Privacy Policy

Last updated: 1.12.2024

1. Introduction

Mint Services Oy, Y-Tunnus 3490812-1, located at Tikkurilantie 48, 01300 Vantaa, Finland (hereinafter referred to as the "Data Controller"), operating the website www.minttaxi.fi (hereinafter referred to as the "Website"), processes personal data received from the registrant - the user of the Website (hereinafter referred to as the "User").

The Data Controller takes the User's privacy and data protection seriously, and respects the User's rights regarding personal data processing, in compliance with applicable legislation, including the European Parliament and Council Regulation (EU) 2016/679 of April 27, 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation, GDPR), as well as other applicable privacy and data protection laws.

With the above in mind, the Data Controller has developed this Privacy Policy to inform the User of the details required by the Regulation.

This Privacy Policy applies to the processing of personal data, regardless of the form or means by which the User provides such data (via the Website, in paper format, or over the phone).

2. Contact Details of the Data Controller

The Data Controller is Mint Services Oy, Y-Tunnus 3490812-1, located at Tikkurilantie 48, 01300 Vantaa, Finland. Website: www.minttaxi.fi, Email: help@minttaxi.fi, Phone: +358 468 800 777.

3. Contact Details for Data Protection Inquiries

For any questions or concerns related to data protection, please contact us at:

Email: help@minttaxi.fi

Phone: +358 468 880 777

4. Purposes of Processing and Legal Basis

If the User provides personal data such as first name, last name, personal identification number, email address, phone number, personal messages, etc., via the Website's contact forms, email, or other means, the Data Controller will store and use this data to fulfill or make arrangements for a relevant service contract.

The processing of the above data is necessary for the Data Controller to identify the customer, draft the agreement, confirm the agreement, ensure/maintain service functionality, offer customer service, review and process feedback and complaints, resolve disputes, and for other purposes directly related to entering into or executing contracts.

5. Categories of Personal Data

Categories of personal data: first name, last name, email address or postal address, IP address, phone number, content of messages or letters, etc.

We process the following personal data from drivers:

Name, email address, telephone number, place of residence.

Geolocation of drivers and driving routes.

Vehicle information (including registration number).

Driver performance and ratings.

Driver's license, photo, profession and identity documents.

Information required by applicable law for tax purposes: such as taxpayer identification number, VAT number, place of birth, bank account number, information about each Member State in which you reside.

Any other content submitted, such as images, videos or files related to a customer support request.

Sharing of Personal Data Between Riders and Drivers:

In order to facilitate the booking and execution of rides, we allow riders and drivers to communicate directly with each other. Specifically:

Rider's Phone Number: When you book a ride, the driver will be able to see your phone number in order to contact you if necessary (e.g., for coordination, delays, or other logistical matters).

Driver's Phone Number: Similarly, the rider will be able to see the driver's phone number to reach out in case of any issues or questions related to the ride.

6. Categories of Data Recipients

The data will be provided to the Data Controller's employees who need it to perform their duties for fulfilling or entering into the relevant service agreement.

The Data Controller uses external service providers (e.g., ApplePay) who process personal data in accordance with the Data Controller's instructions and are monitored by the Data Controller both before and during the use of their services.

7. Categories of Data Subjects

Categories of data subjects: current, former, and potential customers of the Data Controller.

8. Transfer of Data Outside Finland

The received data is not transferred or transmitted outside of Finland, the European Union, or the European Economic Area, nor is it transferred to any international organization.

9. Data Retention Period

Unless stated otherwise in the privacy guidelines, the Data Controller will delete personal data no later than three months after the original data retention purpose is no longer valid, unless we are legally obligated to retain the data for a longer period (e.g., for accounting or legal purposes).

10. Data Subject's Right of Access to Personal Data

The data subject has the right to access their personal data within one month of submitting a request.

The User may submit a request to exercise their rights either in person, at the Data Controller's official address (by presenting an identity document), or by email, signed with a secure electronic signature.

Upon receiving the User's request to exercise their rights, the Data Controller will verify the User's identity, assess the request, and fulfill it in accordance with applicable regulations.

The User has the right to obtain information about the processing of their data, request access to their personal data, and ask the Data Controller to correct, complete, delete, or restrict processing, or object to the processing, provided these rights do not conflict with the purpose of data processing (such as entering into or performing contracts).

The data subject does not have the right to obtain information if the disclosure of the data is prohibited for reasons of national security, state defense, public safety, criminal law, or to protect financial interests in tax matters or financial market supervision.