Privacy policy

As you surely know, the entry into force of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of personal data (hereinafter RGPD), highlights the need to strengthen the levels of security and protection of personal data.


We want to inform you that we comply with all the requirements that this legislation requires and that all the data, under our responsibility, are being treated in accordance with legal requirements and with due security measures that guarantee the confidentiality of those data.


However, given the legislative developments, we believe it is appropriate to inform and offer for your acceptance of the following privacy policy:


Who is responsible for processing your data?




CIF: B52526985


Mailing Address: Calle Eratostenes , 91, 33392 Gijón, Asturias




For what purpose do we use the personal data you provide us with?



















We may share vehicle information with third parties that assist us in the provision and improvement of our services, as well as with security agencies or others, in order to protect our rights or enforce the terms and conditions of our services. For more information on how we share the information collected, consult the recipients in this privacy policy. Services and other similar functions provided by the manufacturer, which may be included in the rental, may also collect vehicle information. We recommend you check your privacy policies.


How long do we keep the information provided?












What is the legitimacy for the treatment of your data?






To which recipients can your data be communicated?








Under what guarantees are your data communicated?


The communication of data to third parties is made to entities that prove the provision of a Personal Data Protection System according to the current legislation.


What are your rights?








How can rights be exercised?


Where to go to exercise your rights:


If you wish to exercise your rights, please go to the channel established for the exercise of rights by the person responsible for data processing: so that we can respond to your request in a managed manner. “


Information required to exercise your rights:



- Documented information (written / email) of the request in which the request is specified.


- Accreditation of identity as owner of the data object of the exercise (Name, surname of the interested party and photocopy of the ID of the interested party and / or of the person representing it, as well as the document accrediting such representation.


- Address for notifications, date and signature of the applicant (in case of writing), or full name and surname (in case of email), or validation of the request in the private area of ​​the communication channel with personal authentication key of your identity).


- When the person responsible for the data treatment has reasonable doubts regarding the identity of the natural person who is processing the request, he / she may request that the additional information necessary to confirm the identity of the interested party be provided.


General Procedure for Exercising your rights:



- The controller will provide the interested party with information relating to their actions on the basis of an application in accordance with Articles 15 to 22 (Rights of the interested party), and, in any case, within one month of receipt of the request.


- This period may be extended for another two months if necessary, taking into account the complexity of the request and the number of applications.


- The person in charge will inform the interested party of any of said extensions within a period of one month from the reception of the request, indicating the reasons for the delay.


- When the interested party submits the application by electronic means, the information will be provided by electronic means whenever possible, unless the interested party requests that it be provided otherwise.


- If the person responsible for the processing does not comply with the request of the interested party, he / she will inform it without delay, and at the latest one month after receiving the request, the reasons for not acting and the possibility of presenting a claim to a control authority and to take legal actions.


- The information provided will be free, except for reasonable fees for administrative costs.


- The data controller may refuse to act on the request, although he will bear the burden of demonstrating the manifestly unfounded or excessive nature of the request.


What is the claim methods?


If you believe that your rights have not been properly addressed, you have the right to file a complaint with the competent data protection authority (


How have we obtained your data?




What category of data types do we deal with?


Identifying and contact data for example, but not limited to: name, surnames, telephone number or email. Driving license data of the driver. Preference and hobby data, if any, in the form that you fill in. Commercial information about your preferences, for example, but not limited to: the type of vehicle and / or vehicles in which you are interested.


Commercial information; Economic, financial data and / or payment terms; Other type of data: contact data of people involved or related to the service object of the contract / request.


The data structure we deal with does not contain data on convictions and criminal offenses, nor especially protected data, except in cases where the owner is a beneficiary of special conditions and has to provide documentation that incorporates such information so that it can be accredited or justified the fulfilment of said condition.


How are your personal data stored securely?


The person in charge of Data Treatment takes all the necessary measures to store your personal data in a private and secure way. Only authorised personnel of third parties directly contracted by the Treatment Manager for the provision of services linked to the treatment purposes or authorized personnel of our company (who have a legal and contractual obligation to keep all information securely) have access to their personal information. All personnel who have access to your personal data are required to undertake to respect the Privacy Policy of the person responsible for Processing and the data protection regulations and all Third Party employees who have access to your personal data to sign the commitments. of confidentiality in the terms established in the current legislation. In addition, contractually ensures that third-party companies that have access to your personal data keep them safe. To ensure that your personal data is protected, the Responsible Party has an IT security environment and takes the necessary measures to prevent unauthorized access.


The Treatment Manager has formalized agreements to ensure that we treat your personal data correctly and in accordance with the data protection law. These agreements reflect the respective functions and responsibilities in relation to you, and contemplate which entity is in the best position to meet your needs. These agreements do not affect your rights under the data protection law.


For more information about these agreements, do not hesitate to contact us.