circumstances being attributable to an identified or identifiable natural person.
DATA PROTECTION DECLARATION OF Instant Driver AS
A. DATA PRIVACY
1.1 The personal data taken from the website or mobile app are tightly secured, but the processing of personal data from the website or mobile app is done in a different manner, which is discussed in Section B and Section C of the document. More precisely, personal data means the individual information that helps in identifying a particular person.
1.2 The company which takes care of the General Data Regulation according to Art 4 para. 7 of General Data Protection Regulation is Instant Driver AS, located at Org nr: 912 640 949 Selma Ellefsens vei 6, 0581 Oslo, e-mail: offer@airporttransferoslo.com. The data protection officer can be contacted via email at offer@airporttransferoslo.com.
1.3 Stay assured that your data will be taken due care of when you connect via email and will be used only to answer your query. The data will be deleted when there is no requirement of storing it or will not get processed if it is required to be retained by law.
All services on our website and mobile app abide by the privacy policies and the data protection declaration is exclusively handled by Instant Driver AS. If the services are done by subcontractors, then the information related to their protection can be found in the later part of the document. Instant Driver AS isn’t liable for the data protection if the services are used through third parties; then the data protection regulation will be applied as mentioned by the third party.
Our scheme of handling and processing of your data works in accordance with Art. 6 Para.1 lit b) General Data Protection Regulation for the entire handling of the transportation services (in particular service arrangement and accounting). The provisions laid down by EU General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG), and the Telemedia Act (TMG) are used when any type of personal information is processed.
3.1 Customer Account/Registration
In order to make bookings for our services, you need to first register on our website by providing your name, mobile number, email address, and password under the registration details. This data is needed so that we can identify you and communicate with you further when you make a booking for our services. According to Art. 6 para. 1 sentence 1 lit b) GDPR, you need to mention the above details so that it would be easy for us to identify you for any further processes. After having your information, we tag your account with the password-protected direct access so that no one can access it but you. With this registration detail, you can easily manage and change the details in your account and can see all the information related to rides.
3.2 How To Make Use Of Our Services
(a) For booking a ride through our service on the website or mobile app, you need to provide your name, email address, mobile number, and select the mode of payment: credit card, cash invoice, electronic direct debit (ELV), or AirPlus credit card (for corporate customers). If you choose the credit card option, we require credit card details and AirPlus credit card information for billing. If cash is chosen, no additional details are needed. This information is necessary to identify you, communicate with you, and process the payment.
(b) The payment information is kept safe and encrypted using TLS technology.
(c) It is your responsibility to keep your private data secure and not share it with unauthorized third parties. We are not responsible for any consequences resulting from third-party misuse of your password.
(d) Personal data collected through the website or mobile app is only shared with third parties under the following conditions: a) when necessary to perform contractual responsibilities, b) for executing payment procedures, c) if Instant Driver AS has a legitimate interest, or d) if you have given your approval. This is in accordance with Art. 6 para.1 sentence 1 lit b) f) GDPR or Art. 6 para. 1 sentence 1 lit. a) GDPR. Fleet companies or other fleet partners and their chauffeurs will receive information such as your name, mobile number, pickup, and drop-off locations. Payment processors will receive information such as your name, mobile number, and credit card details.
Your data may also be processed by our internal software to facilitate booking functions, ensuring compliance with GDPR. Occasionally, data may be used by employees of Instant Driver AS subsidiary companies, which also adhere to GDPR guidelines.
(e) You will receive ride confirmation details from the fleet company, driver, or taxi (including first name, last name, telephone number, license plate, and vehicle type) via email. For this, we use SendGrid, Inc. (referred to as “SendGrid”). We transfer your email address, name, last name, and trip details to SendGrid, where it is stored only for the necessary period. The legal basis is Art. 6 Para. 1 lit. b) GDPR. SendGrid complies with the EU-US Data Protection Shield principles. For more information, visit: SendGrid Privacy Policy.
(f) We use your mobile number to send details about your driver (name, telephone number, license plate, vehicle) via SMS through Twilio Inc. (referred to as “Twilio”), located at 645 Harrison St # 3rd Floor, San Francisco, CA 94107 USA. Your data will remain until you delete your account, after which we will inform Twilio to delete your data. The legal basis is Art. 6 Para. 1 lit. b) GDPR. Twilio complies with the EU-US Data Protection Shield principles. For more information, visit: Twilio Privacy Policy.
(g) To facilitate your use of our services outside the European Union, we will transfer your data to fleet companies and other fleet partners, including chauffeurs, to fulfill your service requests. Data transfers are done according to Adequacy Decisions under Art. 45 Para. 1 GDPR, or Art. 49 Para. 1 sentence 1 lit. b) GDPR if complete protection is not guaranteed.
3.3 Processing of the Credit Card Data
Instant Driver AS ensures the highest security standards for credit card data processing, certified by PCI-DSS (Payment Card Industry Data Security). Data is highly protected from unauthorized access.
3.4 Use of Stripe For Payment By Invoice
If you choose to pay by bank transfer or ELV through Stripe, you must store your bank details. Payment is made when you confirm via your account. Alternatively, Stripe will provide a token and banking information for payment.
3.5 Feedback from Customer After Ride Completion
After every ride, customers are requested to provide feedback on the driver and vehicle for quality assurance and service improvement.
4) NEWSLETTER
4.1 To receive our newsletter, you must provide a valid email address. We use a double opt-in procedure, sending a confirmation email to your address. If you confirm, you will receive our newsletter. If not confirmed within 24 hours, your information will be blocked and deleted after one month. We retain your IP address and registration time for verification purposes.
4.2 Your email address is saved for newsletter delivery based on Art. 6 para. 1 sentence 1 lit. a) GDPR.
4.3 We use MailChimp, provided by Rocket Science Group LLC, for newsletter delivery, based on Art. 6 Par. 1 S. 1 lit.f) GDPR. Your email address is sent to and stored by MailChimp in the USA until you unsubscribe. MailChimp complies with the EU-US Privacy Shield principles. For more information, visit: MailChimp Privacy Policy.
4.4 You can unsubscribe from the newsletter at any time via the link provided in each newsletter or by contacting us at the email address provided in our website imprint or section 1.2. Upon cancellation, personal data stored for the newsletter will be deleted unless legally required otherwise.
(5) DATA IS TRANSMITTED SAFELY
The data is transmitted securely through encryption using TLS coding. We take care of our website by implementing the best security measures and securing it with technical and organizational protocols.
(6) RIGHT OF AFFECTED PERSONS
6.1 According to Art 15 GDPR, you have the right to request information about your personal data stored by us, free of charge. Additionally, under Articles 16, 17, and 18 of the GDPR, you have the right to correct inaccurate data and request your personal data to be blocked, deleted, or restricted. Under Art. 20 of the GDPR, you are entitled to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit this data to another controller. Furthermore, under Art. 21 para. 1 GDPR, you can object to the processing of your personal data based on Art. 6 para. 1 lit e) or f) GDPR for reasons related to your particular situation.
6.2 Requests related to personal data should be made to the address provided below or to the email address or address specified under item 1 of this data protection declaration.
6.3 You also have the right to file a complaint with a data protection supervisory authority regarding the processing of your personal data.
B. MORE INFORMATION ABOUT THE USAGE OF OUR WEBSITE
1) DATA COLLECTION PROCEDURE WHEN VIEWING OR USING OUR WEBSITE
1.1 Take data for server log files
When you visit our website without registering, we only access the details your browser sends to our server. This data collection is based on Art. 6 Par. 1 S. 1 lit. f) GDPR and includes the name and content of the accessed website, IP address, date and time of the request, time zone difference to Greenwich Mean Time (GMT), the amount of data transferred, access status/HTTP status code, referrer URL, browser type, operating system and its interface, and the language and version of the browser software.
1.2 Cookies
(a) Our website uses cookies, which are special files created by your browser and stored on your device. The cookies contain information related to your device. This data is used in compliance with Art. 6 Par. 1 lit. f) GDPR and is deleted once you leave our website. You can enable or disable cookies via your browser settings.
(b) We use session cookies to recognize that you have visited certain pages of our website, and these cookies are removed once you leave the website. Temporary cookies are also used to optimize the usability of our website and are stored on your device for a certain period.
(c) We use cookies to collect statistical data via third-party services to optimize our website. These cookies are deleted after a certain period.
(d) You can enable or disable cookies in your browser settings, but some interactive features may not be available if cookies are disabled. More information on preventing the use of cookies can be found in the relevant sections for different services.
2) Third Parties Services Integration
2.1 Use of Google Analytics
(a) Our website uses Google Analytics, a web service of Google Inc. Google Ireland Ltd., Barrow Street, Dublin 4, Ireland (‘Google’). This tool uses cookies to help users navigate the website. The information generated by the cookie about your use of the website is transmitted to and stored by Google on servers in the USA.
(b) The transfer of data from an EU controller to organizations in the US is allowed under the EU-US Data Protection Shield framework principles, which Google adheres to through self-certification with the US Department of Commerce.
(c) If IP anonymization is activated on this website, Google shortens the IP address within EU Member States or other states party to the EEA Agreement before transmitting it to the USA. In rare cases, the full IP address is transmitted to a Google server in the USA and shortened there. Google uses this information on behalf of Instant Driver AS to evaluate website use, compile reports on website activity, and provide other services related to website and internet use. The IP address transmitted by your browser in the context of Google Analytics will not be merged with other Google data, in compliance with Art. 6 Par. 1 S. 1 lit. a) or f) GDPR.
(d) You can prevent the storage of cookies and the transmission of data generated by the cookies related to your website use to Google, as well as the processing of this data by Google, by downloading and installing the browser plug-in available at https://tools.google.com/dlpage/gaoptout. Further information on data use by Google is available at:
(a) For advertising and attracting traffic, we use Google AdWords on external websites. We show you advertisements that are of interest to you to make our website more appealing and to fairly calculate advertising costs. The legal basis for processing your data is Art. 6 para. 1 sentence 1 lit. f GDPR.
(c) Cookies help identify the browser, and if a user visits pages of an AdWords customer’s website before the cookie stored on their computer expires, Google and the customers can recognize that the user clicked on the ad and was directed to the page. Each AdWords customer receives a different cookie, preventing tracking across AdWords customer websites. These evaluations help us determine which advertising measures are effective.
(d) With marketing tools, a direct connection to the Google server is possible. However, we do not influence the data accessed by this Google tool. The significance of integrating AdWords conversion is that Google can receive information about which parts of our internet presence and ads were accessed by the user. If you are registered with a Google service, Google may associate your visit with your account. If you are not registered, Google will store the IP address.
(e) You can prevent participation in the tracking procedure by: i) Setting your browser to disable third-party cookies or deactivating cookies for conversion tracking ii) Setting your browser to block cookies from the domain www.googleadservices.com (deleted when you delete cookies) iii) Deactivating interest-based ads from providers part of the About Ads self-regulation campaign at https://www.aboutads.info/choices (setting deleted when you delete cookies) iv) Deactivating ads permanently in Firefox, Internet Explorer, or Google Chrome at https://www.google.com/settings/ads/plugin.
Further information on data protection at Google and Google AdWords Conversion is available at:
Alternatively, visit the Network Advertising Initiative (NAI) website at https://www.networkadvertising.org.
2.3 USE OF MATOMO (PIWIK)
(a) This website uses the web analysis service Matomo (formerly Piwik), an analysis software by InnoCraft Ltd. (https://www.innocraft.com, 150 Willis St, 6011 Wellington, New Zealand), to analyze and improve website usage. This helps us improve our offerings and make them more interesting to users. The legal basis for using Matomo is Art. 6 para. 1 sentence 1 lit. f) GDPR.
(b) Cookies are stored on your computer for analysis. The collected information is stored on the server of the responsible company. You can prevent storage by deleting existing cookies or preventing their storage. However, disabling cookies may limit the full use of the website.
(c) Matomo is an open-source project. Information on data protection from the third-party provider is available at https://matomo.org/docs/privacy/.
2.4 USE OF HOTJAR
(a) The website uses the web analysis service Hotjar, a software by HOTJAR LTD, Level 2 St. Julian’s Business Centre, 3, Elia Zammit Street, St Julian’s STJ 1000, Malta, to analyze and improve website use. The legal basis for using Hotjar is Art. 6 Par. 1 S. 1 lit. f) GDPR.
(b) Cookies are stored on your computer for analysis. Hotjar provides videos from the website showing data entered in your profile (e.g., name, last name, mobile, email). The synthesized information is sent to Hotjar servers in Ireland and stored there without transmission to third parties. The storage duration varies by cookie type. For more information, visit https://www.hotjar.com/cookies. To prevent Hotjar from collecting data, follow the instructions at https://www.hotjar.com/opt-out.
(c) Information on data protection by the third-party provider Hotjar is available at https://www.hotjar.com/privacy.
2.5 USE OF THE FACEBOOK SOCIAL PLUGINS (LIKE BUTTON)
(a) As per Art.6 para. 1 lit f) GDPR, we employ components from Facebook.com, a service by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA. Facebook plugins facilitate interaction with Facebook and other users. The legal basis for using Facebook plugins is Art. 6 Par. 1 S. 1 lit. a) or f) GDPR.
(b) When visiting our website with such a component, the browser downloads a corresponding representation of the component from Facebook, informing Facebook about the page being visited.
(c) If you are logged into Facebook while visiting our website, Facebook identifies you and tracks the pages you visit, transferring that information to your personal account. If you are not a member of Facebook, Facebook may still capture your IP address and store it.
(d) To prevent Facebook from accessing and storing your data, log out of Facebook before visiting our website. For detailed information on Facebook’s privacy policies and settings, visit https://www.facebook.com/policy.php.
2.6 USE OF THE YOUTUBE SOCIAL PLUGIN
(a) Our website employs YouTube components provided by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043 USA. The legal basis for using YouTube plugins is Art. 6 Par. 1 S. 1 lit. a) or f) GDPR.
(b) When you visit our site with a YouTube plugin, the browser loads the corresponding representation of the YouTube component, providing information about the visited page.
(c) If you are logged into YouTube during the visit, YouTube recognizes you, tracking your actions on our site and other online platforms. If you are not a YouTube member, YouTube may still capture your IP address.
(d) To prevent YouTube from tracking and storing your data, log out of YouTube before visiting our site. Detailed information on YouTube’s data collection, storage, and use policies is available at https://www.google.de/intl/de/policies/privacy/.
3) CONTACT FOR DATA PROTECTION
If you have any questions or need assistance with data protection, please contact us:
Instant Driver AS
[Insert Contact Address]
Email: offer@airporttransferoslo.com
We are committed to resolving your concerns and ensuring your data privacy rights are respected.
WhatsApp us