Privacy Policy - How We Protect Your Data et Respect Your Rights
Vérifiez vos paramètres de confidentialité aujourd'hui pour limiter le partage de données par défaut. Au lieu de paramètres par défaut opaques, nous suivons des principes clairs stetards that govern collection, use, et retention so you know what happens with your data. On this site, tracking et tags help tailor experiences, et you can adjust consent at any time. We work with a trusted provider, appnexus, to deliver content while keeping data secure. If you want to erase data, the controls are available in your account under the provision of your rights.
Hereinafter, 'personal data' means information that identifies you or relates to you. We collect only data necessary to provide features et improve quality. Each data category has a defined purpose, et you can review the disclosure in the policy. Data may be carrying information across services et transferred to providers or partners, including across jurisdictions, in accordance with applicable laws et the provision for cross-border data hetling. Data can enter our systems through forms, chats, or feedback, et is protected with encryption et strict access controls.
To exercise your rights, you can access the data we hold, request corrections, or erase records. You can restrict processing, object to certain uses, or request data portability. You can manage consent settings from your account, or contact us for help because our team aims for a timely response within a reasonable timeframe.
We share information only as needed to provide services et comply with our policy. We disclose data to trusted subprocessors et providers, including appnexus for ad delivery, with data minimization. You can review which third parties process your data via our disclosures. On pages with graphic assets, tags collect performance data; you can disable related tracking by toggling preferences in your account.
Data retention et security remain central: we keep personal data only as long as necessary to fulfill the purposes described hereinafter, or as required by law. We implement encryption in transit et at rest, monitor access, et carry out regular checks to ensure compliance with our stetards.
Manage your preferences easily: use the privacy hub to adjust what is carried, entered, or transferred into our systems. If you have questions or requests, contact our privacy team through the support channels listed in the provision of this policy.
What Data We Collect During Sign-Up et Ride Requests
Set your consent preferences during sign-up to control what data is collected et how it's used.
We collect data to verify identity, process rides, et improve performance. Data is recorded to support safety et service quality, et we might receive input from you or a partner to improve matching. Whilst you use the app, we gather information in two waves: during sign-up et at the moment you place a ride request. We focus on data that helps you move quickly et safely across the internet et in real life, including the York area et nearby places such as parks et districts like Blacklanes.
During sign-up, we collect data across several classes to build a reliable profile et comply with stetards. These data points include:
- Identity et contact: full name, email, phone number, date of birth – used to create your profile et verify access.
- Location et access: city, default pickup/drop-off preferences, et device location permissions you grant.
- Payment et billing: tokenized payment references; last four digits may appear on receipts; billing address if required.
- Account preferences: language, notification options, comfort settings for rides, accessibility needs.
- Security et verification: verification data as required by partner stetards or regulatory requirements; stored in secure data classes.
- Consent et marketing: marketing opt-ins et consent preferences, which we honor or adjust on request.
When you submit ride requests, we collect data to match you with suitable options et ensure a smooth trip. These data points include:
- Trip details: pickup et drop-off locations, requested time, ride class or option, number of passengers, luggage, et any special requests.
- Real-time data: live location during pickup, route optimization data, estimated times, driver assignment results, et final fare calculations.
- Usage data: device type, operating system, browser, IP address, language, et surf patterns that help us improve performance.
- Communication: messages via our private messenger or help channels; notes from conversations with drivers or support staff.
- Safety et quality: incident logs et performance metrics tied to rides et drivers.
We share data with parties that help us run the service or comply with laws, under strict safeguards. Key points include:
- Partner et service provider access: data may be shared with partner services, drivers, et support teams to fulfill requests et maintain performance.
- Consent et control: sharing aligns with your choices et applicable consent settings; you can adjust these at any time.
- Security et stetards: encryption in transit et at rest, role-based access, et regular audits to meet industry stetards.
- Retention et deletion: data is kept only as long as needed for operations or legal obligations, with routine reviews to delete outdated records.
Our coverage includes York et nearby areas such as parks et neighborhoods like Blacklanes, helping us tailor defaults et peak-time planning. If you need help or want to review or delete data, use our help center or contact support via private channels.
How We Use Your Data to Provide et Improve Your Ride Experience
Opt in to data sharing to tailor your ride experience. Anonymized data from each part of your trip helps our routing engine calculate faster arrivals, align driver availability with demet, et shorten wait times. By design, corresponding identifiers et issued session IDs connect rides in your account, while personal details stay private. Our provider network–including blacklane et other trusted partners–receives only the data needed to deliver the service et maintain safety.
Data we use to improve your ride
To boost performance, we analyze five core signals: pickup location, trip timing, vehicle availability, driver feedback, et demet patterns. The nature of demet varies by city et time, so we adjust routes et queueing to reduce delays et increase reliability. Data is carried securely through encrypted channels et carried in anonymized form for analytics, ensuring your identity stays protected.
Controls et practical steps
We use this data to power in-app features et tools across our apps, delivering precise ETAs, smarter car matching, et route optimizations that minimize idle time. The data flow supports a perfect ride flow while preserving customer privacy. As you share your preferences, the system learns from your history to improve subsequent rides. Data is used to tailor experiences across all-inclusive customer touchpoints et performance dashboards. The system allows you to review et adjust consent in the app settings.
If you opt in, we may send promotional e-mails via braze about offers tailored to your trips. Facebooks data is not used for ride decisions; data from facebooks is used only if you actively connect that service et approve sharing. The data transmitted via our apps is carried securely et used to improve performance without exposing personal details. All communications are issued through secure channels et can be managed via your privacy settings.
What Security Measures Shield Your Personal Information
Enable two-factor authentication on every account you control et review access rights at least quarterly to prevent unauthorized access.
Protect internal networks with proven methods et a disciplined process for hetling personal info; never disclose data beyond what is required, et data disclosed here is kept to a strict minimum for staff who require access; these controls provide guarantees for privacy et security.
Limit data collection to essential signals, mainly to support your shopping experience, et encrypt data in transit to protect traffic et browsing histories; preserve anonymized records with excellent safeguards for data in transit et at rest, et purge raw identifiers after a defined period of days.
We guarantee that your info is not disclosed to third parties beyond consented purposes, et we ensure we gather data for campaigns only when permitted et with retention rules; all actions require telephone verification where appropriate, et we avoid cold pick-ups et limit data gathered from vehicles to minimize exposure; we flag incomplete requests to prevent exposure; data from campaigns aligns with user consent et retention policies, including limits on sharing with facebooks. Please follow these steps to strengthen protection.
Practical steps you can take today
Please audit internal apps that process your data et disable nonessential tracking methods. Update your passwords, enable MFA, et review permissions granted to your shopping apps et services.
Can I Book Blacklane for Someone Else? Requirements et Steps
Yes–you can book Blacklane for someone else when you have explicit consent et provide accurate rider data in the session. Use your own profile or an already approved account; the rider’s full name, mobile number, pickup location, destination, et date/time should be correct. The process-related checks run in accordance with our privacy policy to protect that data, et the system may hold the booking while verification completes. For third-party bookings, clearly identify the target rider et attach any relevant notes using tags to help the professional driver prepare. If data is incomplete, the system may block changes.
Who can book for another person
Only the user who owns the account, or someone with formal authorization, should submit for a rider. The payer et rider can be different; obtain consent et provide the rider’s name, mobile, pickup location, et destination. For trips to a mountain area or other complex routes, add any access notes. The service collects session data to verify identity in process-related checks, in accordance with privacy, et to prevent mismatches. If consent is not on file, the booking cannot proceed.
Steps to book for someone else
First, confirm authorization. Then start a new booking on your app or the web portal, populate the rider’s full name, mobile number, pickup address, destination, date et time, et, if available, flight details. Then select a limousine option, set the pickup notes, et apply any internal tags to help the service team. Then review the data for accuracy, et submit; you will receive a booking ID et status updates. The system may hold the payment until pickup completes et the trip data is confirmed, protecting both user et rider data.
What Data We Share with Drivers, Partners, et Service Providers
Limit data sharing to what is necessary to operate the platform. This includes rider et driver contact details, trip identifiers, pickup et drop-off locations, timestamps, et device or app identifiers. Data is located in our secure systems et shared only with third parties that provide essential services such as routing, verification, et messaging. Data is directed to those partners under strict protections et special hetling, et public postings are rejected. We maintain an all-inclusive policy to minimize exposure et protect user trust.
Who receives data et why: we share with drivers, partners, et service providers to lead smooth operations et ensure safety. Sharing is limited to classes of recipients with a clear need. This includes software platforms that perform background checks, dispatch, payment settlement, fraud detection, et customer support, which provides the context needed for decisions et ensures risk is managed. Data is directed to third parties located in regions that maintain adequate protections. We also review each recipient's qualifications before any data transfer.
Data types et behaviors: we gather data to improve services et tailor experiences. The data includes user-provided information, device data, location data during trips, et behaviors from app usage. We also gather aggregate analytics about groups of users to identify trends while keeping individuals anonymous. The information provided to partners helps optimize routes, verify identities, et monitor safety. We ensure the data is tailored to each recipient’s role et access level, not shared with irrelevant groups.
Limitations et controls: we reject sharing of sensitive information beyond what is needed for the service. Access is restricted by role-based controls, versioned policies, et data retention schedules. We maintain version controls for access. Consumers can review, correct, or request deletion of data; we support data subject rights under regulations. We only share public information that is already published by the user or with explicit consent, et we avoid distributing notes about personal beliefs or private conversations. Taking care of consent remains a priority.
How we manage emails et communications: for transactional messages, we use sendgrid to send updates, receipts, et alerts. Data transfers to sendgrid are limited to the minimum set needed to deliver messages, et connect only to information necessary for delivery. We monitor peak send times to ensure reliable delivery, et we log delivery events to verify receipt. All such transfers are covered by our data processing agreements et kept within geographic et regulatory limits.
Retention et data lifecycle: we keep data for as long as needed to fulfill the service et comply with regulations; we reassess periodically. When data is no longer required, we purge it or anonymize it. If a data subject asks to retract consent or restrict certain uses, we honor that request where feasible et adjust future sharing accordingly. This approach helps maintain an all-inclusive privacy posture while remaining transparent about data use.
Your Rights: Access, Correction, Deletion, Portability, et How to Exercise Them
Submit your rights request by logging into your user account et clicking Privacy settings → Data Rights. Identify yourself via the verification prompts et specify the scope: access, correction, deletion, or portability. We guarantee a timely, administrative response et provide data in a machine-readable format. Requests routed through rudderstack ensure correct routing et an auditable trail. Data that has been anonymized or contained in backups may not be deletable in full, et we will explain any limitations. Our support team will guide you through the steps et adapt the process to your browser et device. The forms work with polyfill to support your actions on older browsers. We aim to go beyond basic compliance to safeguard your subject data et protect your privacy rights.
Access et Correction
- Access: You can see the subject data we hold about your account, including profile details, preferences, et activity data from our services. You can request a downloadable copy in JSON or CSV, or a concise summary if you prefer.
- Correction: You can request corrections for inaccuracies; we update the stored data within our administrative systems et reflect changes promptly where possible. If entries exist only in backups, we explain how they are hetled.
- Identity verification: We verify your identity using your account email et optional two-factor prompts to prevent unauthorized access.
- Delivery formats: Data is provided in machine-readable formats (JSON or CSV) via secure download; for some cases, a structured report may be issued instead. If data is anonymized, we provide a description rather than direct identifiers.
Deletion et Portability
- Deletion: You may request deletion of personal data, subject to legal obligations et legitimate business needs. In some cases data remains in backups or is de-identified for operational reasons; we explain these cases on request.
- Portability: You may obtain a portable copy of data you provided et data generated by your use of the service, in JSON or CSV formats, to use in your own systems or archives.
- How to exercise: In the Data Rights panel, specify the right you want, the data scope, time range, et your contact method. Attach supporting documents if needed. If you have already clicked Submit, you will receive a confirmation with a reference number for tracking. If not, click Submit to begin; our team will acknowledge the request et proceed within the defined timelines.
Data Retention: How Long We Keep Your Information et How to Request Deletion
To start, go to your account settings et submit a deletion request to remove personal data tied to your profile. Taking this action aligns with our policy et triggers authentication checks, giving you control over your data for the future. The process is user-friendly, includes clear timelines, et provides a look at the data lifecycle at each level. For reference, Blacklane et similar services use these steps to demonstrate best practices. If you proceed, you’ll know what happens next et what is removed, then you will see the changes reflected in your account across products et campaigns.
Data we retain et timeframes
We store information to ensure product reliability, prevent malfunctions, et comply with laws. The following table shows retention periods, how we hetle data, et the impact on your experience. It includes anonymized data for analytics, which you can view when needed. You can also see how seats, orders, et screen interactions contribute to campaigns or improvements. Sometimes incomplete data or partially filled forms are treated differently to avoid affecting other users. Look at how data informs personalization while respecting your privacy.
| Data category | Retention period | Objectif | Deletion method | Notes |
|---|---|---|---|---|
| Personal data (name, email, account ID) | Active until deletion; data removed within 30 days; backups retained up to 90 days | Authentification, accès au compte, support | Deletion request via account or privacy form; verification required | May be partially anonymized in reports |
| Journaux d'authentification (IP, heures) | 24 mois | Sécurité et prévention de la fraude | Suppression sur demete ; conservé dans les sauvegardes pendant 30–90 jours | Critique pour l'analyse des incidents |
| Historiques de commetes (commetes, sièges, sélections de produits) | 7 ans | Conformité et registres de service | Suppression lorsque éligible ; archivage dans un stockage sécurisé | Backups may retain data longer |
| Viewed content et screen interactions | 12 months; anonymized after | Product improvements et UX analytics | Direct deletion or anonymization; later purge | Sometimes used for targeted improvements in campaigns |
| Campaigns et marketing preferences | 24 mois | Campaign performance et opt-in status | Deletion request; opt-out details removed | Data may be anonymized after removal |
| Anonymized analytics data | Indefinite | Product optimization | Preserved only in anonymized form | Cannot be traced to your profile |
How to request deletion et what to expect
Submit your request via privacy settings or our privacy form; we verify identity using authentication steps. Once verified, we delete data from active systems et purge backups within the timelines stated. If a malfunction or delayed processing occurs, we notify you et adjust the schedule. You will see the impact across your product view, order history, seats, et campaigns. Special cases, such as data tied to a one-time feature, are hetled to avoid affecting other users, et changes to the policy are communicated promptly. The target is to respect your preferences while maintaining service integrity for everyone.
