Privacy Policy

1. Who we are

NeedATaxi.nl is the data controller for personal data collected through this website and our booking service. We are registered in the Netherlands (KvK 12345678). Contact: [email protected]

2. What data we collect

We collect only the personal data strictly necessary to provide our taxi service:

• Name and contact details (phone number, email address)
• Pickup and drop-off addresses
• Travel date and time
• Number of passengers and luggage
• Payment information (processed via Stripe — we do not store card details)
• WhatsApp/SMS message content related to bookings

We do not collect unnecessary data. We do not collect data about race, religion, health or any other sensitive categories.

3. Why we use your data

We use your personal data exclusively for:

• Confirming and executing your taxi booking
• Sending booking confirmations and driver details
• Processing payment and issuing receipts
• Resolving complaints or disputes about your booking
• Complying with legal obligations (e.g. tax records)

We do not use your data for marketing, profiling or automated decision-making. We do not sell your data to third parties. Ever.

4. Legal basis

Our legal basis for processing is performance of a contract (Article 6(1)(b) GDPR) — we need your data to provide the service you booked. For legal obligation compliance we rely on Article 6(1)(c) GDPR.

5. Who we share data with

We share personal data only with:

• Our driver — receives only your name, phone number, pickup address and drop-off address, only for your specific booking
• Stripe — payment processor (privacy policy at stripe.com/privacy)
• Twilio — WhatsApp/SMS confirmations (privacy policy at twilio.com/legal/privacy)

No other parties receive your data. We do not use Google Analytics, Facebook Pixel or any other tracking or advertising technology.

6. How long we keep your data

Booking records (name, addresses, payment amounts) are kept for 7 years to comply with Dutch tax law (Belastingdienst requirements). After 7 years, all personal data is permanently deleted. WhatsApp/SMS message history is deleted within 12 months of your booking.

7. Your rights

Under the GDPR you have the right to:

• Access — request a copy of all data we hold about you
• Rectification — have inaccurate data corrected
• Erasure — have your data deleted (subject to legal retention requirements)
• Restriction — limit how we process your data
• Portability — receive your data in a portable format
• Objection — object to processing

To exercise any of these rights, email [email protected]. We will respond within 30 days. You also have the right to file a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens, autoriteitpersoonsgegevens.nl).

8. Cookies

This website uses only technically necessary cookies (session management, Next.js routing). We do not use analytical, marketing or tracking cookies. No cookie consent banner is required as we only use strictly necessary cookies.

9. Security

We use HTTPS encryption for all data transmission. Payment data is handled exclusively by Stripe and never stored on our servers. Access to booking data is restricted to staff who need it to fulfil your booking.

10. Changes to this policy

We may update this policy when our practices change or when required by law. The updated policy will be published on this page with a revised date. We will not retroactively apply significant changes to data already collected.