Italiano 
English (UK) 
Русский 
العربية 
日本語 
한국어 
Magyar 
Türkçe 
Español 
Čeština 
Svenska 
Português 
Ελληνικά 
Suomi 
Nederlands 
Română 
Français 
Polski 
Українська 
Deutsch 
简体中文 
Slovenčina 
Review your privacy settings today to limit data sharing by default. Instead of opaque defaults, we follow clear standards that govern collection, use, and retention so you know what happens with your data. On this site, tracking e tags help tailor experiences, and you can adjust consent at any time. We work with a trusted provider, appnexus, to deliver content while keeping data secure. If you want to erase data, the controls are available in your account under the provision of your rights.
Hereinafter, ‘personal data’ means information that identifies you or relates to you. We collect only data necessary to provide features and improve quality. Each data category has a defined purpose, and you can review the disclosure in the policy. Data may be carrying information across services and transferred to providers or partners, including across jurisdictions, in accordance with applicable laws and the provision for cross-border data handling. Data can enter our systems through forms, chats, or feedback, and is protected with encryption and strict access controls.
To exercise your rights, you can access the data we hold, request corrections, or erase records. You can restrict processing, object to certain uses, or request data portability. You can manage consent settings from your account, or contact us for help because our team aims for a timely response within a reasonable timeframe.
We share information only as needed to provide services and comply with our policy. We disclose data to trusted subprocessors and providers, including appnexus for ad delivery, with data minimization. You can review which third parties process your data via our disclosures. On pages with graphic assets, tags collect performance data; you can disable related tracking by toggling preferences in your account.
Data retention and security remain central: we keep personal data only as long as necessary to fulfill the purposes described hereinafter, or as required by law. We implement encryption in transit and at rest, monitor access, and carry out regular checks to ensure compliance with our standards.
Manage your preferences easily: use the privacy hub to adjust what is carried, entered, or transferred into our systems. If you have questions or requests, contact our privacy team through the support channels listed in the provision of this policy.
What Data We Collect During Sign-Up and Ride Requests
Set your consent preferences during sign-up to control what data is collected and how it’s used.
We collect data to verify identity, process rides, and improve performance. Data is recorded to support safety and service quality, and we might receive input from you or a partner to improve matching. Whilst you use the app, we gather information in two waves: during sign-up and at the moment you place a ride request. We focus on data that helps you move quickly and safely across the internet and in real life, including the York area and nearby places such as parks and districts like Blacklanes.
During sign-up, we collect data across several classes to build a reliable profile and comply with standards. These data points include:
- Identity and contact: full name, email, phone number, date of birth – used to create your profile and verify access.
- Location and access: city, default pickup/drop-off preferences, and device location permissions you grant.
- Payment and billing: tokenized payment references; last four digits may appear on receipts; billing address if required.
- Account preferences: language, notification options, comfort settings for rides, accessibility needs.
- Security and verification: verification data as required by partner standards or regulatory requirements; stored in secure data classes.
- Consent and marketing: marketing opt-ins and consent preferences, which we honor or adjust on request.
When you submit ride requests, we collect data to match you with suitable options and ensure a smooth trip. These data points include:
- Trip details: pickup and drop-off locations, requested time, ride class or option, number of passengers, luggage, and any special requests.
- Real-time data: live location during pickup, route optimization data, estimated times, driver assignment results, and final fare calculations.
- Usage data: device type, operating system, browser, IP address, language, and surf patterns that help us improve performance.
- Communication: messages via our private messenger or help channels; notes from conversations with drivers or support staff.
- Safety and quality: incident logs and performance metrics tied to rides and drivers.
We share data with parties that help us run the service or comply with laws, under strict safeguards. Key points include:
- Partner and service provider access: data may be shared with partner services, drivers, and support teams to fulfill requests and maintain performance.
- Consent and control: sharing aligns with your choices and applicable consent settings; you can adjust these at any time.
- Security and standards: encryption in transit and at rest, role-based access, and regular audits to meet industry standards.
- Retention and deletion: data is kept only as long as needed for operations or legal obligations, with routine reviews to delete outdated records.
Our coverage includes York and nearby areas such as parks and neighborhoods like Blacklanes, helping us tailor defaults and peak-time planning. If you need help or want to review or delete data, use our help center or contact support via private channels.
How We Use Your Data to Provide and Improve Your Ride Experience
Opt in to data sharing to tailor your ride experience. Anonymized data from each part of your trip helps our routing engine calculate faster arrivals, align driver availability with demand, and shorten wait times. By design, corresponding identifiers and issued session IDs connect rides in your account, while personal details stay private. Our provider network–including blacklane and other trusted partners–receives only the data needed to deliver the service and maintain safety.
Data we use to improve your ride
To boost performance, we analyze five core signals: pickup location, trip timing, vehicle availability, driver feedback, and demand patterns. The nature of demand varies by city and time, so we adjust routes and queueing to reduce delays and increase reliability. Data is carried securely through encrypted channels and carried in anonymized form for analytics, ensuring your identity stays protected.
Controls and practical steps
We use this data to power in-app features and tools across our apps, delivering precise ETAs, smarter car matching, and route optimizations that minimize idle time. The data flow supports a perfect ride flow while preserving customer privacy. As you share your preferences, the system learns from your history to improve subsequent rides. Data is used to tailor experiences across all-inclusive customer touchpoints and performance dashboards. The system allows you to review and adjust consent in the app settings.
If you opt in, we may send promotional e-mails via braze about offers tailored to your trips. Facebooks data is not used for ride decisions; data from facebooks is used only if you actively connect that service and approve sharing. The data transmitted via our apps is carried securely and used to improve performance without exposing personal details. All communications are issued through secure channels and can be managed via your privacy settings.
What Security Measures Shield Your Personal Information
Enable two-factor authentication on every account you control and review access rights at least quarterly to prevent unauthorized access.
Protect internal networks with proven methods and a disciplined process for handling personal info; never disclose data beyond what is required, and data disclosed here is kept to a strict minimum for staff who require access; these controls provide guarantees for privacy and security.
Limit data collection to essential signals, mainly to support your shopping experience, and encrypt data in transit to protect traffic and browsing histories; preserve anonymized records with excellent safeguards for data in transit and at rest, and purge raw identifiers after a defined period of days.
We guarantee that your info is not disclosed to third parties beyond consented purposes, and we ensure we gather data for campaigns only when permitted and with retention rules; all actions require telephone verification where appropriate, and we avoid cold pick-ups and limit data gathered from vehicles to minimize exposure; we flag incomplete requests to prevent exposure; data from campaigns aligns with user consent and retention policies, including limits on sharing with facebooks. Please follow these steps to strengthen protection.
Practical steps you can take today
Please audit internal apps that process your data and disable nonessential tracking methods. Update your passwords, enable MFA, and review permissions granted to your shopping apps and services.
Can I Book Blacklane for Someone Else? Requirements and Steps
Yes–you can book Blacklane for someone else when you have explicit consent and provide accurate rider data in the session. Use your own profile or an already approved account; the rider’s full name, mobile number, pickup location, destination, and date/time should be correct. The process-related checks run in accordance with our privacy policy to protect that data, and the system may hold the booking while verification completes. For third-party bookings, clearly identify the target rider and attach any relevant notes using tags to help the professional driver prepare. If data is incomplete, the system may block changes.
Who can book for another person
Only the user who owns the account, or someone with formal authorization, should submit for a rider. The payer and rider can be different; obtain consent and provide the rider’s name, mobile, pickup location, and destination. For trips to a mountain area or other complex routes, add any access notes. The service collects session data to verify identity in process-related checks, in accordance with privacy, and to prevent mismatches. If consent is not on file, the booking cannot proceed.
Steps to book for someone else
First, confirm authorization. Then start a new booking on your app or the web portal, populate the rider’s full name, mobile number, pickup address, destination, date and time, and, if available, flight details. Then select a limousine option, set the pickup notes, and apply any internal tags to help the service team. Then review the data for accuracy, and submit; you will receive a booking ID and status updates. The system may hold the payment until pickup completes and the trip data is confirmed, protecting both user and rider data.
What Data We Share with Drivers, Partners, and Service Providers
Limit data sharing to what is necessary to operate the platform. This includes rider and driver contact details, trip identifiers, pickup and drop-off locations, timestamps, and device or app identifiers. Data is located in our secure systems and shared only with third parties that provide essential services such as routing, verification, and messaging. Data is directed to those partners under strict protections and special handling, and public postings are rejected. We maintain an all-inclusive policy to minimize exposure and protect user trust.
Who receives data and why: we share with drivers, partners, and service providers to lead smooth operations and ensure safety. Sharing is limited to classes of recipients with a clear need. This includes software platforms that perform background checks, dispatch, payment settlement, fraud detection, and customer support, which provides the context needed for decisions and ensures risk is managed. Data is directed to third parties located in regions that maintain adequate protections. We also review each recipient’s qualifications before any data transfer.
Data types and behaviors: we gather data to improve services and tailor experiences. The data includes user-provided information, device data, location data during trips, and behaviors from app usage. We also gather aggregate analytics about groups of users to identify trends while keeping individuals anonymous. The information provided to partners helps optimize routes, verify identities, and monitor safety. We ensure the data is tailored to each recipient’s role and access level, not shared with irrelevant groups.
Limitations and controls: we reject sharing of sensitive information beyond what is needed for the service. Access is restricted by role-based controls, versioned policies, and data retention schedules. We maintain version controls for access. Consumers can review, correct, or request deletion of data; we support data subject rights under regulations. We only share public information that is already published by the user or with explicit consent, and we avoid distributing notes about personal beliefs or private conversations. Taking care of consent remains a priority.
How we manage emails and communications: for transactional messages, we use sendgrid to send updates, receipts, and alerts. Data transfers to sendgrid are limited to the minimum set needed to deliver messages, and connect only to information necessary for delivery. We monitor peak send times to ensure reliable delivery, and we log delivery events to verify receipt. All such transfers are covered by our data processing agreements and kept within geographic and regulatory limits.
Retention and data lifecycle: we keep data for as long as needed to fulfill the service and comply with regulations; we reassess periodically. When data is no longer required, we purge it or anonymize it. If a data subject asks to retract consent or restrict certain uses, we honor that request where feasible and adjust future sharing accordingly. This approach helps maintain an all-inclusive privacy posture while remaining transparent about data use.
Your Rights: Access, Correction, Deletion, Portability, and How to Exercise Them
Submit your rights request by logging into your user account and clicking Privacy settings → Data Rights. Identify yourself via the verification prompts and specify the scope: access, correction, deletion, or portability. We guarantee a timely, administrative response and provide data in a machine-readable format. Requests routed through rudderstack ensure correct routing and an auditable trail. Data that has been anonymized or contained in backups may not be deletable in full, and we will explain any limitations. Our support team will guide you through the steps and adapt the process to your browser and device. The forms work with polyfill to support your actions on older browsers. We aim to go beyond basic compliance to safeguard your subject data and protect your privacy rights.
Access and Correction
- Access: You can see the subject data we hold about your account, including profile details, preferences, and activity data from our services. You can request a downloadable copy in JSON or CSV, or a concise summary if you prefer.
- Correction: You can request corrections for inaccuracies; we update the stored data within our administrative systems and reflect changes promptly where possible. If entries exist only in backups, we explain how they are handled.
- Identity verification: We verify your identity using your account email and optional two-factor prompts to prevent unauthorized access.
- Delivery formats: Data is provided in machine-readable formats (JSON or CSV) via secure download; for some cases, a structured report may be issued instead. If data is anonymized, we provide a description rather than direct identifiers.
Deletion and Portability
- Deletion: You may request deletion of personal data, subject to legal obligations and legitimate business needs. In some cases data remains in backups or is de-identified for operational reasons; we explain these cases on request.
- Portability: You may obtain a portable copy of data you provided and data generated by your use of the service, in JSON or CSV formats, to use in your own systems or archives.
- How to exercise: In the Data Rights panel, specify the right you want, the data scope, time range, and your contact method. Attach supporting documents if needed. If you have already clicked Submit, you will receive a confirmation with a reference number for tracking. If not, click Submit to begin; our team will acknowledge the request and proceed within the defined timelines.
Data Retention: How Long We Keep Your Information and How to Request Deletion
To start, go to your account settings and submit a deletion request to remove personal data tied to your profile. Taking this action aligns with our policy and triggers authentication checks, giving you control over your data for the future. The process is user-friendly, includes clear timelines, and provides a look at the data lifecycle at each level. For reference, Blacklane and similar services use these steps to demonstrate best practices. If you proceed, you’ll know what happens next and what is removed, then you will see the changes reflected in your account across products and campaigns.
Data we retain and timeframes
We store information to ensure product reliability, prevent malfunctions, and comply with laws. The following table shows retention periods, how we handle data, and the impact on your experience. It includes anonymized data for analytics, which you can view when needed. You can also see how seats, orders, and screen interactions contribute to campaigns or improvements. Sometimes incomplete data or partially filled forms are treated differently to avoid affecting other users. Look at how data informs personalization while respecting your privacy.
| Data category | Retention period | Purpose | Deletion method | Note |
|---|---|---|---|---|
| Personal data (name, email, account ID) | Active until deletion; data removed within 30 days; backups retained up to 90 days | Authentication, account access, support | Deletion request via account or privacy form; verification required | May be partially anonymized in reports |
| Authentication logs (IP, times) | 24 months | Security and fraud prevention | Deletion on request; retained in backups for 30–90 days | Critical for incident analysis |
| Order histories (orders, seats, product selections) | 7 years | Compliance and service records | Deletion when eligible; archival in secure storage | Backups may retain data longer |
| Viewed content and screen interactions | 12 months; anonymized after | Product improvements and UX analytics | Direct deletion or anonymization; later purge | Talvolta utilizzato per miglioramenti mirati nelle campagne |
| Campagne e preferenze di marketing | 24 months | Performance della campagna e stato di opt-in | Richiesta di eliminazione; dettagli di opt-out rimossi | I dati possono essere anonimizzati dopo la rimozione |
| Dati analitici anonimizzati | Indefinito | Ottimizzazione del prodotto | Preservato solo in forma anonima | Impossibile risalire al tuo profilo |
Come richiedere la cancellazione e cosa aspettarsi
Invia la tua richiesta tramite le impostazioni sulla privacy o il nostro modulo sulla privacy; verifichiamo l'identità tramite passaggi di autenticazione. Una volta verificata, cancelliamo i dati dai sistemi attivi ed eliminiamo i backup entro le tempistiche indicate. In caso di malfunzionamento o ritardo nell'elaborazione, ti avviseremo e adatteremo la programmazione. Vedrai l'impatto sulla visualizzazione dei tuoi prodotti, sulla cronologia degli ordini, sui posti e sulle campagne. Casi speciali, come i dati legati a una funzionalità una tantum, vengono gestiti per evitare di influenzare altri utenti e le modifiche alla politica vengono comunicate tempestivamente. L'obiettivo è rispettare le tue preferenze mantenendo l'integrità del servizio per tutti.
Commenti