Login

Privacy Policy

Last updated: 2026-01-15

This Privacy Policy explains how Droovi SAS ("Droovi", "we") collects, uses, stores and protects your personal data, in compliance with the EU General Data Protection Regulation (GDPR) and the French Data Protection Act.

1. Data controller

Droovi SAS, headquartered in Nice, France. Contact: [email protected].

2. Data we collect

  • Account data: name, email, phone, role, company affiliation.
  • Operational data: bookings, ride status, GPS positions, invoices.
  • Lead data (form submissions): company, name, email or phone, fleet size, message.
  • Technical data: IP address, user agent, anonymized analytics events (only after consent).

3. Purposes of processing

  • Providing and operating the Droovi service (legal basis: contract).
  • Responding to demo or contact requests (legitimate interest).
  • Sending transactional and operational notifications (contract).
  • Analytics and product improvement, only with your consent (consent).
  • Compliance with legal obligations (e.g. invoicing — legal obligation).

4. Recipients

Your data is processed by Droovi staff and trusted sub-processors (hosting, email, payments, analytics). A list of sub-processors is available on request. We never sell your data.

5. International transfers

Some sub-processors are located outside the EEA. In such cases, transfers are protected by Standard Contractual Clauses approved by the European Commission.

6. Retention

  • Account data: duration of the contractual relationship + 3 years.
  • Lead data without conversion: 3 years from last contact.
  • Invoicing data: 10 years (legal obligation).
  • Analytics data: 25 months maximum.

7. Your rights

You may exercise your right of access, rectification, erasure, restriction, portability, objection and withdrawal of consent at any time by emailing [email protected]. You may also lodge a complaint with the French data protection authority (CNIL).

8. Security

We apply technical and organizational measures including encryption in transit (TLS 1.2+), access control, audit logs, regular backups and vendor security reviews.

9. Cookies

For details on cookies and how to manage them, see our Cookie Management page.