MAXICAR Rent a CarMAXICAR Transfer

PERSONAL DATA PROTECTION

MAXICAR

This Personal Data Protection Policy defines the principles and procedures applied by MAXICAR regarding the collection, processing, storage, and protection of personal data, in accordance with the applicable legislation of Montenegro and the principles of the General Data Protection Regulation (GDPR).

1. Data Controller
The data controller responsible for processing personal data is:
MAXICAR
27 Marta 43U, Zabjelo/Podgorica, Montenegro
Phone: +382 69 88 00 22
Email: info@maxicar.me
Website: www.maxicar.me

2. Legal Basis for Processing
Personal data is processed on the basis of:

  • Performance of a contract (vehicle rental or transfer service)
  • Legal obligations under Montenegro law
  • Legitimate business interests of MAXICAR
  • Explicit consent of the data subject where required

3. Categories of Personal Data
MAXICAR may process the following categories of data: identification data (name, surname, date of birth), contact details (phone number, email address, address, city), driver's license information, passport or ID details (where legally required), booking and payment information, technical data (IP address, device and browser information). Only data necessary for the provision of services and legal compliance is collected.

4. Purpose of Processing
Personal data is processed for reservation and rental contract management, provision of transfer services, identity verification, payment processing, customer communication, legal compliance and regulatory reporting, and internal analysis and service improvement. Data will not be processed for purposes incompatible with those listed above.

5. Data Retention Period
Personal data is stored only for as long as necessary: during the duration of the contractual relationship, for the period required by tax and accounting regulations, until withdrawal of consent (where applicable), and in accordance with statutory limitation periods. After the expiration of the retention period, data is securely deleted or anonymized.

6. Data Sharing and Transfers
MAXICAR does not sell or commercially distribute personal data. Data may be shared only when necessary with payment service providers, accounting and legal service providers, IT and hosting providers, and government authorities where legally required. All third-party partners are contractually obligated to ensure appropriate data protection standards. If data is transferred outside Montenegro or the European Economic Area, adequate safeguards will be applied in accordance with GDPR principles.

7. Data Security Measures
MAXICAR applies appropriate technical and organizational measures including secure servers and hosting infrastructure, access control and authorization systems, encrypted communication protocols, restricted internal access to personal data, and regular monitoring and security updates.

8. Rights of Data Subjects
Under applicable law, individuals have the right to access their personal data, request correction of inaccurate or incomplete data, request erasure ("right to be forgotten"), request restriction of processing, object to processing based on legitimate interest, request data portability, withdraw consent at any time, and lodge a complaint with the competent supervisory authority in Montenegro. Requests may be submitted via email to: info@maxicar.me. MAXICAR will respond within the legally prescribed timeframe.

9. Policy Updates
MAXICAR reserves the right to amend this Personal Data Protection Policy when required by legal or operational changes. The latest version will always be available on www.maxicar.me. Continued use of our services constitutes acknowledgment of this Policy.