+34 612 47 23 29

Privacy Policy

Your privacy is important to us

Learn how Barcelona Executive Travel collects, uses, and protects your personal data in compliance with GDPR and Spanish law.

Privacy Policy

Your privacy is important to us. Learn how Barcelona Executive Travel collects, uses, and protects your personal data in compliance with GDPR and Spanish law.

1. Introduction

1.1 Purpose

This Privacy Policy explains how Barcelona Executive Travel (“we”, “us”, “our”) collects, uses, shares, and protects personal data when you use our website, booking system, and related services. It also explains your rights under applicable data protection laws and how to exercise them.

1.2 Scope

This Policy applies to our website and booking flows at barcelonaexecutivetravel.com, communications via email, phone, WhatsApp or contact forms, and cookies or similar technologies. It does not apply to third-party websites or services.

1.3 Who we are

Barcelona Executive Travel is a private hire/taxi service operating in Spain. We are the data controller for the processing described in this Policy.

2. Data Controller Information

Trade Name: Barcelona Executive Travel
Business Activity: Private taxi and chauffeur services in Barcelona
Email: info@barcelonaexecutivetravel.com
Phone: +34 612 47 23 29
Website: https://barcelonaexecutivetravel.com

3. Data We Collect

3.1 Personal Data from Bookings

  • Identity data: first name, last name, passenger details
  • Contact data: email address, phone number, billing address
  • Booking details: pickup and drop-off locations, date/time of travel, flight number, luggage, number of passengers
  • Payment data: online payments via Stripe; we do not store card numbers or CVV codes
  • Communication records: emails, WhatsApp messages, or form submissions

3.2 Automatically Collected Data (Cookies, Analytics)

  • Technical data: IP address, browser type, device info, operating system
  • Usage data: pages visited, time on site, navigation patterns
  • Analytics data via Google Site Kit/Analytics (only if consented)

4. Purpose and Legal Basis of Processing

  • Service provision and booking management: register and manage reservations, allocate drivers, process payments. Legal basis: Performance of a contract (Art. 6.1(b) GDPR)
  • Payment processing: online or direct payments. Legal basis: Contract & legal obligation (Art. 6.1(b) & (c) GDPR)
  • Communication: booking confirmations and inquiries. Legal basis: Performance of a contract
  • Analytics: improve website and services using Google Analytics. Legal basis: Consent
  • Legal compliance: tax, accounting, consumer law obligations. Legal basis: Legal obligation
  • Marketing communications: if opted-in, with ability to withdraw consent. Legal basis: Consent

5. How We Share Data

  • Drivers: share necessary booking details; responsible handling required
  • Payment processor (Stripe): handles online payments securely; never store card data
  • Hosting provider (Hostinger): server access under GDPR-compliant DPA
  • Analytics tools (Google): collect traffic data only with consent
  • Authorities: disclose personal data if legally required or to protect rights

6. Data Retention Periods

  • Booking and service data: 5 years (Spanish tax regulations)
  • Payment records: 5 years; card data via Stripe not stored
  • Communications: 2 years
  • Analytics: per Google settings (14–26 months)
  • Marketing: until consent withdrawal

7. User Rights

  • Access, rectification, erasure, restriction, portability, objection, withdraw consent
  • Exercise rights via Section 13 contact info; proof of identity may be required

8. Cookies and Tracking Technologies

  • Strictly necessary: essential for website operation
  • Functional: preferences and settings
  • Analytics: only activated with consent
  • Marketing: only with consent

9. International Data Transfers

Some data may be transferred outside the EEA (e.g., Stripe, Google) using Standard Contractual Clauses to ensure GDPR compliance.

10. Security Measures

  • Secure connections via SSL/TLS (HTTPS)
  • Restricted access for personnel and drivers
  • Data minimization and hosting security via Hostinger
  • Third-party GDPR-compliant processors (Stripe, Google, CookieYes)
  • Monitoring and timely updates; breach notifications per GDPR

11. Children’s Data

Services not directed at children under 16. Personal data of children deleted if collected without consent. Parents/guardians responsible for supervision.

12. Changes to this Privacy Policy

We may update this Policy for legal, technical, or operational reasons. Significant changes will be posted with an updated “Last updated” date.

13. Contact Information

For questions, exercising your rights, or clarifications:
Email: info@barcelonaexecutivetravel.com
Phone: +34 610 606 780