Privacy Policy

1. Who processes your personal data?

Europcar Mobility Group Denmark A/S, Jens Baggesens Vej 90N, 8200 Aarhus N is the "Data Controller" of your Personal Data collected and processed via this website, our mobile applications, or our rental agencies in order to offer you mobility solutions.

The terms "Europcar", "we", "us" or "our" that we use in this policy refer to Europcar Mobility Group Denmark.

Europcar is a member of the Europcar Mobility Group. The term "our Group" refers to Europcar Mobility Group whose registered office is located in France at 13 Ter Boulevard Berthier, 75017 Paris.

When you communicate Personal Data to us or when we collect Personal Data about you, we undertake to use it in accordance with this Policy.

2. What Personal Data do we collect about you?

As a provider of mobility solutions, we collect and process various categories of Personal Data in connection with this website and our mobile applications and in order to provide you with our products and services.

By Personal Data, we mean not only data that identifies you directly, but also data that identifies you indirectly.

The categories of Personal Data that we collect in the context of our services and the use of our website and our mobile applications include the following:

  • Your identification data: surname, first name, email address, birth date, telephone number, postal address, account identifier,
  • If applicable, identification data of additional driver(s): surname, first name, email address, telephone number, postal address,
  • Your driver's license and that of any additional driver(s),
  • Payment data: account numbers, card numbers, etc.
  • Financial data: your invoices; your order forms, etc.
  • As the case may be, data relating to traffic violations
  • Information about your flight in the event that the pickup location of your vehicle is an airport,
  • Information on your vehicle reservation, in particular to feed the loyalty programs of which you would be a member with data.
  • Data relating to your navigation on our website or our mobile applications;
  • Data relating to your satisfaction surveys or from your interactions on our dedicated social media pages;
  • Voice, audiovisual and electronic data: recordings of your communications by e-mail, chat or telephone with our customer service department;
  • Information collected through our Connected Vehicle (if the vehicle that you rent is a newer model and therefor a connected vehicle): vehicle status, damage or accident information, vehicle performance data, operational and diagnostic data, mileage information, acceleration and braking speeds, fuel consumption and fuel levels, tire pressure, odometer readings, vehicle location and other vehicle information. For any information regarding the data processing of Europcar's connected vehicles, please consult the dedicated Privacy Policy link: Connected Vehicle ; and/or
  • Data related to cookies and other similar technologies. For information on the use of cookies, please consult our cookie policy.

We collect most of your personal data directly from you, but we may receive data from third parties, including the competent authorities and private companies in charge of managing fines for traffic violations.

 

3. For what purposes do we process your Personal Data?

We collect and process your Personal Data for various purposes and on the following legal bases:

Purposes of the processing

Legal basis of the processing

The creation and management of your customer account

This processing activity is based on the acceptance of the terms and conditions of use of our website or our mobile applications, cf. the General Data Protection Regulation art. 6(1), point a.

>The management of your reservation and rental contract, in particular for :

  • confirming, modifying or cancelling your reservation;
  • to communicate with you regarding your reservation and rental (for example, to provide you with information about your reservation and rental, to send you reminder notifications before you return your vehicle, to answer your questions or suggestions);
  • manage your rental;
  • manage your payment and invoices;
  • manage the collection of amounts due (including subsequent costs such as fines for traffic violations, and/or compensation for damage to the vehicle);
  • managing claims; and/or
  • purchase and manage insurance for your Vehicle;

These processing activities are necessary for the execution of the rental services contract that you enter into with us, cf. the General Data Protection Regulation art. 6(1), point b.

You can choose to register your credit card for your future bookings.

The management of commercial documents (customer invoices, purchase orders, certain electronically concluded contracts etc.)

These processing activities are necessary for the performance of the rental services contract that you entered into with us, cf. the General Data Protection Regulation art. 6(1) point b, and our legal obligation to process, cf. the General Data Protection Regulation art. 6(1) point c.

The checking of your driver's license

This validation can be carried out (i) manually by our customer service department or (ii) using a facial recognition device.

(i) This processing is necessary for the performance of the rental services contract that you enter into with us, cf. the General Data Protection Regulation art. 6(1) point b.

(ii) The use of the facial recognition solution is based on your consent, cf. the General Data Protection Regulation art. 6(1) point a.

Fight against credit card fraud

This processing is based on our legitimate interest in protecting ourselves against credit card fraud, cf. the General Data Protection Regulation art. 6 (1) point f and the Danish law “databeskyttelsesloven” § 8, 3, section 2.

Verifying that you are not recorded on a Sanction List (namely any list of designated individuals as issued and amended from time to time by: (a) the U.S. government, including OFAC’s list of Specially Designated Nationals and Blocked Persons (or “SDNs”) and lists maintained by the U.S. Department of State; (b) the United Nations Security Council, (c) the European Union and any Member State (including the EU’s consolidated list of persons subject to EU financial sanctions); and (d) the United Kingdom (including the consolidated list of financial sanctions targets issued by the UK’s Office of Financial Sanctions Implementation (“OFSI”))

This processing is based on our legal obligation cf. the Data Protection Regulation art. 6(1), point c and our “legitimate interest” in ensuring that we are compliant with the International sanction regimes, cf. the Data Protection Regulation art. 6(1), point f and the Danish law “databeskyttelsesloven” § 8, 3 section 2.

Conducting satisfaction surveys to improve your experience with our products / services

This processing is based on our legitimate interest to have a better knowledge of customers' needs and to improve its services and customer service, cf. the General Data Protection Regulation art. 6(1), point f.

Chatting in real time on our website

This processing is based on our legitimate interest in answering the users' questions about our products and services, cf. the General Data Protection Regulation art. 6(1), point f.

Conducting business development and marketing activities, including:

  1. i- sending newsletters, emails and SMS notifications about special offers and promotions;´
  2. ii- recording your rental history to suggest our products and services to you when you search for new bookings or to send you special offers and benefits;
  3. iii- managing your loyalty program and membership card;
  4. iv- organizing contests and prize draws;
  5. v - sending emails about a booking we have not completed or about the status of your booking requests;
  6. vi - the management and updating of the prospect database.

Our commercial and marketing activities, i.e. the sending of commercial messages to promote our products and services (i to iv) are subject to your consent, cf. the General Data Protection Regulation art. 6(1), point a and the Danish Law “markedsføringsloven” § 10, 1.

In the event that you are already our customer, you may receive commercial messages for products and services similar to those we have already provided to you, cf. the General Data Protection Regulation art. 6(1), point f and the dansih law “markedsføringsloven” § 10, 2.

The sending of these messages will be based on our legitimate interest in communicating about our products and services.

Processing activities included in category (v) are based on our legitimate interest to simplify and speed up the reservation process for our customers, cf. the General Data Protection Regulation art. 6(1), point f.

Processing activities included in category (vi) are based on our legitimate interest to manage our prospect database, cf. the General Data Protection Regulation art. 6(1), point f.

The management of fines for traffic offences, in particular for:

  • transfer to the Danish Road Traffic Authority the identity of the main driver mentioned on the rental agreement
  • In case of parking fees information’s can be disclosed to the company responsible for handling the collection of the fee in the area concerned.

This processing activity is based on our legal obligations, and the possibility to pursue legal claims, cf. the General Data Protection Regulation art. 6(1), point c and f as ant art. 9(2), point f comprising pursuant to the Danish laws: “færdselsloven” and “bekendtgørrelse om udlejning af motorkøretøjer uden fører.

The management and maintenance of a list of clients with certain contractual risks, with regard to:

  • payment incidents resulting in legal proceedings;
  • traffic accidents or repeated damage;
  • indelicate or threatening behaviour towards our employees or other customers and/or
  • the use of our vehicles in violation of the general rental conditions

This processing activity is based on our legitimate interest, in particular our interest in asserting our rights, to prevent risks and fraud related to the execution of your lease contract, cf. The General Data Protection Regulation art. 6(1), point f.

In this respect, we seek to maintain a fair balance between the need to process your Personal Data and respect for your rights and freedoms, in particular the protection of privacy. If you appear on this list of at-risk clients, your reservation request will be rejected. You may challenge this decision by sending an email to the following address: dpo@europcar.com.

Video surveillance on our premises

This processing activity is based on our legitimate interest in ensuring the safety of property and persons in our stations, by a deterrent effect or in such a way as to be able to identify the perpetrators of damage, theft or aggression, cf. The General Data Protection Regulation art. 6(1), point f and the Danish law: “databeskyttelsesloven” § 8, 3, section 2.

Analysis of navigation data on our website and mobile applications

This processing is based on our legitimate interest in improving our products and services, cf. The General Data Protection Regulation art. 6(1), point f.

4. Who are the recipients of your Personal Data?

4.1 Categories of recipients

If necessary, your personal data may be communicated:

  1. to our employees, our authorized representatives, other companies of our Group and our franchise network, our agents and intermediaries mandated to provide you with our products and services;
  2. to our subcontractors, in particular our IT service providers for hosting, maintenance or development purposes, who assist us in providing you with our products and services or collection agencies which help us recover unpaid claims. These may be entities that are members of our Group or external service providers;
  3. to our insurance service companies to ensure coverage and in general management of the insurance for your vehicle;
  4. advertising agencies, marketing agencies, social networking and digital agencies to help us carry out advertising, marketing and sales campaigns and to analyze the effectiveness of these campaigns;
  5. concerning the information necessary for the processing of fines, to the police, the court or to its foreign counterparts in case the fines or offence(s) is committed abroad;
  6. to our partners or our Group, in particular to enable you to collect loyalty points when you are a member of their program:

 

List of Europcar Mobility Group partners

  • AAdvantage
  • Accor Hotel
  • Aeroflot
  • Air Europa
  • American Express Rewards
  • Asia Miles
  • Biglife SDN BHD (Air Asien)
  • Delta Airlines
  • Ecos Mobility & Hospitality Private Limited
  • Emirates SkyWard
  • Finnair Plus
  • Fly SAS
  • Flying Blue
  • Gulf Air Falcon Flyer
  • Lufthansa
  • Melia Rewards
  • Miles & More
  • Oman Air Sindbad
  • Qatar Privilege Club
  • Radisson Rewards
  • Routes Biludlejning
  • Royal Air Maroc
  • Shouqi Biludlejning og leasing Limited Liability Company
  • Silvercar
  • Singapore Krsiflyer
  • TAP Miles & Go
  • Times Mobility Co LTD
  • Turkish Airlines
  • Ubeeqo
  • UIA Panorama Club

We may also disclose your personal data in accordance with applicable laws and regulations to the relevant authorities.

 

Use of Facebook

All Facebook features and services available on our website or applications are governed by the Facebook Privacy Policy, which you can read for more information about your rights and settings options.

By using one of our website/applications, you can:

- Use Facebook social plug-ins, such as "like" or "share" our content on the Facebook Platform;

- Accept cookies from our website or applications (also known as "Facebook Pixel"), which will help us understand your activities, including information about your device, how you use our services, the purchases you make, and the ads you view, whether or not you have a Facebook account or are logged in to Facebook.

When you use these Facebook features, we collect data that helps us to:

- Display ads that may be of interest to you on Facebook (or Instagram, Messenger or any other Facebook service);

- Measure and analyze the effectiveness of our website, applications and advertisements.

 

4.2 International transfers

In order to provide you with our products and services, we may use service providers located outside the European Union (in particular in the United States, United Kingdom, Morocco and Israel). In the event that the vehicle is booked abroad, data transfers will be carried out in the country in question in order to provide you with our mobility solutions.

Depending on the assumptions, some recipients may be located in countries recognized by the European Commission as providing an adequate level of protection of personal data. In any case, we have implemented appropriate protection measures to protect your personal data in accordance with data protection regulations.

For more information about the countries to which your personal data may be transferred, their level of data protection and the potential protective measures implemented by Europcar, click here.

 

5. How long do we keep your Personal Data?

Your personal data are kept for different periods of time, depending on the purposes of the processing concerned:

Purposes of the processing

Data retention periods

The creation and management of your customer account

For the duration of the business relationship and 5 years after the end of the business relationship.

The processing of your reservation and rental contract, in particular for:

  • Confirming, modifying or cancelling your reservation;
  • Communication with you regarding your reservation and rental (for example, to provide you with information about your reservation and rental, to send you reminder notifications before you return your vehicle, to answer your questions or suggestions);
  • manage your rental;
  • manage your payment and invoices;
  • manage the collection of sums due (including subsequent costs such as fines for traffic violations, and/or compensation for damage to the vehicle);
  • managing claims; and/or
  • managing your vehicle insurance

For 5 years after the end of the reservation in accordance with the storage obligation in the Danish law: “Bogføringsloven”.

The management of commercial documents (customer invoices, purchase orders, certain electronically concluded contracts etc.)

Storage of accounting data is 5 years from the end of the current financial year.

The checking of your driver's license

This validation can be carried out (i) manually by our customer service department or (ii) using a facial recognition device.

Data is stored in a period of 12 months. In case of damages to property or violations of the law, investigation of damages and accidents caused by the vehicle, the personal data can be stored until the case is solved (meaning until the end of any dispute or trial)

Prevention of credit card fraud

13 months from the last effective payment and storage of accounting data for 5 years from the end of the current financial year.

Verifying that you are not recorded on a Sanction List (namely any list of designated individuals as issued and amended from time to time by: (a) the U.S. government, including OFAC’s list of Specially Designated Nationals and Blocked Persons (or “SDNs”) and lists maintained by the U.S. Department of State; (b) the United Nations Security Council, (c) the European Union and any Member State (including the EU’s consolidated list of persons subject to EU financial sanctions); and (d) the United Kingdom (including the consolidated list of financial sanctions targets issued by the UK’s Office of Financial Sanctions Implementation (“OFSI”))

For 5 years from collection of your data

The improvement of our products and services according to your preferences by carrying out satisfaction surveys

3 years from our last contact

Chatting in real time on our website

3 years from our last commercial contact

Conducting business development and marketing activities, including:

  1. Sending emails and SMS notifications about special offers and promotions;
  2. Recording your rental history to suggest products/services to you when searching for new bookings or to send you special offers and benefits;
  3. sending emails relating to a booking that we have not completed or reporting the status of your booking requests;
  4. managing your loyalty program and membership card;
  5. organizing contests and prize draws;
  6. the management and updating of the prospect database.

- if you are a Europcar customer, 3 years from the end of the business relationship with Europcar.

- If you are not a Europcar customer, 3 years from the collection of your personal data OR from the last time you requested information from us.

The management of fines for traffic offences, in particular for:

- transfer to the Danish Road Traffic Authority the identity of the main driver mentioned on the rental agreement.

In case of parking fees information’s can be disclosed to the company responsible for handling the collection of the fee in the area concerned.

For the time necessary to identify the driver responsible for committing the offence giving rise to the contravention. However, relevant information may be retained for a longer period of time.

Management and updating of a list of clients with certain contractual risks, with regard to:

  • payment incidents resulting in legal proceedings;
  • traffic accidents or repeated damage;
  • indelicate or threatening behavior towards our employees or others customers and/or
  • the use of our vehicles in violation of the general rental conditions.

3 or 5 years from the date of creation or modification of the last rental and depending on the nature of the event

 

Video surveillance on our premises

A few days up to maximum 30 dayes in accordance with the Danish law: “tv-overvågningsloven”.

Analysis of navigation data on our website and mobile applications

See our cookie policy

 

6. What rights can you exercise regarding the processing of your Personal Data?

Within the limits and conditions allowed by the regulations in force, you can:

  • access to your Personal Data and obtain further information on the characteristics of the processing we carry out;
  • have your Personal Data corrected, updated and deleted, it being specified that deletion can only be carried out when (i) the data is no longer necessary in relation to the purposes for which it was processed, (ii) you withdraw your consent and there is no other legal basis for the processing, (iii) you object to the processing of your personal data and there is no compelling legitimate reason for the processing (iv) it has been established that your personal data has been processed unlawfully, and (v) the personal data must be deleted in order to comply with one of our legal obligations
  • you object to the processing of your Personal Data based on legitimate interest, which you can check by taking a look the table shown in the section “For what purposes do we process your Personal Data” and in particular the column “Legal basis of the processing”
  • you object to the processing of your Personal Data for commercial purposes
  • receive the personal data you have provided us with and request us to pass them on to a third party when the processing of your personal data (i) has been carried out by automated means and (ii) is based on your consent or on the execution of a contract binding us;
  • request the limitation of the processing of your Personal Data, which means that we will not be able to use your Personal Data for a defined period of time. You can exercise this right when:
    a) you dispute the accuracy of your personal data for a period of time that allows us to verify the accuracy of your personal data;
    b) the processing of personal data is unlawful and you object to the deletion of your personal data and instead demand that its use be restricted;
    c) we no longer need your Personal Data but they are still required for the establishment, exercise or defence of legal claims;
    d) you object to the processing for reasons relating to your particular situation, while we are checking whether the legitimate reasons pursued by Europcar take precedence over your own.
  • withdrawing your consent to treatment based on your consent; and/or
  • submit a complaint to a Supervisory Authority. In Denmark, the Supervisory Authority is Datatilsynet, Carl Jacobsens Vej 35, 2500 Valby, Tlf. 33 19 32 00, dt@datatilsynet.dk.

 

7. How do you exercise your rights?

If you would like to know more about the provisions of this privacy policy or to contact our Data Protection Officer, you can also write to us at the following address

Europcar Mobility Group Denmark A/S
Jens Baggesens Vej 90N
8200 Aarhus N
or by e-mail to: dpo@europcar.com

To exercise your rights, you must prove your identity by clearly indicating your surname, first names, driver ID and any useful information enabling us to identify you (such as the place and date of your last vehicle rental). You must also give us the e-mail address or the physical address to which you would like the reply to be sent.

 

8. How do we protect your Personal Data?

Europcar Mobility Group Denmark is committed to protecting the information it collects through this website.

In particular, Europcar uses appropriate physical, technical and organizational security measures to prevent unauthorized or unlawful processing, accidental loss of or destruction of or damage to your personal data.

Europcar's systems are configured with data encryption, or scrambling technologies, and industry-standard firewalls. When you send personal information to a Europcar website over the Internet, your data is protected by "Transport Layer Security" (TLS) technology to ensure safe transmission.

Any credit card transaction you make through Europcar websites is done through our secure server technology. This technology notably:

  1. assures your browser that your data is being sent to the correct computer server, and that the server is secure;
  2. encodes the data, so that it cannot be read by anyone other than the secure server;
  3. checks the data being transferred to ensure it has not been altered.

 

9. What rules apply to the processing of your Personal Data when you click on links placed on our website, redirecting to our partners' or other sites?

On this site you will find various links to the websites of our partners (e.g. for travel services). We would like to draw your attention to the fact that this Privacy Policy does not apply to the processing of your Personal Data by our partners or other third parties, which may occur when you visit their websites, and that we are not responsible for such data processing. If you would like information on how these partners and third parties process your personal data, we invite you to consult their Privacy Policies.

 

10. Changes to this Privacy Policy

This Privacy Policy was last updated on 11.08.2023.