Legal

Privacy Policy

Your privacy matters to us. Learn how we protect your data.

Effective Date: February 22, 2026

Limousinium ("we," "our," or "us") is committed to protecting the privacy and security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your data when you use our website (limousinium.com), mobile application, and VIP transfer booking services (collectively, the "Services"). By using our Services, you consent to the practices described in this policy.

Section 1

Information We Collect

We collect information that you provide directly and data that is generated automatically when you interact with our Services.

Personal Information You Provide:

  • Full name, email address, phone number, and billing address when creating an account or placing a booking
  • Passenger names, contact details, and flight information for transfer coordination
  • Payment card details processed securely through our payment provider (Garanti BBVA 3D Secure)
  • Pickup and drop-off addresses, including saved locations
  • Agency registration details, tax identification numbers, and IBAN for carrier and agency accounts
  • Identity verification documents (ID cards, driver licenses) uploaded during carrier/driver onboarding
  • Communications, feedback, and support requests you send to us

Information Collected Automatically:

  • Device information (type, operating system, browser, unique device identifiers)
  • IP address and approximate geolocation data
  • Usage data including pages visited, features used, and interaction timestamps
  • Cookies and similar tracking technologies for session management and analytics
  • Real-time GPS location data from drivers during active transfers (for live tracking functionality)
Section 2

How We Use Your Information

We use the information we collect for the following purposes:

  • Processing and managing your transfer bookings, including vehicle assignment, driver coordination, and route planning
  • Processing payments securely via 3D Secure authentication and managing refunds or cancellations
  • Providing real-time transfer tracking and status notifications via email and in-app alerts
  • Verifying carrier and driver identities during the onboarding process
  • Calculating pricing, bridge tolls, and distance-based fares accurately
  • Managing carrier earnings, balance tracking, and withdrawal requests
  • Communicating service updates, booking confirmations, and responding to your inquiries
  • Improving our Services through usage analytics and user feedback
  • Preventing fraud, unauthorized access, and ensuring the security of our platform
  • Complying with legal obligations and regulatory requirements
Section 3

Data Sharing and Disclosure

We do not sell your personal information. We may share your data in the following limited circumstances:

  • Vehicle Carriers and Drivers: We share necessary booking details (passenger names, pickup/drop-off locations, flight information) with assigned carriers and drivers to fulfill your transfer.
  • Payment Processors: Payment card data is transmitted directly to Garanti BBVA via 3D Secure protocols. We do not store your full card details on our servers.
  • Cloud Service Providers: We use Cloudinary for secure document and image storage, and Railway for application hosting. These providers are contractually bound to protect your data.
  • Mapping Services: We use Google Maps APIs for location search, route calculation, and live tracking. Your location data is subject to Google's privacy policy.
  • Legal Compliance: We may disclose your information when required by law, court order, or to protect our rights, safety, or property.
Section 4

Data Security

We implement industry-standard security measures to protect your personal information:

  • All data transmissions are encrypted using TLS/SSL protocols
  • Authentication tokens are stored in httpOnly cookies to prevent cross-site scripting (XSS) attacks
  • Sensitive financial data (such as IBAN numbers) is encrypted at rest using Fernet symmetric encryption
  • Brute-force login protection with automatic account lockout after failed attempts
  • Content Security Policy (CSP) headers to prevent unauthorized script execution
  • Regular security audits and dependency updates

While we strive to protect your data, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security but are committed to promptly addressing any breaches.

Section 5

Cookies and Tracking Technologies

We use cookies and similar technologies for the following purposes:

  • Essential Cookies: Required for authentication, session management, and security. These cannot be disabled.
  • Functional Cookies: Remember your language preferences, theme settings (dark/light mode), and saved locations.
  • Analytics Cookies: Help us understand how visitors use our website so we can improve the user experience.

You can manage cookie preferences through your browser settings. Disabling essential cookies may affect the functionality of our Services.

Section 6

Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this policy:

  • Account information is retained while your account is active and for 2 years after account closure
  • Booking and transaction records are retained for 10 years as required by Turkish commercial law
  • Payment records are retained as required by financial regulations
  • Verification documents are retained for the duration of the carrier/driver relationship plus 5 years
  • Server logs and analytics data are retained for up to 12 months
Section 7

Your Rights

Under applicable data protection laws, including the Turkish Personal Data Protection Law (KVKK, Law No. 6698), you have the following rights:

  • Right to access your personal data and obtain information about its processing
  • Right to request correction of inaccurate or incomplete data
  • Right to request deletion or anonymization of your data when processing is no longer necessary
  • Right to object to automated decision-making and profiling
  • Right to withdraw consent where processing is based on your consent
  • Right to data portability — receive your data in a structured, commonly used format
  • Right to lodge a complaint with the Turkish Personal Data Protection Authority (KVKK Board)

To exercise any of these rights, please contact us using the details provided below. We will respond to your request within 30 days.

Section 8

Children's Privacy

Our Services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected data from a child under 18, we will take steps to delete it promptly. If you believe a child has provided us with personal information, please contact us immediately.

Section 9

International Data Transfers

Your data may be processed and stored on servers located outside of Turkey, including cloud infrastructure provided by our hosting and storage partners. We ensure that any international data transfers comply with applicable data protection laws and that appropriate safeguards are in place to protect your information.

Section 10

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. We will notify you of significant changes by posting the updated policy on our website and updating the "Effective Date" at the top. Your continued use of our Services after changes are posted constitutes acceptance of the updated policy.

Section 11

Contact Us

If you have questions about this Privacy Policy, wish to exercise your data rights, or have concerns about how your information is handled, please reach out to us:

Limousinium

Email: info@limousinium.com

Website: limousinium.com

Address: Istanbul, Turkey