Legal

Privacy policy

How personal data is processed for bookings, contact requests, and payments.

Last updated: February 24, 2026

1. Data controller and contact

Warsaw Ride is the data controller.

Privacy contact: service@warsawride.com, phone +48 574254347, address: Warsaw, Mazowieckie, Poland.

2. Categories of data

  • Booking data: route, pickup date and time, passenger count, flight details, selected vehicle.
  • Contact data: full name, email, phone number, message content.
  • Billing data: invoice details and payment status information.
  • Technical data: system logs, basic analytics and security-related records.

3. Purposes and legal bases

  • Booking intake and service delivery (Art. 6(1)(b) GDPR).
  • Payments, accounting and tax obligations (Art. 6(1)(c) GDPR).
  • Operational communication and service quality (Art. 6(1)(b) and (f) GDPR).
  • Platform security, legal claims handling and defense (Art. 6(1)(f) GDPR).
  • Marketing activities only with separate consent (Art. 6(1)(a) GDPR).

4. Data recipients

Data may be shared with processors only to the extent required to provide the service.

  • online payment providers (for example Stripe),
  • IT infrastructure, hosting and email service providers,
  • maps and geolocation providers used for trip execution,
  • accounting, legal advisors and public authorities where required by law.

5. Retention periods

  • booking and billing data: for periods required by tax and accounting laws,
  • contact form submissions: for inquiry handling and then for the period needed to defend legal claims,
  • consent-based processing: until consent is withdrawn.

6. Your rights

  • right of access and copy of your data,
  • right to rectification, erasure and restriction,
  • right to data portability,
  • right to object to processing based on legitimate interest,
  • right to withdraw consent at any time,
  • right to lodge a complaint with the competent supervisory authority.

7. Profiling and transfers outside the EEA

We do not make solely automated decisions that produce legal effects for you.

If a technology provider processes data outside the EEA, we apply GDPR-compliant safeguards (for example standard contractual clauses).

8. Security and policy updates

We apply organizational and technical safeguards appropriate to risk, including access control and encrypted transmission.

This policy may be updated when required by law, technology changes, or service scope updates.

Chat on WhatsApp

Privacy and cookies

We use essential cookies to run the website. Analytics is enabled only after your consent.

Cookies policy