Privacy Policy

Last Updated: February 2025

Our Commitment to Privacy

Zenith Luxury is committed to protecting your personal data and privacy. This policy explains how we collect, use, and protect your information when you use our luxury car rental services in Singapore.

This policy applies to our website, services, and all interactions with Zenith Luxury. By using our services, you agree to the collection and use of information in accordance with this policy.

Your data is protected under Singapore's Personal Data Protection Act (PDPA)

Information We Collect

Personal Information

We collect the following types of personal data when you use our services:

Contact Information

  • Full name and title
  • Email address
  • Phone number
  • Mailing address
  • Emergency contact details

Service Information

  • Driving license details
  • Payment information
  • Service preferences
  • Booking history
  • Communication records

Usage Data

We automatically collect certain information when you visit our website:

  • IP address and device information
  • Browser type and version
  • Pages visited and time spent
  • Referring website information
  • Location data (country/city level)
  • Cookies and similar tracking technologies

Legal Basis for Processing

We process your personal data based on the following legal grounds:

Consent

For marketing communications and optional services

Contract Performance

To provide requested car rental and concierge services

Legitimate Interest

For business operations, fraud prevention, and service improvement

Legal Obligation

For tax compliance, regulatory reporting, and safety requirements

How We Use Your Information

Service Delivery

  • Process and fulfill your car rental bookings
  • Provide concierge and lifestyle services
  • Coordinate track day experiences and instruction
  • Handle payments and billing
  • Provide customer support and assistance
  • Send service-related notifications and updates

Communication

  • Respond to your inquiries and requests
  • Send booking confirmations and reminders
  • Provide safety and emergency notifications
  • Share service updates and improvements
  • Send marketing communications (with consent)
  • Conduct satisfaction surveys and feedback collection

Business Operations

  • Analyze website usage and improve user experience
  • Conduct market research and service development
  • Prevent fraud and ensure security
  • Comply with legal and regulatory requirements
  • Maintain business records and documentation
  • Resolve disputes and handle complaints

Data Protection Measures

Security Measures

We implement comprehensive security measures to protect your personal data:

Technical Safeguards

  • SSL encryption for data transmission
  • Secure servers with access controls
  • Regular security audits and updates
  • Firewall and intrusion detection systems
  • Data backup and recovery procedures

Administrative Controls

  • Staff training on data protection
  • Access restrictions based on job role
  • Confidentiality agreements
  • Regular policy reviews and updates
  • Incident response procedures

Data Retention

We retain your data for the following periods:

Contact form submissions 3 years
Service and booking records 5 years
Financial and payment records 7 years
Marketing communications Until consent withdrawn
Website analytics data 26 months

Breach Notification

In the unlikely event of a data breach affecting your personal information:

  • We will notify the Personal Data Protection Commission Singapore within 72 hours
  • Affected individuals will be informed without undue delay
  • We will provide clear information about the nature and extent of the breach
  • Immediate steps will be taken to secure data and prevent further breaches
  • We will cooperate fully with regulatory authorities

Data Sharing and Third Parties

Service Providers

We may share your data with trusted third-party service providers:

Payment Processors

For secure payment processing and fraud prevention

Stripe, PayPal, bank payment gateways

Analytics Services

For website analytics and performance monitoring

Google Analytics, Microsoft Clarity

Communication Platforms

For email delivery and customer support

Email service providers, CRM systems

Concierge Partners

For restaurant reservations and lifestyle services

Restaurants, hotels, yacht charter companies

Legal Requirements

We may disclose your information when required by law or to:

  • Comply with legal obligations and court orders
  • Respond to government and regulatory requests
  • Protect our rights, property, and safety
  • Prevent fraud and criminal activity
  • Enforce our terms of service

Your Privacy Rights

Access and Control

Under Singapore's Personal Data Protection Act, you have the following rights:

Right to Access

Request a copy of the personal data we hold about you

Right to Rectification

Correct inaccurate or incomplete personal data

Right to Erasure

Request deletion of your personal data (subject to legal requirements)

Right to Data Portability

Receive your data in a machine-readable format

Right to Object

Object to certain types of data processing

Right to Withdraw Consent

Withdraw consent for marketing communications at any time

How to Exercise Your Rights

To exercise any of your privacy rights, please contact us using the information below:

Email

privacy@[domain.name]

Response Time

We will respond to your request within 30 days

Identity Verification

We may require identification to process your request

Complaints and Contact

If you have concerns about how we handle your personal data:

Contact Our Privacy Officer

Email us at privacy@[domain.name] with your concerns

File a Complaint

You can file a complaint with the Personal Data Protection Commission Singapore (PDPC) at pdpc.gov.sg

Privacy Questions?

If you have any questions about this privacy policy or our data practices, please don't hesitate to contact us.

privacy@[domain.name] Updated: February 2025