Privacy Policy
Effective Date: 07.07.2025
Entity Name: LTD Autorent – Hertz Georgia
Website: www.hertz.com.ge
Privacy Contact Email: a.rekhviashvili@hertz.com.ge
1. Who We Are
We are an independently owned and operated franchise of Hertz, providing vehicle rental and related services. While we operate under the Hertz brand, we are a separate legal entity and are solely responsible for the processing of your personal data.
We are committed to protecting your privacy and handling your personal data in accordance with applicable data protection laws, including the General Data Protection Regulation (EU) 2016/679 ("GDPR"), and any relevant local data protection legislation.
2. Data We Collect
In the course of providing our services, we may collect, use, store, and process the following categories of personal data:
• Identity Information: such as your full name, date of birth, and driver’s license or other government-issued identification details.
• Contact Information: including your email address, phone number, and physical address.
• Payment Information: including billing address, credit or debit card details, and transaction history.
• Rental and Booking Information: such as reservation history, vehicle preferences, pick-up and drop-off locations, and rental duration.
• Location Data: including real-time GPS data collected from rental vehicles (where applicable).
• Customer Support Records: including communications with our customer service team via phone, email, or other channels.
We may also collect certain data automatically when you interact with our website or mobile services (e.g., IP address, browser type, and usage data).
3. How We Use Your Data
We use your personal data only where we have a legal basis to do so, and for the following purposes:
• To process and manage your vehicle rental, including verifying your identity, confirming reservations, processing payments, and managing pick-up and return logistics.
• To communicate with you regarding your booking, including sending confirmations, reminders, updates, or changes to your reservation.
• To improve our services, including analyzing usage patterns, customer preferences, and service feedback to enhance our products and customer experience.
• To comply with our legal and regulatory obligations, such as verifying driver eligibility, tax and accounting requirements, or responding to lawful data access requests.
• To provide customer support, including resolving complaints, processing claims (e.g., in case of vehicle damage), and addressing any inquiries or concerns you may raise.
We will only use your data for the purposes stated above unless we reasonably consider that we need to use it for another compatible purpose and the law permits us to do so. If we need to use your data for an unrelated purpose, we will notify you and explain the legal basis.
4. Cookies and Online Data Collection
We use cookies and similar technologies on our websites to enhance your browsing experience, analyze website traffic, and deliver personalized advertising. Cookies are small text files stored on your device that help websites remember your preferences, navigate pages efficiently, and function properly.
Types of Cookies We Use
1. Essential Cookies
These cookies are necessary for the website to function. They enable core features like page navigation, access to secure areas, and smooth user transitions between pages. Without these cookies, the website may not perform correctly.
2. Functionality Cookies
We do not use functionality cookies, which means our websites do not remember user preferences or settings from past visits.
3. Performance Cookies
These cookies collect anonymous data about how visitors use our website, including which pages are visited most often and whether users experience errors. The insights help us improve site performance and user experience. No personally identifiable information is collected.
4. Advertising Cookies
We use advertising cookies to display relevant ads based on your browsing behavior. These cookies may limit the number of times an ad appears and help measure the effectiveness of advertising campaigns. Some cookies may be set by third-party advertising partners and used to deliver targeted ads on other websites.
5. Third-Party Cookies
Our websites may include content from third parties (e.g., YouTube, advertising networks), which may set cookies independently. These cookies are beyond our control and are governed by the privacy policies of the respective third parties.
Managing Cookies
You can control or disable cookies through your web browser settings. For more information, visit the support pages for your browser:
• Internet Explorer
• Microsoft Edge
• Mozilla Firefox
• Google Chrome
• Opera
• Safari (macOS)
• Safari for iOS
Offline Data Collection
We may also collect personal data through offline interactions, including:
• Phone calls to or from our reservation center, customer service, or roadside assistance
• Communication with our licensees, partners, or subsidiaries (e.g., car sales, maintenance, or rental services)
• Rental or leasing agreements and reservations (including cancelled or interrupted bookings)
• Transactions with us, including charges, services selected, or incident reports
• Information received from affiliates and partners such as airlines, hotels, or insurance companies
• Data from credit reporting agencies or companies providing credibility assessments
The collection of certain personal data may be:
• Required by law or contract
• Necessary for us to fulfill a service or transaction
• Voluntarily provided by you
Failure to provide certain information may limit or prevent us from offering you services such as rentals, leasing, or purchases.
5. Legal Basis for Processing
Under the General Data Protection Regulation (GDPR), we are required to identify a lawful basis for each use of your personal data. We rely on the following legal bases:
• Contractual Necessity: We process your personal data where it is necessary to enter into or perform a contract with you — for example, to manage your vehicle rental, process payments, or respond to your reservation inquiries.
• Legal Obligation: We may process your data to comply with legal and regulatory requirements, such as verifying your driving eligibility or fulfilling tax and accounting obligations.
• Legitimate Interests: We may process your data where it is necessary for our legitimate interests — or those of a third party — provided those interests are not overridden by your rights and freedoms. For example, we may use your data to:
o Prevent fraud and abuse
o Improve our services
o Maintain vehicle safety and security
• Consent: In some cases, we will ask for your explicit consent to process your personal data — for instance, when sending you direct marketing communications (where required by law) or enabling optional location tracking.
We may send you marketing communications about our services, promotions, or updates with your prior consent (where required by law). You can opt out at any time by clicking the "unsubscribe" link in our emails or by contacting us.
6. Sharing Your Data
We may share your personal data with third parties, but only when necessary and in accordance with applicable data protection laws. Such sharing is limited to the following categories:
• Service Providers: We may share your data with trusted third-party providers who support our business operations, such as IT infrastructure providers, payment processors, customer support platforms, and cloud storage services. These providers are contractually bound to safeguard your data and only process it on our instructions (data processing agreements are in place as required by Article 28 GDPR).
• Hertz Corporation: As an independently operated franchisee, we may share limited personal data with Hertz Corporation (and its affiliates) for operational, administrative, or reporting purposes. Hertz Corporation is not a joint controller of your data unless explicitly stated, and your data will be processed in accordance with their own privacy policies and applicable law.
• Insurance Providers and Law Enforcement: We may share your data with insurance companies in connection with claims, accidents, or coverage verification. We may also disclose data to police or other public authorities where required to comply with legal obligations, respond to lawful requests, or prevent or detect crime or fraud.
• Regulatory and Legal Authorities: Where required by law, regulation, or legal proceedings, we may disclose your data to government bodies, courts, or supervisory authorities.
We do not sell or rent your personal data to third parties.
7. International Data Transfers
In some cases, your personal data may be transferred to and processed in countries outside the European Economic Area (EEA), where data protection laws may not provide the same level of protection as those in your home jurisdiction.
Whenever we transfer your personal data outside the EEA, we ensure that appropriate safeguards are in place to protect your data in accordance with applicable data protection laws. These safeguards may include:
• Standard Contractual Clauses (SCCs) approved by the European Commission, which impose contractual obligations on the recipient to protect your personal data. We will take all reasonable steps to ensure that your data is treated securely and in accordance with this Privacy Policy, regardless of the country in which it is processed;
• Adequacy decisions issued by the European Commission, where the destination country is deemed to provide an adequate level of data protection;
• Other legally permissible transfer mechanisms as applicable.
You may request a copy of the relevant safeguards used for such transfers by contacting us
8. Data Security
We take the security of your personal data seriously and implement appropriate technical and organizational measures to protect it from loss, theft, misuse, unauthorized access, disclosure, alteration, or destruction.
Your information may be stored and accessed in multiple locations, including through reputable cloud service providers.
To help protect your privacy, we encourage you to maintain the confidentiality of any credentials (such as usernames, passwords, or access codes) provided to you or created by you in connection with our services.
While we strive to use commercially acceptable means to protect your personal data, please be aware that no method of transmission over the Internet or method of electronic or physical storage is 100% secure. Whether data is transmitted via email, postal mail, phone, fax, or wireless networks, there is always a risk of interception or unauthorized access.
If you believe that your account or any interaction with us is no longer secure, please contact us immediately.
9. Your Rights
Under the General Data Protection Regulation (GDPR), you have a number of rights in relation to your personal data. These include:
• Right of Access – You have the right to request a copy of the personal data we hold about you and to receive information about how we process it.
• Right to Rectification – You may request that we correct or complete any inaccurate or incomplete personal data we hold about you.
• Right to Erasure (“Right to Be Forgotten”) – In certain circumstances, you may request the deletion of your personal data, for example where it is no longer necessary for the purposes for which it was collected.
• Right to Restrict Processing – You may request that we restrict the processing of your personal data in specific situations (e.g., while a complaint is being investigated).
• Right to Data Portability – You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller, where technically feasible.
• Right to Object – You may object to the processing of your data based on our legitimate interests, or for direct marketing purposes.
• Right Not to Be Subject to Automated Decision-Making – You have the right not to be subject to decisions made solely by automated means (including profiling) that produce legal or similarly significant effects.
• Right to Lodge a Complaint – You may file a complaint with your local data protection authority, particularly in the country where you reside, work, or where the alleged infringement occurred.
To exercise any of these rights, please contact us using the details provided in Section [Contact Us] below. We may need to verify your identity before responding to your request.
10. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including to provide our services, comply with legal obligations, resolve disputes, and enforce our agreements. In some cases, we may need to retain certain data for longer periods to meet legal, tax, accounting, or regulatory requirements.
Our data retention practices are governed by an internal policy that applies to all personal data stored across our systems. The retention period may vary depending on the nature of the data and the purposes for which it is processed.
If you have any questions about how long we keep specific types of personal data, or if you would like more information about our retention policy, please contact us.
11. Updates to This Policy
We may update this Privacy Policy from time to time to reflect changes in our legal obligations, business practices, or the way we process your personal data.
Whenever we make material changes, we will take appropriate steps to notify you in advance, consistent with the significance of the changes and applicable legal requirements. The most current version of the policy will always be available on our website, along with the effective date.
We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.
12. Contact Us
To exercise your rights or if you have questions about how we process your data, contact us at:
Email: a.rekhviashvili@hertz.com.ge
Address: Georgia, Tbilisi, Kote Apkhazi ST. #53