Privacy Policy

Last Updated: 24/01/2025

1. Introduction

This Privacy Policy explains how Jett Labs ("we," "our," or "us"), located at L0, Ewropa Business Center, Triq Dun Karm, Birkirkara, Malta, collects, uses, shares, and protects personal information across our website, web application, and driver app (collectively "the Services"). This policy applies to all users of our Services, including customers, drivers, passengers, and website visitors.

2. Information We Collect

2.1 Website Visitors

  • IP addresses and device information
  • Browser type and settings
  • Date and time of visits
  • Pages visited and features used
  • Referring websites
  • Cookies and similar technologies

2.2 Web Application Users

  • Account information (name, email, phone number)
  • Business details (company name, VAT number, address)
  • Login credentials
  • Payment information
  • Usage data and activity logs
  • Customer preferences and settings
  • Communications with our support team

2.3 Driver App Users

  • Personal identification (name, photo, contact details)
  • Professional information (license details, certifications)
  • Vehicle information
  • Location data during active shifts
  • Work schedule and availability
  • Trip history and performance metrics
  • Payment and earnings information
  • Device information and app usage data

3. How We Use Your Information

3.1 Core Service Functionality

  • Managing user accounts and authentication
  • Processing and dispatching transportation requests
  • Facilitating communication between drivers and customers
  • Processing payments and managing billing
  • Providing customer support
  • Maintaining service security and preventing fraud

3.2 Service Improvement and Analytics

  • Analyzing usage patterns and performance metrics
  • Improving user experience and interface design
  • Developing new features and services
  • Conducting research and statistical analysis
  • Training and improving our support systems

4. Legal Bases for Processing

We process personal data under the following legal bases:

  • Contractual necessity for service provision
  • Legal obligations under transport and business regulations
  • Legitimate business interests
  • Consent (where specifically requested)
  • Protection of vital interests of data subjects

5. Data Sharing and Recipients

5.1 Service Providers

  • Cloud hosting providers in the EU
  • Payment processors
  • Mapping services
  • Analytics providers
  • Customer support tools

5.2 Integration Partners

  • Accounting software
  • HR management systems
  • Fleet management tools
  • Third-party tracking systems

6. International Data Transfers

We primarily process data within the European Union. When data is transferred outside the EU, we ensure:

  • Transfers are made to countries with adequate protection levels
  • Appropriate safeguards through Standard Contractual Clauses
  • Necessary security measures are implemented
  • Data transfer impact assessments are conducted

7. Data Retention

  • Active account data: Retained while account is active
  • Transaction records: Minimum 7 years for tax purposes
  • Driver records: 3 years after last activity
  • Location data: 12 months for service improvement
  • Usage logs: 90 days for security purposes
  • Marketing data: Until consent withdrawal

8. Your Privacy Rights

Under GDPR, you have the following rights:

  • Access your personal data
  • Rectify inaccurate data
  • Request erasure ("right to be forgotten")
  • Restrict processing
  • Data portability
  • Object to processing
  • Withdraw consent
  • Lodge a complaint with supervisory authorities

9. Security Measures

We implement appropriate technical and organizational measures including:

  • Encryption of data in transit and at rest
  • Two-factor authentication
  • Access controls and authentication
  • Regular security assessments
  • Staff training on data protection
  • Incident response procedures
  • Regular backups and disaster recovery

10. Cookies and Tracking

  • Essential cookies for service functionality
  • Analytics cookies for service improvement
  • Session cookies for user authentication
  • Preference cookies for user settings

11. Children's Privacy

Our Services are not intended for children under 16. We do not knowingly collect or process data from children under 16. If we become aware of such data collection, we will take steps to delete the information.

12. Changes to This Policy

We may update this Privacy Policy to reflect changes in our practices or for legal, operational, or regulatory reasons. We will notify you of material changes through:

  • Email notifications
  • In-app notifications
  • Website announcements
  • Service dashboard alerts

13. Data Protection Officer

You can contact our Data Protection Officer for any privacy-related concerns:

  • Email: [email protected]
  • Phone: [DPO Phone Number]
  • Address: L0, Ewropa Business Center, Triq Dun Karm, Birkirkara, Malta

14. Contact Information

For any questions about this Privacy Policy or our data practices:

Email: [email protected]

Address: L0, Ewropa Business Center, Triq Dun Karm, Birkirkara, Malta

Registration: C-97468

Supervisory Authority: Malta Data Protection Commissioner