Privacy Policy

1. Introduction

33limoservice ("we," "us," "our," or "Company") is committed to protecting your privacy and ensuring you have a positive experience on our website and when using our services. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data.

We comply with the General Data Protection Regulation (GDPR) and all applicable Czech data protection legislation. Please read this Privacy Policy carefully. If you do not agree with our practices, please do not use our services.

2. Data Controller Information

33limoservice, located in Prague, Czech Republic, is the data controller for personal data collected through our website and services. We are responsible for determining how and why your personal data is processed.

Company: 33limoservice

Location: Prague, Czech Republic

Email: 33limoservice@gmail.com

Phone: +420 721 888 912

3. Types of Personal Data We Collect

We collect personal data in various ways to provide our services effectively and enhance your experience.

Information You Provide

When you make a reservation or contact us, we collect information including your full name, email address, phone number, residential address, and billing address. We also collect information about your travel requirements, preferences, special requests, flight details (including flight numbers and arrival times), and payment information.

Automatically Collected Information

When you visit our website, we automatically collect certain information about your device and usage patterns. This includes your IP address, browser type, operating system, pages visited, time spent on pages, and referring website. We use cookies and similar tracking technologies to collect this information.

Information from Third Parties

We may receive information about you from third parties such as payment processors, airline partners for flight tracking, and email providers. We use this information to enhance service delivery and improve accuracy of information.

4. Legal Basis for Processing Data

Under GDPR, we process your personal data based on the following legal bases:

Contract Performance

We process your personal data to perform our contractual obligations to you. This includes processing reservations, arranging transportation services, processing payments, and providing customer support. This processing is necessary to fulfill the services you have requested.

Legal Obligation

We process certain data to comply with legal obligations under Czech and EU law. This includes data required for tax purposes, transportation regulations, insurance requirements, and safety protocols.

Legitimate Interest

We process data based on our legitimate business interests, which include improving our services, preventing fraud and abuse, maintaining security, analyzing usage patterns, marketing our services, and responding to customer inquiries. We balance our interests against your privacy rights.

Consent

For certain activities such as marketing communications and non-essential cookies, we obtain your explicit consent. You may withdraw this consent at any time without affecting the validity of processing based on other legal bases.

5. How We Use Your Data

We use your personal data for the following purposes:

Service Delivery: Processing reservations, arranging vehicle dispatch, coordinating with drivers, tracking flights, providing directions, and delivering the transportation service.

Payment Processing: Processing payments, issuing invoices, handling refunds, and managing billing accounts. Payment data is processed securely in compliance with PCI standards.

Communication: Sending confirmation emails, service updates, driver information, payment receipts, and responding to your inquiries and requests.

Service Improvement: Analyzing service quality, gathering feedback, identifying service gaps, and developing new features and services based on customer needs.

Safety and Security: Preventing fraud, protecting against unauthorized access, maintaining system security, and complying with legal obligations.

Marketing and Promotions: Sending promotional content, special offers, and newsletters to clients who have opted in. You may opt out of marketing communications at any time.

Legal Compliance: Meeting regulatory requirements, maintaining records for tax purposes, and responding to legal requests.

6. Sharing Your Personal Data

We only share your personal data when necessary for service delivery or as required by law. We do not sell your data to third parties for marketing purposes.

Drivers and Service Team

Your name, phone number, pickup location, destination, and any special requirements are shared with the assigned driver to enable service delivery. Drivers are contractually bound by confidentiality obligations.

Payment Processors

Payment information including name, email, and billing address is securely shared with payment processors to process your payment. We use PCI-DSS compliant payment gateways.

Airline Partners

For airport transfers, we may share flight information with airline systems to track arrivals and adjust pickup timing. This is done to improve service accuracy.

Insurance and Legal Compliance

Data may be shared with insurance companies, regulatory authorities, and legal counsel as required for insurance coverage, regulatory compliance, or legal proceedings.

Service Providers

We may engage third-party service providers for website hosting, customer support, analytics, and technical maintenance. These providers are contractually obligated to maintain data confidentiality.

International Transfers

If we transfer data internationally, we implement appropriate safeguards including standard contractual clauses and adequacy decisions under GDPR.

7. Data Retention Periods

We retain personal data for the following periods:

Reservation and Payment Data: Retained for 7 years for tax and legal compliance purposes, after which it is securely deleted unless longer retention is required by law.

Contact Information: Retained for 3 years after the last interaction with our services, then deleted unless the customer requests retention for marketing purposes.

Website Cookies: Session cookies are deleted when you close your browser. Persistent cookies are retained for up to 2 years unless you clear them manually.

Marketing Lists: Retained until you opt out of marketing communications, after which your email is removed within 30 days.

Security Logs: Retained for 90 days for security monitoring, then securely deleted.

If you request deletion of your data, we will delete it within 30 days unless legal obligations require longer retention.

8. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance user experience and gather analytics information.

Essential Cookies

Essential cookies are necessary for website functionality, including authentication, security, and load balancing. These cookies are required and cannot be disabled.

Analytics Cookies

Analytics cookies help us understand how visitors use our website, including pages visited and time spent. This information helps us improve our services. These require your consent.

Marketing Cookies

Marketing cookies enable us to provide personalized advertisements and track campaign effectiveness. These require your explicit consent.

Managing Cookies

You can control cookie preferences through your browser settings. Most browsers allow you to refuse cookies or alert you when cookies are being sent. However, blocking cookies may affect website functionality.

9. Your Rights Under GDPR

Under GDPR, you have the following rights regarding your personal data:

Right of Access

You have the right to request a copy of your personal data that we hold. We will provide this information within 30 days in a commonly used electronic format.

Right of Rectification

You have the right to correct inaccurate or incomplete personal data. We will update your information upon request without undue delay.

Right of Erasure

You have the right to request deletion of your personal data, subject to certain exceptions such as legal obligations or ongoing contractual relationships. We will delete your data within 30 days unless exceptions apply.

Right to Restrict Processing

You have the right to restrict processing of your data in certain circumstances, such as when accuracy is disputed or processing is unlawful.

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used format and transmit it to another controller without hindrance.

Right to Withdraw Consent

If processing is based on your consent, you may withdraw it at any time. Withdrawal does not affect the lawfulness of prior processing.

Right to Object

You have the right to object to processing based on legitimate interests, including direct marketing. We will respect your objection unless we have compelling reasons to continue.

10. Data Protection and Security

We implement comprehensive technical and organizational security measures to protect your personal data from unauthorized access, disclosure, alteration, and destruction.

Encryption: Payment data and sensitive information are encrypted in transit using SSL/TLS technology. Data at rest is encrypted using industry-standard encryption algorithms.

Access Controls: Access to personal data is restricted to authorized employees and contractors who need it for their duties. All personnel sign confidentiality agreements.

Authentication: Systems use multi-factor authentication to prevent unauthorized access. Passwords are securely hashed and salted.

Monitoring: We continuously monitor systems for security threats and vulnerabilities. Intrusion detection systems are in place.

Incident Response: We have procedures in place to respond to data breaches promptly. If your data is compromised, we will notify you without undue delay as required by law.

11. Exercising Your Rights and Data Requests

To exercise any of your rights under this Privacy Policy or GDPR, please submit a request to our data protection contact. Requests should include your name, contact information, and a description of your request.

We will acknowledge your request within 24 hours and respond with the requested information or take appropriate action within 30 days. If your request is complex, we may extend the response period by 60 additional days.

Data Protection Contact:

Email: 33limoservice@gmail.com

Phone: +420 721 888 912

Mailing Address: Prague, Czech Republic

12. Updates to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website and updating the "Last Updated" date.

Continued use of our services following notification of changes constitutes your acceptance of the updated Privacy Policy. We encourage you to review this policy regularly to stay informed about how we protect your data.

13. Third-Party Links and Services

Our website may contain links to third-party websites and services. This Privacy Policy applies only to our website and services. We are not responsible for the privacy practices of third-party websites. We encourage you to review the privacy policies of any websites you visit.

Last updated: April 2026. This Privacy Policy is effective for all data processing activities from this date forward.