Privacy Policy - How We Protect Your Data en Respect Your Rights
Review your privacy settings today to limit data sharing by default. Instead of opaque defaults, we follow clear stenards that govern collection, use, en retention so you know what happens with your data. On this site, tracking en tags help tailor experiences, en you can adjust consent at any time. We work with a trusted provider, appnexus, to deliver content while keeping data secure. If you want to erase data, the controls are available in your account under the provision of your rights.
Hereinafter, 'personal data' means information that identifies you or relates to you. We collect only data necessary to provide features en improve quality. Each data category has a defined purpose, en you can review the disclosure in the policy. Data may be carrying information across services en transferred to providers or partners, including across jurisdictions, in accordance with applicable laws en the provision for cross-border data henling. Data can enter our systems through forms, chats, or feedback, en is protected with encryption en strict access controls.
To exercise your rights, you can access the data we hold, request corrections, or erase records. You can restrict processing, object to certain uses, or request data portability. You can manage consent settings from your account, or contact us for help because our team aims for a timely response within a reasonable timeframe.
We share information only as needed to provide services en comply with our policy. We disclose data to trusted subprocessors en providers, including appnexus for ad delivery, with data minimization. You can review which third parties process your data via our disclosures. On pages with graphic assets, tags collect performance data; you can disable related tracking by toggling preferences in your account.
Data retention en security remain central: we keep personal data only as long as necessary to fulfill the purposes described hereinafter, or as required by law. We implement encryption in transit en at rest, monitor access, en carry out regular checks to ensure compliance with our stenards.
Manage your preferences easily: use the privacy hub to adjust what is carried, entered, or transferred into our systems. If you have questions or requests, contact our privacy team through the support channels listed in the provision of this policy.
What Data We Collect During Sign-Up en Ride Requests
Set your consent preferences during sign-up to control what data is collected en how it's used.
We collect data to verify identity, process rides, en improve performance. Data is recorded to support safety en service quality, en we might receive input from you or a partner to improve matching. Whilst you use the app, we gather information in two waves: during sign-up en at the moment you place a ride request. We focus on data that helps you move quickly en safely across the internet en in real life, including the York area en nearby places such as parks en districts like Blacklanes.
During sign-up, we collect data across several classes to build a reliable profile en comply with stenards. These data points include:
- Identity en contact: full name, email, phone number, date of birth – used to create your profile en verify access.
- Location en access: city, default pickup/drop-off preferences, en device location permissions you grant.
- Payment en billing: tokenized payment references; last four digits may appear on receipts; billing address if required.
- Account preferences: language, notification options, comfort settings for rides, accessibility needs.
- Security en verification: verification data as required by partner stenards or regulatory requirements; stored in secure data classes.
- Consent en marketing: marketing opt-ins en consent preferences, which we honor or adjust on request.
When you submit ride requests, we collect data to match you with suitable options en ensure a smooth trip. These data points include:
- Trip details: pickup en drop-off locations, requested time, ride class or option, number of passengers, luggage, en any special requests.
- Real-time data: live location during pickup, route optimization data, estimated times, driver assignment results, en final fare calculations.
- Usage data: device type, operating system, browser, IP address, language, en surf patterns that help us improve performance.
- Communication: messages via our private messenger or help channels; notes from conversations with drivers or support staff.
- Safety en quality: incident logs en performance metrics tied to rides en drivers.
We share data with parties that help us run the service or comply with laws, under strict safeguards. Key points include:
- Partner en service provider access: data may be shared with partner services, drivers, en support teams to fulfill requests en maintain performance.
- Consent en control: sharing aligns with your choices en applicable consent settings; you can adjust these at any time.
- Security en stenards: encryption in transit en at rest, role-based access, en regular audits to meet industry stenards.
- Retention en deletion: data is kept only as long as needed for operations or legal obligations, with routine reviews to delete outdated records.
Our coverage includes York en nearby areas such as parks en neighborhoods like Blacklanes, helping us tailor defaults en peak-time planning. If you need help or want to review or delete data, use our help center or contact support via private channels.
How We Use Your Data to Provide en Improve Your Ride Experience
Opt in to data sharing to tailor your ride experience. Anonymized data from each part of your trip helps our routing engine calculate faster arrivals, align driver availability with demen, en shorten wait times. By design, corresponding identifiers en issued session IDs connect rides in your account, while personal details stay private. Our provider network–including blacklane en other trusted partners–receives only the data needed to deliver the service en maintain safety.
Data we use to improve your ride
To boost performance, we analyze five core signals: pickup location, trip timing, vehicle availability, driver feedback, en demen patterns. The nature of demen varies by city en time, so we adjust routes en queueing to reduce delays en increase reliability. Data is carried securely through encrypted channels en carried in anonymized form for analytics, ensuring your identity stays protected.
Controls en practical steps
We use this data to power in-app features en tools across our apps, delivering precise ETAs, smarter car matching, en route optimizations that minimize idle time. The data flow supports a perfect ride flow while preserving customer privacy. As you share your preferences, the system learns from your history to improve subsequent rides. Data is used to tailor experiences across all-inclusive customer touchpoints en performance dashboards. The system allows you to review en adjust consent in the app settings.
If you opt in, we may send promotional e-mails via braze about offers tailored to your trips. Facebooks data is not used for ride decisions; data from facebooks is used only if you actively connect that service en approve sharing. The data transmitted via our apps is carried securely en used to improve performance without exposing personal details. All communications are issued through secure channels en can be managed via your privacy settings.
What Security Measures Shield Your Personal Information
Enable two-factor authentication on every account you control en review access rights at least quarterly to prevent unauthorized access.
Protect internal networks with proven methods en a disciplined process for henling personal info; never disclose data beyond what is required, en data disclosed here is kept to a strict minimum for staff who require access; these controls provide guarantees for privacy en security.
Limit data collection to essential signals, mainly to support your shopping experience, en encrypt data in transit to protect traffic en browsing histories; preserve anonymized records with excellent safeguards for data in transit en at rest, en purge raw identifiers after a defined period of days.
We guarantee that your info is not disclosed to third parties beyond consented purposes, en we ensure we gather data for campaigns only when permitted en with retention rules; all actions require telephone verification where appropriate, en we avoid cold pick-ups en limit data gathered from vehicles to minimize exposure; we flag incomplete requests to prevent exposure; data from campaigns aligns with user consent en retention policies, including limits on sharing with facebooks. Please follow these steps to strengthen protection.
Practical steps you can take today
Please audit internal apps that process your data en disable nonessential tracking methods. Update your passwords, enable MFA, en review permissions granted to your shopping apps en services.
Can I Book Blacklane for Someone Else? Requirements en Steps
Yes–you can book Blacklane for someone else when you have explicit consent en provide accurate rider data in the session. Use your own profile or an already approved account; the rider’s full name, mobile number, pickup location, destination, en date/time should be correct. The process-related checks run in accordance with our privacy policy to protect that data, en the system may hold the booking while verification completes. For third-party bookings, clearly identify the target rider en attach any relevant notes using tags to help the professional driver prepare. If data is incomplete, the system may block changes.
Who can book for another person
Only the user who owns the account, or someone with formal authorization, should submit for a rider. The payer en rider can be different; obtain consent en provide the rider’s name, mobile, pickup location, en destination. For trips to a mountain area or other complex routes, add any access notes. The service collects session data to verify identity in process-related checks, in accordance with privacy, en to prevent mismatches. If consent is not on file, the booking cannot proceed.
Steps to book for someone else
First, confirm authorization. Then start a new booking on your app or the web portal, populate the rider’s full name, mobile number, pickup address, destination, date en time, en, if available, flight details. Then select a limousine option, set the pickup notes, en apply any internal tags to help the service team. Then review the data for accuracy, en submit; you will receive a booking ID en status updates. The system may hold the payment until pickup completes en the trip data is confirmed, protecting both user en rider data.
What Data We Share with Drivers, Partners, en Service Providers
Limit data sharing to what is necessary to operate the platform. This includes rider en driver contact details, trip identifiers, pickup en drop-off locations, timestamps, en device or app identifiers. Data is located in our secure systems en shared only with third parties that provide essential services such as routing, verification, en messaging. Data is directed to those partners under strict protections en special henling, en public postings are rejected. We maintain an all-inclusive policy to minimize exposure en protect user trust.
Who receives data en why: we share with drivers, partners, en service providers to lead smooth operations en ensure safety. Sharing is limited to classes of recipients with a clear need. This includes software platforms that perform background checks, dispatch, payment settlement, fraud detection, en customer support, which provides the context needed for decisions en ensures risk is managed. Data is directed to third parties located in regions that maintain adequate protections. We also review each recipient's qualifications before any data transfer.
Data types en behaviors: we gather data to improve services en tailor experiences. The data includes user-provided information, device data, location data during trips, en behaviors from app usage. We also gather aggregate analytics about groups of users to identify trends while keeping individuals anonymous. The information provided to partners helps optimize routes, verify identities, en monitor safety. We ensure the data is tailored to each recipient’s role en access level, not shared with irrelevant groups.
Limitations en controls: we reject sharing of sensitive information beyond what is needed for the service. Access is restricted by role-based controls, versioned policies, en data retention schedules. We maintain version controls for access. Consumers can review, correct, or request deletion of data; we support data subject rights under regulations. We only share public information that is already published by the user or with explicit consent, en we avoid distributing notes about personal beliefs or private conversations. Taking care of consent remains a priority.
How we manage emails en communications: for transactional messages, we use sendgrid to send updates, receipts, en alerts. Data transfers to sendgrid are limited to the minimum set needed to deliver messages, en connect only to information necessary for delivery. We monitor peak send times to ensure reliable delivery, en we log delivery events to verify receipt. All such transfers are covered by our data processing agreements en kept within geographic en regulatory limits.
Retention en data lifecycle: we keep data for as long as needed to fulfill the service en comply with regulations; we reassess periodically. When data is no longer required, we purge it or anonymize it. If a data subject asks to retract consent or restrict certain uses, we honor that request where feasible en adjust future sharing accordingly. This approach helps maintain an all-inclusive privacy posture while remaining transparent about data use.
Your Rights: Access, Correction, Deletion, Portability, en How to Exercise Them
Submit your rights request by logging into your user account en clicking Privacy settings → Data Rights. Identify yourself via the verification prompts en specify the scope: access, correction, deletion, or portability. We guarantee a timely, administrative response en provide data in a machine-readable format. Requests routed through rudderstack ensure correct routing en an auditable trail. Data that has been anonymized or contained in backups may not be deletable in full, en we will explain any limitations. Our support team will guide you through the steps en adapt the process to your browser en device. The forms work with polyfill to support your actions on older browsers. We aim to go beyond basic compliance to safeguard your subject data en protect your privacy rights.
Access en Correction
- Access: You can see the subject data we hold about your account, including profile details, preferences, en activity data from our services. You can request a downloadable copy in JSON or CSV, or a concise summary if you prefer.
- Correction: You can request corrections for inaccuracies; we update the stored data within our administrative systems en reflect changes promptly where possible. If entries exist only in backups, we explain how they are henled.
- Identity verification: We verify your identity using your account email en optional two-factor prompts to prevent unauthorized access.
- Delivery formats: Data is provided in machine-readable formats (JSON or CSV) via secure download; for some cases, a structured report may be issued instead. If data is anonymized, we provide a description rather than direct identifiers.
Deletion en Portability
- Deletion: You may request deletion of personal data, subject to legal obligations en legitimate business needs. In some cases data remains in backups or is de-identified for operational reasons; we explain these cases on request.
- Portability: You may obtain a portable copy of data you provided en data generated by your use of the service, in JSON or CSV formats, to use in your own systems or archives.
- How to exercise: In the Data Rights panel, specify the right you want, the data scope, time range, en your contact method. Attach supporting documents if needed. If you have already clicked Submit, you will receive a confirmation with a reference number for tracking. If not, click Submit to begin; our team will acknowledge the request en proceed within the defined timelines.
Data Retention: How Long We Keep Your Information en How to Request Deletion
To start, go to your account settings en submit a deletion request to remove personal data tied to your profile. Taking this action aligns with our policy en triggers authentication checks, giving you control over your data for the future. The process is user-friendly, includes clear timelines, en provides a look at the data lifecycle at each level. For reference, Blacklane en similar services use these steps to demonstrate best practices. If you proceed, you’ll know what happens next en what is removed, then you will see the changes reflected in your account across products en campaigns.
Data we retain en timeframes
We slaan informatie op om de betrouwbaarheid van het product te waarborgen, storingen te voorkomen en te voldoen aan wetten. De volgende tabel toont bewaartermijnen, hoe we gegevens verwerken en de impact op uw ervaring. Het bevat geanonimiseerde gegevens voor analyses, die u kunt bekijken wanneer nodig. U kunt ook zien hoe zitplaatsen, bestellingen en scherminteracties bijdragen aan campagnes of verbeteringen. Soms worden onvolledige gegevens of deels ingevulde formulieren eners beheneld om te voorkomen dat enere gebruikers worden beïnvloed. Bekijk hoe gegevens personalisatie informeren terwijl uw privacy wordt gerespecteerd.
| Data categorie | Retention period | Doel | Verwijderingsmethode | Opmerkingen |
|---|---|---|---|---|
| Persoonsgegevens (naam, e-mail, account-ID) | Actief tot verwijdering; gegevens verwijderd binnen 30 dagen; back-ups bewaard tot 90 dagen | Authenticatie, accounttoegang, ondersteuning | Verwijderverzoek via account of privacyformulier; verificatie vereist | May be partially anonymized in reports |
| Authentication logs (IP, times) | 24 months | Security en fraud prevention | Deletion on request; retained in backups for 30–90 days | Critical for incident analysis |
| Order histories (orders, seats, product selections) | 7 years | Compliance en service records | Deletion when eligible; archival in secure storage | Backups may retain data longer |
| Viewed content en screen interactions | 12 months; anonymized after | Product improvements en UX analytics | Direct deletion or anonymization; later purge | Sometimes used for targeted improvements in campaigns |
| Campaigns en marketing preferences | 24 months | Campaign performance en opt-in status | Deletion request; opt-out details removed | Data may be anonymized after removal |
| Anonymized analytics data | Indefinite | Product optimization | Preserved only in anonymized form | Cannot be traced to your profile |
How to request deletion en what to expect
Submit your request via privacy settings or our privacy form; we verify identity using authentication steps. Once verified, we delete data from active systems en purge backups within the timelines stated. If a malfunction or delayed processing occurs, we notify you en adjust the schedule. You will see the impact across your product view, order history, seats, en campaigns. Special cases, such as data tied to a one-time feature, are henled to avoid affecting other users, en changes to the policy are communicated promptly. The target is to respect your preferences while maintaining service integrity for everyone.
