Except as set out below and legally required, we do not share, sell, or disclose your personal data to anyone for any purposes.
We take your privacy and confidentiality seriously and we treat your personal data with respect. Please read this privacy notice and policy cautiously as it includes vital information on who we are and how and why we collect, store, transfer, use, process and share your personal data. It describes our obligations and your rights for protection of your personal data. It also states how to contact us or the supervisory authority if you have any concerns regarding your data.
When we collect, store, transfer, use, process and share your personal data we are regulated by the laws of the United Kingdom, particularly the DPA 2018 which is the UK’s implementation of the EU GDPR. GDPR applies across the European Union including the United Kingdom. For the purposes of DPA 2018 and GDPR, we are ‘controller’ of your personal data. Our use of your personal data is subject to your instructions, DPA 2018, the GDPR, other relevant UK and EU legislation, our professional and legal duty of privacy and confidentiality.
2. Key Terms:
We, Our, Us: MiniCabRide Limited.
Personal Data: Any information and data that identifies or can identify an individual.
Special Category Personal Data: Sensitive personal data revealing race, ethnicity, political opinions, religious and philosophical beliefs, trade union memberships, genetics, biometrics (for identification purposes), health, gender, sex life or orientation.
Data Protection Officer (DPO): Our appointed officer responsible for your personal data privacy, confidentiality, and protection, who you can contact for your data protection.
If you need information how we collect and process your personal information or want to exercise your data protection rights, you may contact our DPO.
Our Data Protection Officer: Mr. Kausar Shahzad, Director MiniCabRide Limited (email: k.shahzad@MiniCabRide.com )
How we collect your personal data:
3. How we collect your personal data:
Your personal data we take in and treat includes but not limited to the following information:
- You have directly supplied us.
- We gathered from third parties to provide you services.
- We may also collect information from publicly accessible sources e.g., Companies House and Credit Reference Agencies.
4. Types of Personal Data We collect:
We will or may collect the following personal information directly from you, third parties and all our means of communication, publicity and promotion, our website and it may include Special Category Personal Data also:
- Personal Identifiers: Your first, middle and last name
- Contact Details: Telephone and mobile numbers, emails, home address and other relevant addresses (e.g., pick and drop addresses)
- Account Information, e.g., user id, password, identity questions and answers.
- Calls, messages, and chat records.
- Marketing and communication preferences.
- Payment information: We do not store debit, credit, or bank card details or any financial information. We use a top-of-the-range security certificate from Thawte to protect your credit card and personal details.
- Identity documentation and images.
- Other relevant information e.g., employment status, business information, national insurance number, tax reference.
- Job application, employment search telling your qualifications and work experience.
- Customer, driver or personalized comments, reviews and feedback about service, facilities, and responses.
- Your replies to polls and surveys
- Unsolicited complaints by other users
- Technical information about hardware, software, IP address, frequency of usage of our services, most visited website pages
- Products, transactions, and services you showed interest, explored, or inquired about.
- We may gather unidentified and nameless information for statistical and demographic purposes of our business. It can be anonymous information. It means that it does not identify you as an induvial. Aggregated information may be derived from your usage of services, likes and dislikes, reviews and feedback, usage assessments and combined information.
- Special category personal data: Race, ethnicity, nationality, religious or philosophical beliefs, gender, sex life or orientation, political opinions, trade union memberships, genetics, biometrics, and health related information. It may include any criminal record, convictions and sentencing if relevant.
5. Requirement of Personal Data:
We try to get and keep your permission to process your information. However, while we consider your consent about whether to process your personal data, the withdrawal of your consent does not necessarily stop us from continuing to process it. The law may allow or require us to continue to keep your data for statutory reasons. Your personal data is needed by law and may be required under a contract between you and us. It empowers us to extend you services we offer. We may also collect and process special category personal data under data protection law with a proper reason to do so. We seek explicit consent to process special category personal data.
If you do not provide personal data we ask for, it may delay or prevent us from supplying those services.
6. Reasons – how and why, we use your personal data:
We only use and process your personal data if we have a valid reason for doing so under data protection law, e.g.:
- For compliance of our legal and regulatory obligations. “Everyone responsible for using personal data has to follow strict rules called ‘data protection principles’. They must make sure the information is:
- used fairly, lawfully, and transparently
- used for specified, explicit purposes
- used in a way that is adequate, relevant, and limited to only what is necessary
- accurate and, where necessary, kept up to date
- kept for no longer than is necessary
- handled in a way that ensures appropriate security, including protection against unlawful or unauthorised processing, access, loss, destruction or damage”. (https://www.gov.uk/data-protection)
- For taking all necessary steps before and after entering a contract of service on our customer’s request and performance of our contract.
- For providing services we offer, you need, and we agree to provide.
- For processing of orders, payments, and management of contractual obligations to provide you with personalized booking experience of service.
- For conducting checks to identify, verify the identity of our customers
- For screening of financial or other sanctions or bans on our customers, if needed.
- For physical health, safety, and security as well as online security of our customers to follow health and safety regulations and rules that apply to our business issued by our regulator, law enforcement agencies and ministry of health.
- For our internal procedures, operational reasons of improving efficiency, training and quality control, competitive prices with the best service, and all other legitimate interests and those of third parties (A legitimate interest creates when we have a commercial or business reason to use your personal data without infringing your personal rights and interests).
- For confidentiality and protection of our intellectual property, and commercially valuable information
- For internal and external audits, law enforcement inquiries and investigations for regulatory obligations
- For statistical analysis to help manage and promote our business and commercial interests (e.g., promotional communication, services’ offers, discount packages, services’ updates by emails, text messages, telephone calls or post) with former, existing, and new customers, and those of third parties. However, we treat your personal data with respect and utmost care. We never sell or share it with other organizations for marketing purposes. Yet, you have your right to exclude yourself by unsubscribing, contacting, or instructing us.
- For security, avoiding unauthorized access and modifications to our systems
- For safe working practices, staff administration, assessments and resolving complaints, improving quality and efficiency of work.
- For prevention of crime and criminal activity against us, you and third parties.
- For prevention of fraudulent use of our services, identity theft and financial crimes.
- When you have given consent of collection, use and processing of your personal data without a contractual relationship and you showed interest through accepting our terms and conditions, cookies’ policy, visiting our website or business interests, surveys, polls, reviews, feedback, job searches, exploring services.
We continue to process your information on any, some or all bases until you renounce your consent or inform us to stop it exercising your data protection rights. If a base on which we manage your personal data is no longer proper or changes, then, if necessary, we shall inform you of the change and of the new basis valid under the law. You may withdraw your consent at any time by instructing us at info@MiniCabRide.com. However, if you do so, it may delay or prevent us from supplying services we offer.
7. Why and Who we share your personal data:
We normally share only sufficient and necessary data with our administrative staff, drivers, and sub-contractors. It helps in providing you better services requested with all our safety checks according to our privacy and business policies. Our staff, drivers and subcontractors sign our internal confidentiality obligations for the processing of your personal data. Further, we may also share your personal data with:
- Professional partners and service providers who we instruct on your behalf or refer you to avail of services we advertise and offer, or vice versa e.g., agents, brokers, referrals, drivers, sub-contractors, advertisers, and tax-advisors;
- Other third parties related to our business or to carry out your instructions;
- Our insurers and business partners;
- External auditors;
- Our bank;
- Credit reference agencies;
- External service suppliers, representatives, and agents that we use to make our business more efficient, e.g., typing services, marketing agencies, document collation or analysis suppliers.
We only allow our service providers to process your personal data if we are satisfied that they act appropriately to protect your personal data. We also impose contractual obligations on service providers relating to ensure that they can only use your personal data to supply services to us and to you.
We may disclose and exchange information with law enforcement agencies and regulatory bodies to follow our legal and regulatory obligations.
We may also need to share some personal data with other parties, such as potential buyers of some or all our business or during a re-structuring. Usually, information will be anonymized, but this may not always be possible. The recipient of the information will be bound by confidentiality obligations in any case.
8. Financial and Payment Information:
We do not collect and store your payment information on our systems. At the point of payment or check out you are automatically directed to a secure payment certified system of taking and processing payments, payment information, debit, credit, or bank account details, PayPal account information provided by the accredited and certified third parties expert in secure payment data processing. All payments are electronically verified, confirmed, and issued with receipts to avoid fraudulent financial activities, payment frauds and identity thefts. We do not request you direct debit payments or share any of your financial sensitive information with any of our staff members, drivers, sub-contractors and third-party partners without due protection and encryption of your information.
9. Transferring your personal data out of the UK and EEA:
To bring services to you, it is sometimes necessary for us to share your personal information outside the UK and/or European Economic Area (EEA), e.g.:
- with our offices or other companies within our group located outside the UK/EEA;
- with your and our service providers located outside the UK/EEA;
- if you are based outside the UK/EEA;
- where there is an international dimension to the services, we are providing to you.
These data transfers are subject to special rules under European and UK data protection law. We can only transfer your personal information to a country or international organization outside the UK/EEA where:
- the European Commission has issued an ‘adequacy decision’ in relation to that country or international organization; or
- there are proper safeguards in place, together with enforceable rights and effective legal remedies for data subjects; or
- a specific exception applies under data protection law.
These are explained below.
10. European Commission adequacy decision:
The European Commission has the authority to decide whether a country or international organization provides a satisfactory level of protection for personal information and, if it does, to issue an ’adequacy decision’. The impact of such a decision is that personal information can be transferred from the UK/ EEA to that country without any added protections.
It may take several years for the European Commission to issue an adequacy decision and only a few countries currently benefit from one. If we transfer personal information to a country, we will ensure it has the benefit of an adequacy decision.
11. Transfers with right safeguards:
We may transfer your data to a third country or international organization on this ground where we are assured the transfer follows data protection law, appropriate protections are in place, and enforceable rights and effective legal remedies are available for data subjects.
The safeguards will usually include using standard data protection contract clauses approved by the European Commission.
12. Transfers under an exception:
In the absence of an adequacy decision or appropriate safeguards, we may transfer personal information to a third country or international organization where an exception applies under relevant data protection law, e.g.:
- you have explicitly consented to the proposed transfer after having been informed of the possible risks;
- the transfer is necessary for the performance of a contract between us or to take pre-contract measures at your request;
- the transfer is necessary for a contract in your interests, between us and another person; or
- the transfer is necessary to prove, exercise or defend legal claims
We may also transfer information for the purpose of our compelling legitimate interests, so long as those interests are not overridden by your interests, rights, and freedoms. Specific conditions apply to such transfers, and we will provide relevant information when we look to transfer your personal information on this ground.
13. Further information on data transfer:
If you would like further information about data transferred outside the UK or EEA, please contact us.
14. Retention Period – How long we keep your personal data:
We will keep your personal data after we have performed our contract or completed the task assigned by you. We will do so for one of these reasons:
- to respond to any questions, complaints or claims made by you or on your behalf;
- to show that we treated you fairly;
- to keep records required by law.
We will not keep your data for longer than necessary for the purposes set out in this policy and by the law. Different retention periods apply for diverse types of data. After retention period, your personal data is securely disposed of.
15. Your rights:
You have control over your own information. You have the following rights, which you can exercise free of charge according to the UK and the EU laws:
Information Right: You have the right to know what information about you is collected, how this is being processed, and for how long it is being kept.
Access: The right to be provided with a copy of your personal data.
Rectification: The right to require us to correct any mistakes in your personal data.
Removal: The right to require us to remove your personal data – in certain situations.
Processing Restriction: The right to require us to restrict processing of your personal data in certain circumstances, e.g., if you contest the accuracy of the data.
Portability: The right to receive the personal data you provided to us, in a structured, commonly used, and machine-readable format and/or send that data to a third party—in certain situations
Right of Objection: The right to object:
- at any time to your personal data being processed for direct marketing (including profiling);
- certain other situations to our continued processing of your personal data, e.g., processing conducted for the purpose of our legitimate interests.
Automated Decision Making and Profiling: The right not to be subject to a decision based solely on automated processing (including profiling) that produces legal effects concerning you or equally significantly affects you.
For more information on each of those rights, including the situations in which they apply, please contact us, or see the Guidance from the UK Information Commissioner’s Office (ICO) on individuals’ rights under the General Data Protection Regulation.
If you would like to exercise any of those rights, please email, call, or write to us; and
- let us have sufficient information to find you (e.g., your full name, address and client or matter reference number);
- let us have evidence of your identity and address (a copy of your driving license or passport and a recent utility or credit card bill); and
- let us know what right you choose to exercise and the information to which your request concerns.
16. Keeping your personal data secure:
We have appropriate security measures to prevent personal data from being accidentally lost, used, or accessed unlawfully. We restrict access to your personal data to those who have a genuine business need to access it. Those processing your information will do so only in an authorized manner and are subject to a duty of confidentiality.
We also have procedures in place to deal with any suspected data security breach. We will let you know and any applicable regulator of a suspected data security breach where we are legally required to do so.
17. Cookies Policy:
We normally use three types of cookies:
Website functionality cookies:
These cookies enable you to browse the website and use our features such as using a registered account and booking journeys.
Website analytics cookies:
We use these cookies to measure and analyse how our customers use the website. This allows us to continuously improve our website and your booking experience.
Customer preference cookies:
When browsing, the website will remember preferences you make (for example remembering your login, language, or location). This makes your browsing experience simpler, easier, and more personal to you.
By using our website, you agree that we can place these types of cookies on your device and access them when you visit the site in the future.
If you want to delete any cookies that are already on your computer, please refer to the help and support area on your internet browser for instructions on how to locate the file or directory that stores cookies.
Information on deleting or controlling cookies is available at www.AboutCookies.org.
Please note that by deleting our cookies or disabling future cookies, you may not be able to access certain areas or features of our site.
18. Use of our services by children:
We do not allow children under the age of 18 to use our facilities and services without the consent, approval, and supervision of their legal guardians / parents. In any event, parents or the legal guardians are responsible for their children’s use of our facilities and services.
19. Encryption of data sent between us:
All communication, transactions, and correspondence between us by electronic means at our website or other sources and channels are encrypted and data is protected through duly licensed and certified third parties who are expert in their respective fields.
All calls, messages, chat sessions are recorded and encrypted for protection, compliance, and regulatory requirements.
All written and postal communication and correspondence are protected, kept, and shredded when needed according to the procedures derived from rules, regulations, and laws of the UK.
21. Concerns and Complaints:
We hope that we can resolve any query or concern you may raise about our use of your information. When you contact us or the supervisory authority, please clearly mention where you work, normally live or where any alleged infringement of data protection laws occurred. MiniCabRide Limited has its own comprehensive concerns or complaints’ resolution policy. We would appreciate the opportunity to talk to you about any of your concerns about your personal data.
The General Data Protection Regulation (GDPR) also gives you right to lodge a complaint with a supervisory authority, in the European Union or European Economic Area.
If you prefer to share your concern with the supervisory authority, the supervisory authority in the UK is the Information Commissioner who may be contacted at https:/ / ico.org.uk/concerns or telephone. 0303 723 1173. We would, however, appreciate the opportunity to talk to you about your concern before you approach the ICO.
If you are in any way dissatisfied about how we process your personal data, you have a right to lodge a complaint with the Information Commissioner’s Office (ICO). This can be done at https://ico.org.uk/make-a-complaint/.
22. Compliance with the law:
23. Communicating with us – Our contact details:
Please contact us by:
Post at our Postal Address: 24 Frognal Court, Finchley Road, London, England, NW3 5HG
Email at our Email Address: info@MiniCabRide.com
Telephone: Please contact our control centre on +44207 005 0090