Privacy Policy
Last updated : 17 July 2026
This policy explains how RentCar.mu processes your personal data, in accordance with the General Data Protection Regulation (GDPR) and the French Data Protection Act — the publisher being established in France — as well as the Mauritius Data Protection Act 2017, the service operating in Mauritius.
1. Data controller
GOLAUP SAIF ULLAH — Entreprise individuelle (micro-entrepreneur) ("RentCar.mu"), SIREN 891 713 505, France — part of the WebCare (webcare.fr) group. Publication director: Saif Golaup. For any question about your data: [email protected].
2. Data collected
Identity and contact details (name, email, phone); account information; booking details; driver and driving-licence information provided at the counter; inspection photos and readings; reviews; technical data (logs, language preference).
3. Purposes and legal bases
Fulfilling bookings and the contract (basis: performance of contract); account and customer-service management; security and fraud prevention (basis: legitimate interest); compliance with the legal obligations of agencies and the platform (basis: legal obligation); sending reminders and review requests related to your bookings.
4. Recipients
The rental agency for your booking; where applicable, the secure payment provider; technical providers (hosting, email/SMS/WhatsApp) acting as processors.
AI-assisted processing: some features (licence reading, inspection-photo analysis, drafting assistance) use an artificial-intelligence provider. The relevant images or text may be transmitted to that provider, including outside Mauritius, solely to deliver the feature, with no advertising reuse.
5. Transfers outside Mauritius
Some processors may be located abroad. In that case, transfers are governed in accordance with the Data Protection Act 2017 (appropriate contractual safeguards).
6. Retention
Data is kept for as long as necessary for the above purposes and for applicable Mauritian legal and accounting obligations, then deleted or anonymised. [Detailed periods — to be completed according to your obligations].
7. Your rights
Under the GDPR and the Data Protection Act 2017, you have the rights of access, rectification, erasure, restriction, portability and objection, and the right to withdraw consent at any time. To exercise them: [email protected].
You may also lodge a complaint with the CNIL in France (cnil.fr) or the Data Protection Office of Mauritius (dataprotection.govmu.org).
8. Security
We implement reasonable technical and organisational measures to protect your data (restricted access, encrypted transport, multi-agency isolation).
Template aligned with Mauritian law, provided for information. Have it reviewed by a Mauritian legal professional and complete the publisher's details before relying on it.