Privacy Policy

LECAPITAINE (whose registered office is located at 315 Rue Louise Michel, 50009 Saint-Lô, France), (“we”) as a service provider, attaches great importance to protecting and respecting your privacy. This policy is intended to inform you about our practices regarding the collection, use and sharing of information that you share with us.

We request you to read this document carefully to know and understand our practices regarding the processing of personal data.


1. WHAT KIND OF PERSONAL DATA DO WE PROCESS?

We collect the personal data you share with us on our websites, our applications and during inquiries, reservations or rentals. We may collect your personal data directly or through service providers.

We collect and use only the personal data that we need for our activity to offer you personalised products and services.

We may collect different categories of personal data, including:

  • Identification, contact and training information (last name, first name, place and date of birth, photo, postal and email address, telephone number, gender, age, signature);
  • Identification and authentication data, including but not limited to the use of online reservation services, extranet (technical logs, digital traces, IP address);
  • Banking, financial and transaction data (bank details, card numbers, transaction data including credit transfer information, credit rating and financial history);
  • Rental information (passport and identity card numbers, driver's license, geolocation data, data on complaints and violations, tax identification number).

The data we use may be collected directly from you or obtained from various sources, including but not limited to:

  • Publications/databases made accessible by the official authorities;
  • Third parties such as business information, anti-fraud agencies, in accordance with data protection regulations;
  • Websites / social media pages containing information that you have made public and databases made public by third parties.
1.1 Information collected through our vehicles (Telematics)

We can use embedded data systems in our vehicles to collect data on vehicle condition, performance, geolocation and driver behaviour for safety and claims management purposes. We will be able to keep these data as long as the legislation in force so requires.

1.2 Uses of sensitive data

Some of the data we may collect are considered sensitive, particularly information about your health (for example, in the case of bodily injury for which we have to work with insurance companies or police services).

Unless we are required to do so by law, we do not process data relating to your racial or ethnic background, your political opinions, your religion, your philosophical beliefs or your trade union membership, your genetic data, your sex life or your sexual orientation.

1.3 Special cases of data collection

We may collect information concerning you even though you are not a LECAPITAINE customer, especially during a commercial marketing campaign, when you interact with us on our social media pages or when you visit our websites.

The information that may be collected, in accordance with the applicable legislation, where appropriate, relating to the devices on which you use our services or the networks from which you access our services, such as in particular the IP address, login data, type and version of web browsers used, types and versions of your browser plugins, operating systems and platforms, your clickstream data vis-à-vis our platforms. Among the techniques used to collect this information, we use cookies.

1.4 Analysis of your data

We use analytics software such as Google Analytics to help us better understand the features on our websites and applications. These software tools record technical information about your device as well as information about how often you use our website or application, what features you use or do not use on the website or application, or which pages you visit on the website, aggregate usage, performance data, from which source the application was downloaded and information about your visit to the site.


2. DATA COLLECTION VIA COOKIES

A cookie is a small text file that is saved and/or read by your browser on the hard drive of your device (PC, laptop or smartphone, for example) and placed by the websites you visit. Almost all sites use cookies to work properly and optimise their usability and functionality. Cookies also make interactions with sites more secure and faster, insofar as they can remember your preferences (such as your username and language) by sending the information they contain to the original site (internal cookie) or to another site to which they belong (third-party cookie), when you visit the site in question again from the same device. Depending on their function and the purpose of their use, cookies are categorised as follows:

  • Essential cookies: Some cookies are essential to the functioning of our websites. Without them, you would not be able to browse the website or use certain features. Essential cookies allow us to keep the information you have provided and to remember the choices made from one page to another during the booking process. As these cookies are essential, we do not offer you the option to disable them from your browser.
  • Functional cookies: We use functional cookies to remember the preferences that you have made during your previous visits, including the changes you made to customise the site. We also use functional cookies to provide you with more sophisticated services. The information that these cookies collect is made anonymous and used only in connection with the website.
  • Analytics and performance cookies: allow us to recognise and count the number of visitors to our site and to collect information about how our site is used (for example, what are the pages most viewed by visitors, do users get error messages on some of our pages, etc.). This allows us to improve the way our website works, for example, by ensuring that users easily find what they are looking for.
  • Third-party cookies: Please note that LECAPITAINE uses the services of third parties to know your use on our websites, in order to optimise your user experience. These third parties may also use cookies that we do not control (however, we do require our external service providers to comply with the GDPR, for services such as web traffic analysis).
2.1 What if you do not want to enable cookies?

You can disable the use of cookies at any time.

If you want to delete the cookies stored on your device and set your browser to refuse cookies, you can do so via the preferences of your web browser. These browsing options for cookies are usually found under “Options", “Tools” or “Preferences” of the browser you use to access this site. However, depending on the various browsers, different means can be used to disable cookies. To learn more, you can follow the links referenced below:

Please note that if you prevent your web browser from storing cookies on your device, you will still be able to browse this site, but some parts and options may not work properly.


3. PURPOSE OF PROCESSING YOUR PERSONAL DATA

We use your personal data to fulfil various legal and regulatory obligations, particularly if you suffer from an accident or loss or theft of the vehicle, vehicle damage or mechanical failure during rental. We will collect information about this incident, including your report of the incident and the police or other third-party report including the details of the persons involved as well as the nature of the bodily injury and/or damage to the vehicle and additional options. We will use this information to execute our contract (for example, the vehicle rental agreement), for our legitimate business interests and to comply with any legal obligations incumbent on us (for example, the obligation to notify the incident to the competent authorities).

We collect information on fines for speeding, parking, tolls or other fines relating to road legislation or traffic violations that you commit during the rental when provided to us by the police. We will use this information to process this fine or offence based on the terms of your vehicle rental agreement.

We use your personal data necessary for the execution of our activity, in particular for:

  • Ensuring the proper administration and management of your relationship with us;
  • The performance of the vehicle rental agreement as provided for in our general rental terms;
  • Execution of payment, pre-authorisations and security deposits;
  • Understanding how you use our services and manage your fleet of vehicles;
  • Preventing, detecting or investigating the use of our vehicles and our information systems;
  • Understanding how you use our websites and applications to identify problems with using our websites, applications, and how we can improve the customer experience;
  • When you call us (regardless of the phone), we may record or monitor the call for quality control purposes.

4. RETENTION PERIOD OF YOUR DATA?

We retain the personal data of our customers as long as necessary for the purposes for which they were collected, or as required or permitted by applicable law.

We collect personal data for a number of purposes and we may be required by law to retain it for longer than necessary for the provision of our rental services. We maintain a data retention policy that covers all personal data that we hold in our systems. If you have any questions about the retention period applicable to your personal data, please go to the ‘contact us’ section.


5. WHY DO WE SHARE YOUR PERSONAL DATA?

In order to offer you services, we share your personal data with our employees, in particular to:

  • manage your rental bookings;
  • process and/or confirm your transactions;
  • provide you with assistance;
  • invoice and cash the amounts due for rentals.

To comply with our legal obligations, we may use, share and disclose your personal data, to the extent that we consider it necessary and appropriate, in particular to:

  • Comply with the applicable law, including laws in countries other than your place of residence;
  • Process, manage and otherwise respond to claims for damages, particularly in case of prejudice;
  • Comply with a legal procedure;
  • Respond to requests from public and governmental authorities, especially outside your country of residence;
  • Ensure compliance with our general rental terms;
  • Reclaim possession of our vehicles and recover any sums due, including through collection agencies;
  • Protect our rights, our privacy, our security or our and/or your property, as well as that of our subsidiaries and third parties;
  • Allow us to use available remedies or limit the harm we may suffer.

We may disclose your personal data to our service providers so that can represent or assist us in the performance of our activity. These services may include hosting certain websites or databases, managing applications, organising contests, prize draws and other promotions, sending marketing communications, analysing data, performing satisfaction surveys and other studies. We require our service providers to maintain adequate security standards to protect your personal data and to use the personal data that we share with them solely for the purposes we specify.

5.1 Data transfer outside the European Economic Area

Some of the uses and disclosures mentioned in this Policy may involve the transfer of your personal data to various countries whose level of privacy protection may differ from that of your country of residence. This also applies in the context of the transactions you undertake with us.

When a transfer of your data is necessary to offer you the rental services requested, the legal basis of the transfer is a contractual necessity and your personal data will be processed by the company providing these services in accordance with the local laws in force.

When we transfer your personal data to a country outside the European Union, especially when we transfer the data to a company, we make sure that the appropriate safeguards are in place for the transfer. This includes ensuring that the entity receiving the data is established in a country deemed by the European Union to have the necessary safeguards, if the transfer is made to the United States, the receiving company must participate in the Privacy Shield programme or a standard contractual clauses, approved by the Member States of the European Union, have been signed with the recipient to protect the data.


6. HOW DO WE PROTECT YOUR DATA?

LECAPITAINE attaches great importance to the security of your data. We take all necessary steps to ensure that your information is protected against unauthorised use, access, disclosure, alteration, destruction or loss.

The personal data that you share with us is stored in secure and controlled environments, our information systems are encrypted or use the latest technologies, such as our firewalls. When you send us personal information over the Internet, your data is protected by the Secure Socket Layer (SSL) transfer system.

All transactions made with your credit card are made on a secure server, which encrypts all information and offers many protection systems, including:

  • Authentication: ensures your browser that your data is sent to the correct server and that it is secure.
  • Encryption: Encryption ensures the confidentiality of data by encoding them, so that they can only be read by a secure server.
  • Data Integrity Code: ensures that the transferred data cannot be altered.

To help us protect your privacy, you must maintain the confidentiality of your login credentials and passwords, which you may have configured or received in connection with our services or website.


7. YOUR DATA PROTECTION RIGHTS

In accordance with the applicable regulations, you have different rights, namely:

  • Right to access: you have the right to request a copy of your personal information that we hold and to request explanations justifying the way the personal information is used.
  • Right to rectification: you have the right to request us to rectify your personal information.
  • Right to erasure: you have the right to request us to erase your personal information.
  • Right to restriction of processing: you have the right to request us not to use the personal information you have provided.
  • Right to data portability: you have the right to receive your personal information in a structured, commonly used and machine-readable format and to transmit that data another controller.
  • Right to withdrawal of consent: when we process your personal information on the basis of consent, you have the right to withdraw your consent at any time. However, this will not affect the lawfulness of the processing based on consent before its withdrawal. In addition, even in the event of withdrawal, we may continue to use your personal information if the law so allows or requires.
  • Right to object: when we process your personal information on the basis of a legitimate interest (or that of a third party), you may object to it. However, we may be entitled to continue processing your information when the processing concerns legal provisions or ongoing legal proceedings. You also have the right to challenge when we process your personal information for direct marketing purposes.

8. HOW TO CONTACT US?

If you wish to exercise the rights listed above to file a complaint or to request assistance regarding the processing of your personal data, please contact us directly using the contact details below.

  • By email: dpo@lecapitaine.fr
  • By post: Data Protection Officer - LECAPITAINE - 315 Rue Louise Michel, 50009 Saint-Lô CEDEX, France

9. MODIFICATIONS

We reserve the right to modify this Policy at any time, for any reason, by posting the revised version on this web page or on the relevant applications or other sites. These modifications will be effective as soon as they are published. In the event of substantial modification, the date of the update will be indicated on the intro page, and a notice will be published on the home page of our websites.