The protection of your privacy is very important to us. Hereinafter, we set out the principles that we follow and the purpose for which we collect and process your personal data (information that determines your identity or allows us to identify you), whether we acquire it directly from you (e.g., via this website, and other websites and applications operated by us) or we acquire it indirectly from our customers to whom we provide services and with whom you may have a contractual relationship.
We collect and process your personal data carefully, only for the purposes described in this Privacy Policy and only to the extent necessary as defined herein and within the scope of the applicable legal regulations, including, but not limited to, the EU General Data Protection Regulation (GDPR). We only store your personal data to the extent and for as long as it is required for the performance of our services or as we are otherwise legally obligated to do.
You can visit our website and obtain information about us and our solutions without disclosing personal data. We only capture personal data when you voluntarily disclose it by filling in an online form (e.g., on the Contact Us page) or by e-mailing us. If you give us your personal data (e.g., name, e-mail address, telephone number, postal address, etc.) in relation to a query about our business services, or in relation to a business transaction, we will only use those details to communicate with you.
When you access our website, our system automatically records technical information about the computer accessing it. The data collected is information about the browser type and the version used, the operating system, the internet provider and the IP address of the user, the date and time of access, the websites from which the user’s system obtains access to our website, and the websites accessed by the user’s system via our website.
Our website does not directly use so-called browser cookies to track user behaviour. We do, however, use Google Analytics to collate and analyse data relating to the performance of our website pages. To do this, Google Analytics sets a small number of such cookies, which are stored by your web browser. Google Analytics does not provide personal information about you. We use Google Analytics because it enables us to see, for example, which website pages and web browsers are most popular, which computer devices and specifications are most popular, which days and times are the busiest, and other information of this nature. This analysis helps us to design the website and write content that better meets the needs of our visitors. You can find more information about Google Analytics Cookies at the official Google Analytics Cookies page.
Other than direct interactions that you have with us via our website or other electronic communication channels, we operate exclusively as a data processor to our customers (who are the data controllers) and act on their instruction in terms of written contracts we have with them whereby we provide specialised telematics-related services to them so that they, in turn, can offer you value-added services and solutions. The legal basis for collecting and processing personal data is, therefore, to enable us to fulfil our contractual obligations to our customers and, in turn, to enable them to fulfil their mandate to you.
The personal data that we collect, process and enrich from and about you is limited to those categories and types of data that are necessary to enable us to provide the specific types of services that we are contracted to by our customers. Personal data in our platforms includes driver information, vehicle data, telematics data (including periodic location data, driving behaviour modelling and accident event data), insurance policy information and links between these data types. Not all categories of data apply to all of our services and solutions. We do not process any special categories of personal data as that term is defined in the GDPR.
Data is held within an industry-leading security-certified Tier 1 data centre and cloud infrastructure provider located within the European Economic Area (EEA) with the highest levels of security, data confidentiality, integrity and availability. Full details of the provider (including its security certifications) are available on request. For EU Customers and/or Data Subjects, we do not store personal data outside the European Economic Area (EEA).
We protect your personal data by means of appropriate technical and organisational security measures and store it solely on our secure servers. Your personal data is secured against loss, destruction and manipulation and against access, modification or distribution by unauthorised persons by means of industry-standard measures in accordance with the state of the art. Sensitive data is encrypted both during transmission over the Internet and at rest when it is stored in our system and databases.
In order to meet the purposes set out in this Privacy Policy, we may disclose personal data to other entities within our group of companies, as well as to subcontractors and service providers who assist us in connection with the ways we use personal information (for instance, providing support). We take great care where possible only to work with subcontractors and service providers who we believe maintain an acceptable standard of data security compliance. We require all third parties to agree to process this information based on our instructions and requirements consistent with this Privacy Policy and the GDPR. We may also disclose personal data to regulators and government authorities in connection with our compliance procedures and obligations or where we are otherwise authorised or required by law to do so. We do not sell, broker or pass on personal data for any purpose than set out in this Privacy Policy.
We process personal data, and allow it to be processed by third parties, both in the EEA and abroad (including in countries where legislation does not guarantee appropriate data protection) in order to meet the purposes stated in this Privacy Policy. In the case of the transfer of data to countries without appropriate data protection legislation, we ensure that all required measures required are implemented in order to protect personal data in accordance with the applicable data protection law (generally by signing recognised data protection agreements).
We will process personal data throughout the duration of any contract we have with a customer and, thereafter, will continue to store only the personal data needed to meet any legal obligations and for our legitimate business interests. The information we retain will be handled in accordance with this Privacy Policy and as soon as any personal data is no longer needed, it will be securely deleted.
You have the right to information, correction, deletion and transferability of your data. Furthermore, you have the right to restrict its processing. You have the right to object to the processing of your personal data, but please note that such an objection only has future effect and does not affect previous processing.
For the assertion of these rights, you can contact us at the address given below. If you feel that we have not complied with applicable data protection law, you have the right to file a complaint directed at the competent regulatory authority.
Visit our Contact Us page
We have appointed the following organisation to act as our official representative for the purpose of handling GDPR enquiries, specifically for and limited to EU Authorities, Customers and/or Data Subjects.
We review our Privacy Policy regularly and update it as required. We will inform you of any important changes (e.g., on our website).