LONDON HEATHROW CARS 

PRIVACY POLICY 

London Heathrow Cars ("we", "our" or "us") is committed to safeguarding your personal information. This Privacy Policy explains how we collect, use, disclose and protect your personal data when you use our services, visit our website, make a booking or otherwise engage with us.‍

We process personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Information We Collect

We may collect and process the following types of personal data:

Personal Identification Information – full name and gender (where provided).

Contact Information – email address, telephone number and postal address.

Booking Details – pick-up and drop-off locations, dates and times of travel, flight numbers, passenger details and any specific requirements you provide.

Payment Information – credit/debit card details, payment confirmation and billing address (where applicable). Payment processing may be handled securely by third-party payment providers.

Technical Data – IP address, browser type, operating system, device information and details of how you use our website.

Marketing Preferences – your preferences for receiving marketing communications from us.

Live Chat or Enquiry Data – information you provide when contacting us via website forms, email, telephone or chat services.

Correspondence – records of communications with our customer service team.

Certain information (such as pick-up address, contact number and payment details) is mandatory in order for us to provide our services. Failure to provide this information may prevent us from fulfilling your booking.

3. How We Use Your Information

We use your personal data to:

- Provide our private hire and chauffeur services
- Process bookings and payments
- Allocate drivers and manage operational logistics
- Monitor journeys for safety and service quality
- Communicate with you regarding your journey or account
- Respond to enquiries and resolve complaints
- Prevent fraud and maintain service security
- Maintain records required for licensing, insurance and regulatory compliance
- Comply with legal and regulatory obligations
- Improve our services, systems and user experience
- Send marketing communications (only where you have opted in)

4. Legal Bases for Processing

Under UK data protection laws, we rely on the following legal bases:

Contractual necessity – to provide the services you request or take steps prior to entering into a contract.

Legal obligation – to comply with applicable laws, licensing requirements and regulatory obligations.

Legitimate interests – for operational efficiency, fraud prevention, service improvement, safety monitoring and business administration.

Consent – where required, such as for marketing communications. You may withdraw your consent at any time.

5. Sharing Your Data

We may share your personal data with:

- Third-party service providers (e.g. IT systems, dispatch platforms, hosting providers, payment processors, customer support systems)
- Professional advisers (e.g. accountants, insurers, legal consultants)
- Licensing bodies or regulatory authorities where required
- Government authorities or law enforcement where required by law
- Successors in title in the event of a merger, acquisition or business transfer

We will never sell your personal data to third parties.

We ensure that any third parties processing data on our behalf do so under appropriate contractual and security obligations.

6. International Transfers

Where we use third-party service providers located outside the UK, we ensure appropriate safeguards are in place, including UK-approved Standard Contractual Clauses or adequacy regulations, to protect your personal data.

7. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying legal, accounting or reporting requirements. After this period, data is securely deleted or anonymised.

8. Data Security

We take appropriate technical and organisational security measures to prevent unauthorised access, loss, misuse, disclosure or alteration of your personal information. These measures include:

- Secure servers and encrypted connections
- Access controls and restricted permissions
- Secure payment processing systems
- System monitoring and maintenance logs

For system administration and operational purposes, we may collect technical logs such as IP addresses and website interaction records.

9. Your Rights

Under the UK GDPR, you have the following rights:

- The right to access the data we hold about you
- The right to correct inaccurate or incomplete data
- The right to request erasure of your data in certain circumstances
- The right to restrict processing
- The right to data portability
- The right to object to processing based on legitimate interests
- The right to withdraw consent at any time (where processing is based on consent)
- The right to lodge a complaint with the UK Information Commissioner’s Office (ICO)

If you wish to exercise any of these rights, please contact us using the details below.

We will respond to legitimate requests within one month. If your request is complex or involves a large volume of data, we may extend this period by up to two additional months, and we will inform you if this is necessary.

You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO) if you believe your data has been handled unlawfully. Further information is available at: www.ico.org.uk

10. Automated Decision-Making

We do not carry out automated decision-making or profiling that produces legal or similarly significant effects on individuals.

11. Cookies

Our website may use cookies and similar technologies to enhance your experience, analyse website usage and improve our services. You can manage your cookie preferences via your browser settings. Further details are available in our Cookie Policy.

12. Third-Party Links

Our website may contain links to external websites. We are not responsible for the privacy practices or content of those third-party websites.

13. International Transfers

If we transfer personal data outside the UK, we will ensure appropriate safeguards are in place, such as standard contractual clauses approved by the UK Information Commissioner’s Office (ICO).

14. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page and, where appropriate, notified via our website. We encourage you to review this page periodically.

15. Contact Details

If you have questions about this Privacy Policy or how we handle your personal information, please contact us:
enquiries@londonheathrowcars.com
020 8814 2727