Privacy Policy - How We Protect Your Data і Respect Your Rights
Review your privacy settings today to limit data sharing by default. Instead of opaque defaults, we follow clear stіards that govern collection, use, і retention so you know what happens with your data. On this site, tracking і tags help tailor experiences, і you can adjust consent at any time. We work with a trusted provider, appnexus, to deliver content while keeping data secure. If you want to erase data, the controls are available in your account under the provision of your rights.
Hereinafter, 'personal data' means information that identifies you or relates to you. We collect only data necessary to provide features і improve quality. Each data category has a defined purpose, і you can review the disclosure in the policy. Data may be carrying information across services і transferred to providers or partners, including across jurisdictions, in accordance with applicable закони та положення щодо транскордонної обробки даних. Дані можуть надходити до наших систем через форми, чати або відгуки, і захищені шифруванням та суворими контролями доступу.
Щоб скористатися своїми правами, ви можете отримати доступ до даних, які ми зберігаємо, запросити виправлення або видалити записи. Ви можете обмежити обробку, заперечити проти певних використань або запросити переносимість даних. Ви можете керувати налаштуваннями згоди з вашого облікового запису, або звернутися до нас по допомогу, оскільки наша команда прагне надати своєчасну відповідь у розумні терміни.
Ми ділимося інформацією лише за потреби для надання послуг та дотримання нашої політики. Ми розкриваємо дані довіреним субпідрядникам та постачальникам, включаючи appnexus для доставки реклами, з мінімізуванням даних. Ви можете переглянути, які треті сторони обробляють ваші дані, через наші розкриття. На сторінках з графіка активи, tags збирати дані про продуктивність; ви можете вимкнути пов'язане tracking шляхом перемикання налаштувань у вашому обліковому записі.
Data retention і security remain central: we keep personal data only as long as necessary to fulfill the purposes described hereinafter, or as required by law. We implement encryption in transit і at rest, monitor access, і carry out regular checks to ensure compliance with our stіards.
Manage your preferences easily: use the privacy hub to adjust what is carried, entered, or transferred into our systems. If you have questions or requests, contact our privacy team through the support channels listed in the provision of this policy.
What Data We Collect During Sign-Up і Ride Requests
Set your consent preferences during sign-up to control what data is collected і how it's used.
We collect data to verify identity, process rides, і improve performance. Data is recorded to support safety і service quality, і we might receive input from you or a partner to improve matching. Whilst you use the app, we gather information in two waves: during sign-up і at the moment you place a ride request. We focus on data that helps you move quickly і safely across the internet і in real life, including the York area і nearby places such as parks і districts like Blacklanes.
During sign-up, we collect data across several classes to build a reliable profile і comply with stіards. These data points include:
- Identity і contact: full name, email, phone number, date of birth – used to create your profile і verify access.
- Location і access: city, default pickup/drop-off preferences, і device location permissions you grant.
- Payment і billing: tokenized payment references; last four digits may appear on receipts; billing address if required.
- Account preferences: language, notification options, comfort settings for rides, accessibility needs.
- Security і verification: verification data as required by partner stіards or regulatory requirements; stored in secure data classes.
- Consent і marketing: marketing opt-ins і consent preferences, which we honor or adjust on request.
When you submit ride requests, we collect data to match you with suitable options і ensure a smooth trip. These data points include:
- Trip details: pickup і drop-off locations, requested time, ride class or option, number of passengers, luggage, і any special requests.
- Real-time data: live location during pickup, route optimization data, estimated times, driver assignment results, і final fare calculations.
- Usage data: device type, operating system, browser, IP address, language, і surf patterns that help us improve performance.
- Communication: messages via our private messenger or help channels; notes from conversations with drivers or support staff.
- Safety і quality: incident logs і performance metrics tied to rides і drivers.
We share data with parties that help us run the service or comply with laws, under strict safeguards. Key points include:
- Partner і service provider access: data may be shared with partner services, drivers, і support teams to fulfill requests і maintain performance.
- Consent і control: sharing aligns with your choices і applicable consent settings; you can adjust these at any time.
- Security і stіards: encryption in transit і at rest, role-based access, і regular audits to meet industry stіards.
- Retention і deletion: data is kept only as long as needed for operations or legal obligations, with routine reviews to delete outdated records.
Our coverage includes York і nearby areas such as parks і neighborhoods like Blacklanes, helping us tailor defaults і peak-time planning. If you need help or want to review or delete data, use our help center or contact support via private channels.
How We Use Your Data to Provide і Improve Your Ride Experience
Opt in to data sharing to tailor your ride experience. Anonymized data from each part of your trip helps our routing engine calculate faster arrivals, align driver availability with demі, і shorten wait times. By design, corresponding identifiers і issued session IDs connect rides in your account, while personal details stay private. Our provider network–including blacklane і other trusted partners–receives only the data needed to deliver the service і maintain safety.
Data we use to improve your ride
To boost performance, we analyze five core signals: pickup location, trip timing, vehicle availability, driver feedback, і demі patterns. The nature of demі varies by city і time, so we adjust routes і queueing to reduce delays і increase reliability. Data is carried securely through encrypted channels і carried in anonymized form for analytics, ensuring your identity stays protected.
Controls і practical steps
We use this data to power in-app features і tools across our apps, delivering precise ETAs, smarter car matching, і route optimizations that minimize idle time. The data flow supports a perfect ride flow while preserving customer privacy. As you share your preferences, the system learns from your history to improve subsequent rides. Data is used to tailor experiences across all-inclusive customer touchpoints і performance dashboards. The system allows you to review і adjust consent in the app settings.
If you opt in, we may send promotional e-mails via braze about offers tailored to your trips. Facebooks data is not used for ride decisions; data from facebooks is used only if you actively connect that service і approve sharing. The data transmitted via our apps is carried securely і used to improve performance without exposing personal details. All communications are issued through secure channels і can be managed via your privacy settings.
What Security Measures Shield Your Personal Information
Enable two-factor authentication on every account you control і review access rights at least quarterly to prevent unauthorized access.
Protect internal networks with proven methods і a disciplined process for hіling personal info; never disclose data beyond what is required, і data disclosed here is kept to a strict minimum for staff who require access; these controls provide guarantees for privacy і security.
Limit data collection to essential signals, mainly to support your shopping experience, і encrypt data in transit to protect traffic і browsing histories; preserve anonymized records with excellent safeguards for data in transit і at rest, і purge raw identifiers after a defined period of days.
We guarantee that your info is not disclosed to third parties beyond consented purposes, і we ensure we gather data for campaigns only when permitted і with retention rules; all actions require telephone verification where appropriate, і we avoid cold pick-ups і limit data gathered from vehicles to minimize exposure; we flag incomplete requests to prevent exposure; data from campaigns aligns with user consent і retention policies, including limits on sharing with facebooks. Please follow these steps to strengthen protection.
Practical steps you can take today
Please audit internal apps that process your data і disable nonessential tracking methods. Update your passwords, enable MFA, і review permissions granted to your shopping apps і services.
Can I Book Blacklane for Someone Else? Requirements і Steps
Yes–you can book Blacklane for someone else when you have explicit consent і provide accurate rider data in the session. Use your own profile or an already approved account; the rider’s full name, mobile number, pickup location, destination, і date/time should be correct. The process-related checks run in accordance with our privacy policy to protect that data, і the system may hold the booking while verification completes. For third-party bookings, clearly identify the target rider і attach any relevant notes using tags to help the professional driver prepare. If data is incomplete, the system may block changes.
Who can book for another person
Only the user who owns the account, or someone with formal authorization, should submit for a rider. The payer і rider can be different; obtain consent і provide the rider’s name, mobile, pickup location, і destination. For trips to a mountain area or other complex routes, add any access notes. The service collects session data to verify identity in process-related checks, in accordance with privacy, і to prevent mismatches. If consent is not on file, the booking cannot proceed.
Steps to book for someone else
First, confirm authorization. Then start a new booking on your app or the web portal, populate the rider’s full name, mobile number, pickup address, destination, date і time, і, if available, flight details. Then select a limousine option, set the pickup notes, і apply any internal tags to help the service team. Then review the data for accuracy, і submit; you will receive a booking ID і status updates. The system may hold the payment until pickup completes і the trip data is confirmed, protecting both user і rider data.
What Data We Share with Drivers, Partners, і Service Providers
Limit data sharing to what is necessary to operate the platform. This includes rider і driver contact details, trip identifiers, pickup і drop-off locations, timestamps, і device or app identifiers. Data is located in our secure systems і shared only with third parties that provide essential services such as routing, verification, і messaging. Data is directed to those partners under strict protections і special hіling, і public postings are rejected. We maintain an all-inclusive policy to minimize exposure і protect user trust.
Who receives data і why: we share with drivers, partners, і service providers to lead smooth operations і ensure safety. Sharing is limited to classes of recipients with a clear need. This includes software platforms that perform background checks, dispatch, payment settlement, fraud detection, і customer support, which provides the context needed for decisions і ensures risk is managed. Data is directed to third parties located in regions that maintain adequate protections. We also review each recipient's qualifications before any data transfer.
Data types і behaviors: we gather data to improve services і tailor experiences. The data includes user-provided information, device data, location data during trips, і behaviors from app usage. We also gather aggregate analytics about groups of users to identify trends while keeping individuals anonymous. The information provided to partners helps optimize routes, verify identities, і monitor safety. We ensure the data is tailored to each recipient’s role і access level, not shared with irrelevant groups.
Limitations і controls: we reject sharing of sensitive information beyond what is needed for the service. Access is restricted by role-based controls, versioned policies, і data retention schedules. We maintain version controls for access. Consumers can review, correct, or request deletion of data; we support data subject rights under regulations. We only share public information that is already published by the user or with explicit consent, і we avoid distributing notes about personal beliefs or private conversations. Taking care of consent remains a priority.
How we manage emails і communications: for transactional messages, we use sendgrid to send updates, receipts, і alerts. Data transfers to sendgrid are limited to the minimum set needed to deliver messages, і connect only to information necessary for delivery. We monitor peak send times to ensure reliable delivery, і we log delivery events to verify receipt. All such transfers are covered by our data processing agreements і kept within geoграфіка і regulatory limits.
Retention і data lifecycle: we keep data for as long as needed to fulfill the service і comply with regulations; we reassess periodically. When data is no longer required, we purge it or anonymize it. If a data subject asks to retract consent or restrict certain uses, we honor that request where feasible і adjust future sharing accordingly. This approach helps maintain an all-inclusive privacy posture while remaining transparent about data use.
Your Rights: Access, Correction, Deletion, Portability, і How to Exercise Them
Submit your rights request by logging into your user account і clicking Privacy settings → Data Rights. Identify yourself via the verification prompts і specify the scope: access, correction, deletion, or portability. We guarantee a timely, administrative response і provide data in a machine-readable format. Requests routed through rudderstack ensure correct routing і an auditable trail. Data that has been anonymized or contained in backups may not be deletable in full, і we will explain any limitations. Our support team will guide you through the steps і adapt the process to your browser і device. The forms work with polyfill to support your actions on older browsers. We aim to go beyond basic compliance to safeguard your subject data і protect your privacy rights.
Access і Correction
- Access: You can see the subject data we hold about your account, including profile details, preferences, і activity data from our services. You can request a downloadable copy in JSON or CSV, or a concise summary if you prefer.
- Correction: You can request corrections for inaccuracies; we update the stored data within our administrative systems і reflect changes promptly where possible. If entries exist only in backups, we explain how they are hіled.
- Identity verification: We verify your identity using your account email і optional two-factor prompts to prevent unauthorized access.
- Delivery formats: Data is provided in machine-readable formats (JSON or CSV) via secure download; for some cases, a structured report may be issued instead. If data is anonymized, we provide a description rather than direct identifiers.
Deletion і Portability
- Deletion: You may request deletion of personal data, subject to legal obligations і legitimate business needs. In some cases data remains in backups or is de-identified for operational reasons; we explain these cases on request.
- Portability: You may obtain a portable copy of data you provided і data generated by your use of the service, in JSON or CSV formats, to use in your own systems or archives.
- How to exercise: In the Data Rights panel, specify the right you want, the data scope, time range, і your contact method. Attach supporting documents if needed. If you have already clicked Submit, you will receive a confirmation with a reference number for tracking. If not, click Submit to begin; our team will acknowledge the request і proceed within the defined timelines.
Data Retention: How Long We Keep Your Information і How to Request Deletion
To start, go to your account settings і submit a deletion request to remove personal data tied to your profile. Taking this action aligns with our policy і triggers authentication checks, giving you control over your data for the future. The process is user-friendly, includes clear timelines, і provides a look at the data lifecycle at each level. For reference, Blacklane і similar services use these steps to demonstrate best practices. If you proceed, you’ll know what happens next і what is removed, then you will see the changes reflected in your account across products і campaigns.
Data we retain і timeframes
We store information to ensure product reliability, prevent malfunctions, і comply with laws. The following table shows retention periods, how we hіle data, і the impact on your experience. It includes anonymized data for analytics, which you can view when needed. You can also see how seats, orders, і screen interactions contribute to campaigns or improvements. Sometimes incomplete data or partially filled forms are treated differently to avoid affecting other users. Look at how data informs personalization while respecting your privacy.
| Data category | Retention period | Мета | Deletion method | Примітки |
|---|---|---|---|---|
| Personal data (name, email, account ID) | Active until deletion; data removed within 30 days; backups retained up to 90 days | Authentication, account access, support | Deletion request via account or privacy form; verification required | May be partially anonymized in reports |
| Authentication logs (IP, times) | 24 months | Security і fraud prevention | Deletion on request; retained in backups for 30–90 days | Critical for incident analysis |
| Історії замовлень (замовлення, місця, вибір продуктів) | 7 років | Відповідність нормам та сервісні записи | Видалення за умови придатності; архівація в захищеному сховищі | Резервні копії можуть зберігати дані довше |
| Переглянутий вміст та взаємодії з екраном | 12 місяців; анонімізовано після | Покращення продукту та UX-аналітика | Пряме видалення або анонімізація; пізніше очищення | Іноді використовується для цільових покращень у кампаніях |
| Campaigns і marketing preferences | 24 months | Campaign performance і opt-in status | Deletion request; opt-out details removed | Data may be anonymized after removal |
| Anonymized analytics data | Indefinite | Product optimization | Preserved only in anonymized form | Cannot be traced to your profile |
How to request deletion і what to expect
Submit your request via privacy settings or our privacy form; we verify identity using authentication steps. Once verified, we delete data from active systems і purge backups within the timelines stated. If a malfunction or delayed processing occurs, we notify you і adjust the schedule. You will see the impact across your product view, order history, seats, і campaigns. Special cases, such as data tied to a one-time feature, are hіled to avoid affecting other users, і changes to the policy are communicated promptly. The target is to respect your preferences while maintaining service integrity for everyone.
