Greystar Mobility GmbH Privacy Policy

When Greystar Mobility GmbH collects personal data from users

“Greystar Mobility GmbH employs various methods to collect data through its website and mobile applications
Further information regarding data collection is provided below.

Data Collection on the Website

1. Visitor/information collector User

   Greystar Mobility GmbH does not store any personal data in its database until you register or actively connect to our website. For improved user experience and barrier-free access, we utilize Google Analytics to analyze website traffic. The Greystar Mobility GmbH website relies on the third‑party service Google Analytics, a web analytics solution provided by Google, Inc.When users visit our website, certain data is collected in accordance with Article 6 (Lawfulness of Processing), paragraph 1 of the GDPR. This processing is necessary to display our website correctly and to maintain its stability and security. Google Analytics uses cookies, which are text files stored on your device, enabling the analysis of how visitors interact with the website. The information generated by these cookies about your use of the website (including your IP address) is transmitted to Google and stored on servers located in the United States.

2. Website Cookies

   A cookie generally consists of two pieces of information: a unique identifier for each user and the name of the website. Cookies enable websites to retrieve this information upon your return, allowing them to recognize you, remember your preferences, and adapt content accordingly.When IP anonymisation is activated, Google shortens (anonymises) the last octet of the IP address within the Member States of the European Union and other signatories of the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transmitted to Google’s servers in the United States before being shortened.On behalf of the website operator, Google uses this information to evaluate website usage, compile reports on website activity, and provide additional services related to website and internet usage. Google does not merge your IP address with any other data stored by Google.You may refuse the use of cookies by selecting the appropriate settings in your browser. However, it is strongly recommended not to disable cookies unless necessary, as this may limit the full functionality of the website. Additionally, you can prevent the collection and processing of data (cookies and IP address) by Google by installing the browser add‑on available at: https://tools.google.com/dlpage/gaoptout?hl=en-GB Where consent for cookies is required, and such consent has been given, processing takes place exclusively on the basis of Article 6 (1) GDPR (Lawfulness of Processing). The data collected via cookies is stored separately from any other personal information provided to us. In particular, we do not link cookie data with other personal information.You may also opt out of Google Analytics by clicking the following link: Disable Google Analytics. An opt‑out cookie will then be set on your device to prevent future tracking when visiting this website.For more details on Google’s terms of use and data protection, please visit: http://www.google.com/analytics/terms/gb.html https://www.google.de/intl/en_uk/policies/

Collection of user data on a website after Sign Up/Registration

All personal data is processed exclusively in accordance with the provisions of the EU General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG), and the Telemedia Act (TMG). We collect, store, and process personal information pursuant to Article 6, paragraph 1, letter b of the GDPR for the purpose of providing and managing transportation services (in particular administrative organisation and accounting), including the handling of potential warranty claims, as well as for operational organisation.

1. User Sign Up

   When a user wishes to make a booking via the website of Greystar Mobility GmbH, registration is required. During the registration process, certain personal information must be provided. This includes the user’s title, first name, last name, mobile phone number, email address, and a password of their choice.

2. Why Greystar get data at signup

   This information enables us to identify and communicate with users. The legal basis for this processing is Article 6 (1)(b) GDPR (Lawfulness of Processing). During registration, the provision of this user data is mandatory. Any additional information may be provided voluntarily when using our website. Following registration, we create a password‑protected customer account that grants you direct access to the data stored with us.

3. Data needed for booking

   To book a chauffeur, we require the user’s first name, last name, mobile phone number, and email address in order to uniquely identify the user, communicate with them, process the booking, and confirm the reservation. In addition, we require the user’s payment details to enable payment by debit, credit, or MasterCard. These payment details are necessary for processing the transaction.

4. Coordination of third-party services

   1. Stripe (Payment service)

      All bookings with Greystar Mobility GmbH can be paid by credit or debit card. Credit card details are stored upon the first booking and are protected against unauthorized access. For this purpose, we use a certified payment service provider whose systems comply with the applicable security standards, including the PCI DSS (Payment Card Industry Data Security Standard). In the case of recurring transactions, the card data is stored by our appointed PCI DSS‑certified payment provider. The legal basis for this processing is Article 6 (1)(b) GDPR (performance of a contract).Greystar Mobility GmbH does not itself store full credit card details; they are only retained in truncated form for analysis or fraud prevention purposes. The legal basis for this is Article 6 (1)(f) GDPR (legitimate interests).Card payments are processed through the payment service provider Stripe. For further information, please refer to Stripe’s Privacy Policy at: https://stripe.com/privacy and the Data Processing Agreement between Stripe and Stripe users at: https://stripe.com/legal/dpa

   2. Twilio (SMS Service)

      We use your mobile phone number to send you information about your chauffeur (name, surname, phone number, license plate number, and vehicle type), as well as updates regarding the chauffeur’s arrival, via SMS. For the purpose of sending SMS messages, we use the service provider Twilio, operated by Twilio Inc., 645 Harrison St, 3rd Floor, San Francisco, CA 94107, USA. For this purpose, your mobile phone number is transmitted to Twilio and stored there until you delete your Greystar Mobility GmbH user account. Following the deletion of your account, we will instruct Twilio to erase your data. The legal basis for this processing is Article 6 (1)(b) GDPR (performance of a contract). According to Commission Decision (EU) 2016/1250 of 12 July 2016, data may be transferred from controllers or processors within the EU to organizations in the United States that have self‑certified under the EU‑US Privacy Shield Framework, including the Supplemental Principles, with the U.S. Department of Commerce. Twilio has committed to these principles through self‑certification with the U.S. Department of Commerce. Further information on Twilio’s data protection practices can be found at: https://www.twilio.com/legal/privacy

   3. Google maps

      We use Google Maps, a service provided by Google, on this website (for more information about Google, see section B.2.1). This integration allows us to display interactive maps directly on our website and to provide convenient use of the map functionality. The legal basis for this processing is Article 6 (1)(a), (b), or (f) GDPR. When you access our website, Google is informed that you have visited the corresponding subpage. In addition, the data specified in section B.1.1 of this Privacy Policy is transmitted. This occurs regardless of whether you are logged into a Google account or whether such an account exists. If you are logged into Google, your data will be directly linked to your account. If you do not wish your data to be associated with your Google profile, you must log out before activating the button. Google stores your data in the form of usage profiles and uses it for purposes such as advertising, market research, and/or the demand‑oriented design of its websites. Such evaluation takes place in particular (even for users who are not logged in) in order to provide tailored advertising and to inform other social network users about your activities on our website. Google Maps retains data linked to the ID for 60 days. You have the right to object to the creation of these user profiles, and you must contact Google directly to exercise this right. Further information on the purpose and scope of data collection, as well as its subsequent processing and use by Google, along with your rights and available privacy settings, can be found at: https://www.google.de/intl/de/policies/privacy

   4. Google analytics

      This website uses Google Analytics, a web analytics service provided by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). Google Analytics uses cookies (see section B.2.1 for more information) to analyze how users interact with this website. The information generated by the cookie about your use of the website is generally transmitted to and stored by Google on servers in the United States. With IP anonymisation enabled, Google shortens/anonymises the last octet of the IP address within the Member States of the European Union as well as in other contracting states of the Agreement on the European Economic Area. You can also prevent the collection and processing of data (cookies and IP address) by Google by downloading and installing the browser plug‑in available at: https://tools.google.com/dlpage/gaoptout?hl=en-GB If you have consented to the use of cookies and confirmed the associated technologies, processing is carried out exclusively on the basis of this consent in accordance with Article 6 (1)(a) GDPR (Lawfulness of Processing). Data collected in this way is stored separately from any other information you may have provided to us. In particular, cookie data is not linked with other personal information You can disable Google Analytics at any time by clicking the following link: Disable Google Analytics. This will set an opt‑out cookie on your device to prevent the future collection of your data when visiting this website. Further information on Google’s terms of use and data protection can be found at: https://www.google.com/analytics/terms/gb.html https://www.google.de/intl/en/policies/
      https://policies.google.com/privacy
      https://www.google.com/analytics/terms/us.html
      https://support.google.com/analytics/answer/6004245?hl=en

Data Collection when using Mobile Application

1. Installation Of Mobile APP

   When downloading mobile applications, the necessary information is transferred to the App Store (Apple App Store and Google Play), i.e. in particular the name, e-mail address and customer number of your customer account, the time of download, payment information and personal device identification number. We have no influence on the collection of this data and are not responsible for it. We only process this data when it is necessary to download mobile applications to your mobile device

2. Collecting data When You Use Our Mobile App

   When you use the mobile app, we collect personal data to enable convenient access to the features. The information we collect (name and content of the website accessed, IP address, date and time of the request, time zone difference from Greenwich Mean Time (GMT), amount of data transferred, access status/HTTP status code (Referrer URL), browser type, your operating system and its interface, browser software language and version). If you choose to use our mobile application, we collect the data specified above on the basis of Art. 6 Par. 1 S. 1 lit. f) GDPR, which is technically necessary to provide you with the functionality of our mobile application and to guarantee stability and security. We also need your device ID, your unique International Mobile Equipment Identity (IMEI) number, your International Mobile Subscriber Identity (IMSI) number, your mobile phone number (MSISDN), your MAC address for WIFI access, the name of your mobile device and your email address.

3. Location Data Access Via GPS

   Greystar Mobility GmbH uses GPS positioning to ensure a comfortable and smooth ride. You can only use this function after you have given your prior consent via the relevant pop-up window that we may collect your location data via GPS and your IP address in an anonymised form for the purpose of providing rides. In addition, we collect anonymised location data on an ongoing basis to determine traffic flow and to improve the efficiency of route planning for our users based on this data. You can enable or disable this setting at any time in your operating system settings and enable or disable access to your location therein. Your location will only be communicated to us if you have activated access to your location. The legal basis for the processing is GDPR (General Data Protection Regulation),Article 6 (1) sentence 1 (a) or (f) .

4. Cookies

   The mobile app does not use cookies.

5. Coordination of third-party services

   1. Stripe (Payment service)

      All bookings with Greystar Mobility GmbH can be paid by credit or debit card. Credit card details are stored upon the first booking and are protected against unauthorized access. For this purpose, we use a certified payment service provider whose systems comply with the applicable security standards, including the PCI DSS (Payment Card Industry Data Security Standard). In the case of recurring transactions, the card data is stored by our appointed PCI DSS‑certified payment provider. The legal basis for this processing is Article 6 (1)(b) GDPR (performance of a contract).Greystar Mobility GmbH does not itself store full credit card details; they are only retained in truncated form for analysis or fraud prevention purposes. The legal basis for this is Article 6 (1)(f) GDPR (legitimate interests).Card payments are processed through the payment service provider Stripe. For further information, please refer to Stripe’s Privacy Policy at: https://stripe.com/privacy and the Data Processing Agreement between Stripe and Stripe users at: https://stripe.com/legal/dpa

   2. Twilio (SMS Service)

      We use your mobile phone number to send you information about your chauffeur (name, surname, phone number, license plate number, and vehicle type), as well as updates regarding the chauffeur’s arrival, via SMS. For the purpose of sending SMS messages, we use the service provider Twilio, operated by Twilio Inc., 645 Harrison St, 3rd Floor, San Francisco, CA 94107, USA. For this purpose, your mobile phone number is transmitted to Twilio and stored there until you delete your Greystar Mobility GmbH user account. Following the deletion of your account, we will instruct Twilio to erase your data. The legal basis for this processing is Article 6 (1)(b) GDPR (performance of a contract). According to Commission Decision (EU) 2016/1250 of 12 July 2016, data may be transferred from controllers or processors within the EU to organizations in the United States that have self‑certified under the EU‑US Privacy Shield Framework, including the Supplemental Principles, with the U.S. Department of Commerce. Twilio has committed to these principles through self‑certification with the U.S. Department of Commerce. Further information on Twilio’s data protection practices can be found at: https://www.twilio.com/legal/privacyhttps://www.twilio.com/en-us/legal/privacy

   3. Google maps

      This mobile application uses Google Maps, a service provided by Google (see section B.2.1 for further details about Google). This integration enables us to display interactive maps directly within the app and allows convenient use of the map functionality. The legal basis for this processing is Article 6 (1)(a), (b), or (f) GDPR. When you use our mobile app, Google receives information indicating that you have accessed the relevant sub‑page of the app. In addition, the data specified in section C.1 of this Privacy Policy is transmitted. This applies regardless of whether you are logged into a Google account or whether no such account exists. If you are logged into Google, your data will be directly linked to your account. If you do not want your data to be associated with your Google profile, you must log out before activating the function. Google stores your data in the form of usage profiles and processes it for advertising, market research, and/or the demand‑oriented design of its websites. Such evaluations are carried out in particular (even for users who are not logged in) to deliver targeted advertising and to inform other users of social networks about your activities in our app. Google Maps retains the data associated with the ID for 60 days. You have the right to object to the creation of these usage profiles. To exercise this right, you must contact Google directly. Further information regarding the purpose and scope of data collection, as well as its further processing and use by Google, together with your rights and privacy settings, can be found here: https://www.google.de/intl/de/policies/privacyhttps://policies.google.com/privacy?hl=en

   4. Google analytics

      This mobile application uses Google Analytics, a mobile analytics service provided by Google (see section B.2.1 for more information about Google). Google Analytics uses your mobile device’s Instance ID to identify individual installations of this mobile application. Since each Instance ID is unique to a specific app and device, it enables Google Analytics to reference individual app instances. With IP anonymisation enabled, Google truncates/anonymises the last octet of the IP address within Member States of the European Union as well as other contracting states of the Agreement on the European Economic Area. IP anonymisation is active within this mobile application. On behalf of Greystar Mobility GmbH, Google uses this information to evaluate the use of the mobile application, to generate reports on app activity, and to provide additional services relating to the use of the mobile application and internet usage to Greystar Mobility GmbH. The IP address transmitted by the mobile application within the scope of Google Analytics is not combined with other Google data. The legal basis for the use of Google Analytics is Article 6 (1)(a) or (f) GDPR. You may prevent Google from collecting and processing data generated by the Instance ID (including your IP address) in connection with your use of the mobile application by opting out in the settings of this mobile app

Data deletion and storage time

We process and store personal data only for as long as necessary to fulfil the purposes of processing, and only for the period required by applicable laws or regulations governing the controller.

If the purpose of storage no longer applies or if a statutory retention period has expired, the personal data will be routinely restricted or deleted in accordance with the applicable legal provisions.

Changes to This Privacy Policy

Entfällt der Speicherungszweck oder läuft eine gesetzliche Aufbewahrungsfrist ab, werden die personenbezogenen Daten routinemäßig gesperrt oder gemäß den geltenden gesetzlichen Bestimmungen gelöscht.
We will inform you of any changes to this Privacy Policy by email and/or by means of a prominent notice on our services before such changes take effect. In addition, we will update the “Effective Date” at the top of this Privacy Policy.
We encourage you to review this Privacy Policy periodically to stay informed about any updates. Changes to this Privacy Policy will take effect once they are published on this page.

Contact Us

If you have any questions about this Privacy Policy, please contact us by email: mail@drivegreystar.com