PRIVACY POLICY
As of: February 16, 2025
General Information
The following information provides an overview of what happens with your personal data. Personal data includes all information relating to an identified or identifiable natural person (hereinafter "data subject"). We process personal data according to your wishes and in compliance with German and European data protection laws.
Information on the Responsible Party
The responsible party for data processing is:
RideLink GmbH Cassellastraße 30-32 60386 Frankfurt Email: [email protected]
Data Protection Officer
We have appointed an external data protection officer for our company:
Frederic Paul RideLink GmbH Cassellastraße 30-32 60386 Frankfurt Email: [email protected]
Frederic Paul is available as the internal data protection contact and will respond to your inquiries regarding the handling of your personal data. Please contact him directly for data protection concerns.
What Data Do We Collect? How Do We Collect Your Data?
(1) Communication Data Your personal data is collected when you register to use the RideLink services. To ensure that the authorized person and not someone else has given consent, an email is sent to you which you must confirm. This procedure is called Double-Opt-In (DOI). In the case of advertising consent, all data documenting and verifying your consent is collected and recorded. This primarily includes your age, first and last name, full address, the date, IP address of consent, and documentation of the DOI process.
(2) Communication Metadata Some data is additionally collected automatically by our IT systems. These are mainly technical data (date, time, IP address). Such data is referred to as “electronic communication metadata.”
(2) Use of Location Data Our app collects and uses real-time location data to provide you with accurate routes, navigation suggestions, traffic information, and other driving-related features. Location information is collected via GPS and other location services on your device and is used exclusively to enhance your navigation experience. These data are not shared with third parties without your consent, except as required by law or to provide essential app services. You can manage location permissions in your device settings. Note that disabling these permissions may limit app functionality.
(3) Server Log Files The provider of the pages automatically collects and stores information in so-called server log files that your browser automatically transmits to us.
These include: - Browser type and version - Operating system used - Referrer URL - Hostname of the accessing computer - Time of the server request - IP address The basis for data processing is Art. 6(1)(f) GDPR, which permits data processing for the fulfillment of a contract or pre-contractual measures.(4) Contact Form If you send us inquiries via the contact form, the information you provide, including contact details, will be stored and processed to handle your inquiry and for any follow-up questions. We do not share this data without your consent. Processing of data entered into the contact form is based solely on your consent (Art. 6(1)(a) GDPR). You can revoke this consent at any time via a simple email. The legality of data processing performed up to the point of revocation remains unaffected. The data you provide in the contact form will remain with us until you request deletion, revoke consent, or the purpose of storage no longer applies (e.g., after your inquiry has been fully processed). Mandatory legal provisions, especially retention periods, remain unaffected.
(5) Registration for RideLink Services You can register on our website to use additional features of the site or app. Data provided during registration is used only for the purpose of using the specific service for which you registered. Required information must be provided completely; otherwise, registration will be denied. Important updates, such as changes to the service or necessary technical modifications, will be communicated via the email provided during registration. Processing of registration data is based on your consent (Art. 6(1)(a) GDPR), which you can revoke at any time by email. Data will be stored while you are registered and deleted afterwards. Legal retention requirements remain unaffected.
(6) Processing of Customer and Contract Data We collect and process personal data only as necessary to establish, shape, or modify the legal relationship (inventory data). This is based on Art. 6(1)(b) GDPR, allowing data processing for the fulfillment of a contract or pre-contractual measures. Usage data from our website is collected and processed only to enable the service or billing. Customer data is deleted after order completion or business relationship termination. Legal retention periods remain unaffected.
(7) Plugins, Analytics Tools, and Third-Party Tools Your browsing behavior may be statistically analyzed when visiting our website, mainly via cookies and analytics programs. Analysis is generally anonymous and cannot be traced to you. You can prevent or opt out of this analysis by not using certain tools. Further details are in the section “How We Use Your Data.”
How Do We Use Your Data?
(1) Advertising Consent and Direct Marketing In exchange and to finance RideLink services, you consent to receive direct marketing. When you give this consent, your data is used for the advertising purposes explained at the time of consent. This includes email advertising to which you have specifically consented. Your data is stored and used to prove your consent for direct marketing.
(2) Logging Collection of electronic communication metadata at the time of giving advertising consent serves to document and, if necessary, prove when and how you provided consent. Under German and European law, we may need to demonstrate this consent. Therefore, communication metadata is linked to your personal data entered in the contact form before consent.
(3) Blacklists Blocked data is recorded on a “blacklist” to prevent further advertising. It remains stored to verify consent if necessary. It will not be used for advertising in this case.
(4) Statistics and Data Enrichment To tailor database records to customer needs and deliver targeted advertising, records are enriched with metadata.
(5) Legal Basis for Using Communication Data
Processing of your personal data for these purposes is permitted under Art. 6(1)(a), (b), (c), and (f) GDPR, and Art. 22(2) and (3) GDPR. Statistics and enrichment are performed only with your active consent. Legitimate interest under Art. 6(1)(f) GDPR for enrichment exists because it allows targeted advertising without spamming uninterested users and is relevant for advertising compensation.
Logging of electronic consent, including metadata, is based on Art. 6(1)(f) GDPR as a legitimate interest for proof. Legitimate interests for different processing purposes are explained above (points 1–4).
Use of Plugins and Tools, Especially Analytics Tools
(1) Cookies Our website uses cookies, which do not harm your computer or contain viruses. Cookies improve usability, efficiency, and security. Most are session cookies deleted after your visit; others remain until you delete them. You can manage cookies via your browser. Disabling cookies may limit website functionality. Cookies necessary for communication or requested features are based on Art. 6(1)(f) GDPR. Other cookies, like analytics cookies, are described separately in this privacy policy.
(2) Google Analytics This website uses Google Analytics, provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google Analytics uses cookies to analyze your website usage. Information is usually transmitted to and stored on Google servers in the USA. Storage is based on Art. 6(1)(f) GDPR. IP anonymization is enabled. You can prevent data collection via a browser plugin: https://tools.google.com/dlpage/gaoptout?hl=de.
Objection to Data Collection
You can prevent Google Analytics from collecting data by clicking the following link, which sets an opt-out cookie: Disable Google Analytics.
More information on handling user data by Google Analytics: https://support.google.com/analytics/answer/6004245?hl=de.
Data Processing Contracts
(1) We have a data processing contract with Google and fully comply with German privacy authorities’ requirements when using Google Analytics.
(2) Demographics in Google Analytics We use Google Analytics demographic features to generate reports on visitors' age, gender, and interests. Data is anonymous and can be disabled in your Google account or via the data collection objection.
(3) Google AdSense Our website uses Google AdSense to display ads, which uses cookies and web beacons. Data is transmitted to Google servers in the USA and may be shared with partners, but IP addresses are not linked to other Google data. Storage is based on Art. 6(1)(f) GDPR.
(4) Google Analytics Remarketing We use Google Analytics Remarketing with cross-device features of Google AdWords and DoubleClick to deliver personalized ads. Data is linked with your Google account if you consent. You can opt out here: https://www.google.com/settings/ads/onweb/.
(5) Google AdWords and Conversion Tracking Google AdWords uses cookies for conversion tracking, valid for 30 days, for statistical purposes only. You can opt out in your browser settings. Storage is based on Art. 6(1)(f) GDPR. More info: https://www.google.de/policies/privacy/.
(6) Google Web Fonts We use Google Web Fonts for consistent font display. Your browser fetches fonts from Google servers, revealing your IP address. This is based on Art. 6(1)(f) GDPR. More info: https://developers.google.com/fonts/faq and https://www.google.com/policies/privacy/.
(7) Google Maps Our website uses Google Maps API. Your IP address is stored and usually transmitted to Google servers in the USA. We have no control over this. Usage is based on Art. 6(1)(f) GDPR. More info: https://www.google.de/intl/de/policies/privacy/.
(8) Facebook Plugins (Like & Share) Facebook plugins are embedded on our site. Visiting the site connects your browser directly to Facebook servers, which may associate your visit with your account. To prevent this, log out of Facebook. More info: https://de-de.facebook.com/policy.php.
(9) Twitter Plugin Twitter functions are embedded on our site. Using "Re-Tweet" links websites to your Twitter account. Data is transmitted to Twitter. More info: https://twitter.com/privacy and settings: https://twitter.com/account/settings.
Who Will Receive Your Data?
(1) Consent to Direct Marketing By checking the consent box, your data is used for direct marketing as explained. Data is not shared outside the EU. Partners with data processing agreements may process your data on our behalf. Data may also be shared with authorities, lawyers, data protection officers, or tax advisors if necessary.
How Long Is Your Data Stored?
Your data is stored as long as you have consented to direct marketing, and at least three more years after withdrawal due to legal claim periods. Data may remain longer if you consent again. Legal retention requirements must be respected. You have rights to access, restrict processing, correct, or delete data.
(1) Right of Access You can request information about your personal data via email ([email protected]) or mail (RideLink GmbH, Cassellastraße 30-32, 60386 Frankfurt am Main).
(2) Access for Advertising Consent For email marketing, a PDF with relevant data will be sent to your email. To receive by post or another method, provide additional contact info for verification.
(3) Correction, Restriction, Deletion You can request correction of inaccurate data, completion of incomplete data, or restriction of processing under GDPR Art. 18. Deletion is allowed under Art. 17, except if legitimate interests outweigh it or legal obligations remain. Requests via email ([email protected]) or post are recommended.
Revoking Consent and Blocking Data
(1) Revoking Personal Data Use You can revoke consent for data processing anytime. Lawfulness of processing before revocation remains. All unnecessary data is deleted, but full deletion only occurs when legal claims or authorities no longer require it. Consider special cases for advertising consent.
(2) Advertising Revocation You can revoke consent for advertising or profiling anytime. Data is then blocked and blacklisted but not fully deleted until legal claims or authorities no longer require it. You may unsubscribe from emails via the provided link or reply function.
(3) Complaints to Authorities You can file complaints with the Hessian Data Protection Officer: https://www.datenschutz.hessen.de.