Legal Center

GDPR Compliance

Information about how we comply with the General Data Protection Regulation (GDPR)

Last updated: November 14, 2024

1. Introduction to GDPR Compliance

QuickFleet is committed to protecting the personal data of our users in accordance with the General Data Protection Regulation (GDPR). This document outlines how we adhere to GDPR principles and protect your rights.

2. Data Controller Information

QuickFleet acts as a data controller for the personal information we collect. Our Data Protection Officer can be contacted at:

  • • Email: dpo@quickfleet.com
  • • Phone: [Phone Number]
  • • Address: [Company Address]

3. Legal Basis for Processing

We process personal data under the following legal bases:

  • Contractual Necessity: Processing needed to fulfill our service contract
  • Legal Obligation: Processing required by UK and EU law
  • Legitimate Interests: Processing that serves our legitimate business interests
  • Consent: Processing based on your explicit consent

4. Your Rights Under GDPR

As a data subject, you have the following rights:

  • Right to Access: Obtain a copy of your personal data
  • Right to Rectification: Correct inaccurate personal data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restrict Processing: Limit how we use your data
  • Right to Data Portability: Receive your data in a structured format
  • Right to Object: Object to certain types of processing
  • Rights Regarding Automated Decision Making: Challenge automated decisions

5. Data Processing Activities

5.1 Location Data Processing

We process location data to:

  • • Match drivers with nearby jobs
  • • Calculate optimal routes
  • • Track job progress
  • • Ensure service quality

5.2 Communication Data

We process communication data to:

  • • Facilitate operator-driver communication
  • • Send service notifications
  • • Provide customer support
  • • Handle disputes

6. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including:

  • • Active account data: Throughout the period of service use
  • • Transaction records: 7 years (legal requirement)
  • • Communication logs: 2 years
  • • Location data: 6 months

7. International Data Transfers

When we transfer data outside the UK/EEA, we ensure appropriate safeguards through:

  • • Standard Contractual Clauses
  • • Adequacy decisions
  • • Binding Corporate Rules

8. Data Security Measures

We implement appropriate technical and organizational measures including:

  • • Encryption of personal data
  • • Regular security assessments
  • • Access controls and authentication
  • • Staff training on data protection
  • • Incident response procedures

9. How to Exercise Your Rights

To exercise your GDPR rights:

  1. • Contact our DPO at dpo@quickfleet.com
  2. • Use the Rights Request form in your account settings
  3. • Write to us at our registered address

We will respond to your request within one month.

10. Complaints

If you're unhappy with how we handle your personal data, you can:

  1. • Contact our DPO
  2. • File a complaint with the ICO (Information Commissioner's Office)
  3. • Seek judicial remedy