Introduction
This Privacy and Data Protection Agreement (the “Agreement”) governs the collection, use, storage, and protection of personal data processed through the Vengo Reserve application. By using our services, the Customer consents to the practices described in this Agreement, in compliance with applicable Data Protection Laws.
1. Definitions
Personal Data: Information relating to an identifiable person (e.g., name, email, phone, location).
Processing: Any operation performed on Personal Data such as collection, storage, or deletion.
Customer: Any user of the application.
Company: AdvancedMA and its affiliates providing the Application.
Services: Vehicle reservation, fleet tracking, geolocation, and reporting features.
2. Purpose of Processing
The Company processes Personal Data only to deliver and improve its services, including user authentication, reservation management, fleet tracking, reporting, and fraud prevention.
3. Categories of Data Collected
- Account Data: Name, email, role/profile, encrypted password.
- Reservation Data: Vehicle, date, time, route.
- Geolocation Data: Real-time vehicle location during active services.
- Operational Data: Reports, notes, uploaded files (images, documents).
- Technical Data: Device identifiers, IP, logs.
4. Duration of Retention
Personal Data is retained only for as long as necessary to provide services or to meet legal requirements. Once no longer needed, data is securely deleted or anonymized.
5. Customer Rights
- Access and review personal data
- Correct inaccurate information
- Request deletion of data (“Right to be forgotten”)
- Restrict or object to processing
- Request portability of data
6. Company Obligations
The Company ensures lawful processing, implements security measures, and informs Customers in case of a data breach. Employees and subcontractors are bound by confidentiality.
7. Sub-Processors
The Company may rely on trusted third-party providers (e.g., Google Maps Platform) to deliver certain services. All sub-processors are contractually bound to respect equivalent privacy protections.
8. Security Measures
- Encryption of sensitive data
- Role-based access control
- System monitoring and audits
- Backup and disaster recovery mechanisms
9. Data Breach Notification
In case of a breach, the Company will notify Customers promptly, providing details on the nature, risks, and corrective measures taken.
10. Governing Law
This Agreement shall be governed by applicable Data Protection Laws. Any disputes will be resolved in the jurisdiction of the Company’s headquarters.