Privacy Policy

1. Data Controller

Relax Rent a Car, Dame Gruev 16-2/4 B.C. Paloma Bjanka, Skopje, North Macedonia. Email: [email protected]. Phone: +389 71 392 488.

2. What Data We Collect

We collect data you provide when making a reservation or contacting us:

• Identity data: first name, last name
• Contact data: email address, phone number
• Booking data: pickup/dropoff dates, vehicle preference, payment method
• Technical data: IP address, browser type, device information (collected automatically)
• Analytics data: pages visited, session duration (via Google Analytics 4)

3. How We Use Your Data

• Process and confirm your vehicle reservation
• Communicate about your booking (confirmation, changes, support)
• Send follow-up emails about abandoned quotes (if you started a booking)
• Improve our website and services through analytics
• Comply with legal obligations

4. Legal Basis (GDPR Article 6)

• Contract performance: processing bookings you request
• Legitimate interest: fraud prevention, website security, service improvement
• Consent: marketing communications, analytics cookies
• Legal obligation: tax records, regulatory compliance

5. Cookies and Analytics

We use Google Analytics 4 (GA4) to understand how visitors use our website. GA4 collects anonymized usage data including pages viewed, session duration, and general location. You can opt out of analytics tracking through the cookie consent banner or your browser settings.

Essential cookies are used for site functionality (session management, security). These do not require consent.

6. Data Sharing

We do not sell your personal data. We share data only with:

• Payment processors: Coinbase Commerce and Binance Pay (for USDT crypto payments; EUR totals are converted to USD for checkout)
• Email service: for sending booking confirmations
• Google Analytics: anonymized usage data
• Cloudflare: website security and performance

7. Data Retention

• Booking records: 3 years (tax/legal requirements)
• Contact form requests: 1 year
• Analytics data: 14 months (GA4 default)
• Account data: until you request deletion

8. Your Rights

Under GDPR, you have the right to:

• Access: request a copy of your personal data
• Rectification: correct inaccurate data
• Erasure: request deletion of your data ("right to be forgotten")
• Restriction: limit how we process your data
• Portability: receive your data in a structured format
• Object: opt out of direct marketing

To exercise these rights, email us at [email protected]. We respond within 30 days.

9. Data Security

We protect your data using HTTPS encryption, secure session management, rate limiting, and fraud detection. Access to personal data is restricted to authorized staff only.

10. International Transfers

Your data may be processed by services located outside North Macedonia (Google Analytics in the US, Cloudflare globally). These transfers are protected by Standard Contractual Clauses or adequacy decisions.

11. Changes

We may update this policy. Material changes will be posted on this page with an updated date.

12. Contact

For privacy-related questions: [email protected] or call +389 71 392 488.