Privacy Policy of thunder-rent.com

This Privacy Policy describes how personal data of users who browse or use the services provided through the website thunder-rent.com are collected and processed.

Data Controller

The Data Controller is:
AS Trade S.r.l.
Registered office: Corso G. Garibaldi, 167 – 84121 Salerno (Italy)
VAT number: 06096850653
Email: info@thunder-rent.com
Phone: +39 3520305041

For any request relating to the processing of your personal data, you may contact the Controller at the contact details indicated above.

Types of Data Collected

Through the website and its contact and booking forms, the following categories of personal data may be collected:

  • Identification data (first name, last name)

  • Contact details (email address, phone number)

  • Booking-related data (type of vehicle or boat requested, dates and duration of the rental, pick-up and drop-off location, port or boarding area, number of passengers, preferred services or extras)

  • Any additional information voluntarily provided in the free-text fields of the forms (e.g., special requests or notes)

In addition, the website may collect usage and technical data, such as:

  • IP address

  • Browser type and device information

  • Date and time of access

  • Pages visited and actions performed on the site

  • System logs necessary for the operation and security of the service

Purposes of Processing

Personal data are processed for the following purposes:

  • To handle requests for information, quotes and availability received via the website

  • To manage bookings and provide the rental services (scooters, cars, boats and related services)

  • To perform pre-contractual and contractual obligations between the parties

  • To comply with legal, accounting and tax obligations

  • To provide user support and customer care

  • To ensure the security, operation and maintenance of the website and IT systems

  • Subject to the user’s consent, to send promotional communications and offers related to the services of the Controller

Legal Basis for Processing

Processing of personal data is carried out on the following legal bases:

  • Performance of a contract and/or pre-contractual measures requested by the user

  • Compliance with legal obligations to which the Controller is subject

  • The user’s consent, for specific purposes such as marketing communications

  • The legitimate interest of the Controller in ensuring the security of the website, preventing abuse and improving the quality of the services offered

Methods of Processing

Data are processed using electronic and telematic tools and, where necessary, also by manual means, in accordance with organizational methods and logics strictly related to the stated purposes. Appropriate technical and organizational security measures are adopted to prevent unauthorized access, disclosure, alteration or destruction of personal data.

Access to data is restricted to personnel authorized by the Controller and to third parties who act as data processors or independent controllers, within the limits strictly necessary for the purposes described.

Recipients of Personal Data

For the purposes indicated above, personal data may be communicated to the following categories of recipients:

  • Hosting and IT infrastructure providers

  • Technical service providers and maintenance companies

  • Professionals and consultants (for example, accounting and legal advisors)

  • Payment service providers and financial intermediaries, where applicable

  • Public authorities and bodies, when required by law or by an order of an authority

These subjects will process the data as Data Processors appointed by the Controller or, where applicable, as independent Data Controllers in accordance with the law.

Data Transfers Outside the EU

Where services used by the website involve the transfer of personal data to countries outside the European Union or the European Economic Area, such transfers will take place in compliance with applicable data protection legislation and, where required, with the adoption of appropriate safeguards (such as standard contractual clauses approved by the European Commission).

Data Retention

Personal data are retained for the time strictly necessary to achieve the purposes for which they were collected and, where applicable, for longer periods required by law or to protect the rights of the Controller.

By way of example:

  • Data related to contracts, bookings and invoicing may be retained for the period required by civil and tax regulations

  • Data collected through contact forms may be retained for the time necessary to manage the request and for a reasonable subsequent period

  • Data processed for marketing purposes are retained until the withdrawal of the consent given by the user, without prejudice to the lawfulness of processing carried out before such withdrawal

Once the relevant retention periods have expired, personal data will be deleted or irreversibly anonymized.

User Rights

Within the limits and under the conditions established by applicable law, users have the right to:

  • Request access to their personal data and obtain information about the processing carried out

  • Request the rectification or updating of inaccurate or incomplete data

  • Request the erasure of their personal data (right to be forgotten)

  • Request the restriction of processing of their data

  • Object, on grounds relating to their particular situation, to processing based on the legitimate interest of the Controller

  • Object at any time to processing carried out for direct marketing purposes

  • Receive their data in a structured, commonly used and machine-readable format and, where technically feasible, have such data transmitted to another controller (right to data portability)

  • Withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal

To exercise these rights, users can send a request to the Controller using the contact details indicated in the “Data Controller” section. The Controller will respond within the time limits provided by law. Users also have the right to lodge a complaint with the competent Data Protection Authority.

Cookies and Tracking Technologies

The website may use cookies and similar tracking technologies to ensure its proper functioning and, where applicable, for analytical and marketing purposes. The use of non-technical cookies is subject to the user’s consent, which can be expressed or modified through the appropriate banner or preference tools made available on the site. For more information on the cookies used and how to manage them, users are invited to consult the dedicated Cookie Policy.

System Logs and Maintenance

For operation and maintenance purposes, this website and any third-party services it uses may collect system logs, which may contain personal data such as the user’s IP address.

Changes to this Privacy Policy

The Controller reserves the right to amend or update this Privacy Policy at any time, by publishing the updated version on this page. Users are advised to check this page regularly and to refer to the date of the latest modification indicated below.