Data Controller: VIP Transfers Sp. z o.o., ul. Szlak 77/222, 31-153 Krakow, Poland
KRS: 0000775527 · NIP: 6793181754 · REGON: 382759022

Personal data is processed in accordance with Regulation (EU) 2016/679 (GDPR).

Data protection enquiries: kontakt@viptransfers.pl · +48 574 254 347

01

Payments

No additional fees are charged for credit or debit card payments. When booking through viptransfers.pl you may pay the full estimated cost in advance by credit/debit card, BLIK or bank transfer. VAT invoices are issued on request.

Price includes

Passenger insurance, English-speaking chauffeur, in-car Wi-Fi, bottled water, vehicle hire and fuel.

The quoted price is final, based on information provided at booking. Additional costs arise only if the itinerary is changed or extra journeys are requested. The charge will appear on your card statement as VIP Transfers Sp. z o.o.

02

Booking & Cancellation

After booking and payment you will receive a confirmation at the e-mail address provided. To amend or cancel a booking: kontakt@viptransfers.pl. For detailed cancellation terms, refund tiers and rebooking options, see our Cancellation Policy.

03

Terms of Service

Online bookings require a minimum of 6 hours’ notice. For shorter lead times, call us directly.
We make every effort to ensure punctuality but cannot accept responsibility for delays caused by circumstances beyond our control.
The chauffeur will drive at a safe and reasonable speed, appropriate to road conditions and traffic laws.
The client is liable for any damage caused to the vehicle interior or exterior.
Route changes that extend the journey may incur additional charges per published rates.
We reserve the right to substitute the vehicle or chauffeur for operational reasons.
All vehicles carry full passenger and third-party liability insurance. Client property is carried at the client’s own risk.
We reserve the right to refuse service to passengers whose behaviour endangers safety. No refund is due in such cases.
Smoking is strictly prohibited in all vehicles. Penalty: PLN 2,000 net.

Nothing in these terms limits any rights you may have under applicable law.

Community Guidelines — in-app messaging

The VIP Transfers Poland and VIP Chauffeur applications include a private in-app chat between the booked client and the assigned driver. The chat is active only during the transfer window (from 90 minutes before pick-up to 60 minutes after completion) and exists solely to coordinate the service — pickup location, timing, luggage, special requests.

You agree not to use the chat to: harass, threaten, defame or send sexually explicit content; share unsolicited advertising; request or offer payments outside the VIP Transfers platform; impersonate another person; or share content that violates Polish or EU law.

Each party can block the other (one-tap, closes the conversation immediately) and report any concern (spam, abuse, fraud, off-platform payments, other). All reports are reviewed by our moderation team within 24 hours. Confirmed violations may result in message redaction, conversation closure, account suspension or permanent removal from the service. Serious violations are reported to the competent authorities. Moderation enquiries: kontakt@viptransfers.pl.

04

Collection of Personal Data

VIP Transfers collects personal data only to the extent necessary to deliver the requested service. Depending on the interaction, this may include your name, e-mail address, telephone number, route details and payment information.

Legal Bases for Processing

Art. 6(1)(b) — contract performance · Art. 6(1)(c) — legal obligation · Art. 6(1)(f) — legitimate interests · Art. 6(1)(a) — consent

Retention: Data is retained for as long as necessary to fulfil the purposes of processing and then for any period required by law (e.g. accounting records — 5 years). Data processed on the basis of consent is retained until consent is withdrawn.

05

Your Rights (GDPR)

Access your data Art. 15

Rectify inaccurate data Art. 16

Erase your data Art. 17

Restrict processing Art. 18

Portability of data Art. 20

Object to processing Art. 21

Withdraw consent any time

Complaint to UODO uodo.gov.pl

To exercise any of these rights: kontakt@viptransfers.pl

06

MOBILE APPS

Mobile Applications

VIP Transfers provides mobile applications for clients (VIP Transfers Poland, available on App Store and Google Play) and drivers (VIP Chauffeur). By using these applications you consent to the data practices described below.

Account Data

We collect your name, e-mail and phone number for identification, bookings and communication. You may delete your account at any time from the Profile section of the app. Upon deletion, personal data is anonymised, authentication tokens are revoked and push notification tokens are removed from our servers.

Location Data

VIP Transfers Poland (client app)

Location may be used to auto-fill pick-up addresses and display nearby points on the map. Location access is requested only when you interact with the map or booking form and is not collected in the background. You can deny location access — the app remains fully functional with manual address entry.

VIP Chauffeur (driver app)

Location is collected during active orders (~90 min before pick-up to completion) for:

Real-time vehicle tracking for dispatcher & client
Geofencing at pick-up (50 m) and drop-off (150 m) locations
Route recording for quality assurance & dispute resolution

Data includes latitude, longitude, speed, bearing & GPS accuracy. Transmitted every ~10 seconds. Background location access is used so tracking continues when the app is minimised. No data is collected without an active order.

Android: ACCESS_BACKGROUND_LOCATION · iOS: Always location permission

Location data sharing

Location data is shared only with VIP Transfers dispatchers/administrators and clients who booked the ride. It is not sold, rented, or shared with any third parties for advertising or analytics.

Location data is processed on the basis of Art. 6(1)(b) GDPR (contract) and Art. 6(1)(f) GDPR (legitimate interest). You may revoke location permissions in your device settings at any time.

Payment Data (client app)

Payments are processed securely by Stripe (stripe.com). VIP Transfers does not store credit/debit card numbers, CVV or full card details on its servers. Stripe is a PCI DSS Level 1 certified payment processor. We only receive a transaction identifier and payment confirmation status.

Push Notifications

Both apps send push notifications about order status changes, driver assignments, in-app chat messages and service updates. A device token (FCM for Android, APNs for iOS) is stored to deliver notifications. Tokens are deleted on logout or account deletion. You can disable notifications in your device settings at any time.

The client app uses a randomly assigned installation identifier (installation_id, UUID) not linked to your identity unless you log in. If you check pricing in the app without booking, we may send a single follow-up notification with a courtesy discount, valid for 24 hours. To disable: Settings → Notifications → Saved-quote reminders. To erase all data tied to your device: Settings → Notifications → Delete my data.

Camera & Photo Library

Both apps may request camera and photo library access so you can attach an image to an in-app chat message (e.g. pickup location or luggage). The driver app may additionally use the camera to capture receipt photos for additional costs. Access is requested only when you initiate the action; images are uploaded securely via TLS.

Google Calendar Sync (driver app — optional)

The VIP Chauffeur driver app offers an optional feature to sync your orders with your Google Calendar. The feature is opt-in: you tap "Add to Google Calendar" on an order screen and grant access in the Google sign-in modal.

What we do

Create, update and delete only the events corresponding to your own orders, in your primary Google Calendar.
We do not read other events from your calendar.
We do not send any calendar data to VIP Transfers servers or to third parties.

Scope & revocation

OAuth scope: https://www.googleapis.com/auth/calendar.events. The access token is stored locally in the device keychain. Revoke any time by signing out from Google in the app or removing the connection in your Google account settings ("Connected apps").

In-App Messaging

Both apps include a private chat between the booked client and the assigned driver, intended solely for coordinating the transfer.

What is processed

Message text content
Photo attachments (max 5 MB; JPEG, PNG, HEIC)
Sender identity & conversation membership
Timestamps and read/delivery status

When the chat is active

Opens 90 minutes before pick-up
Active during the entire transfer
Closes 60 minutes after completion
Outside the window: read-only archive

Moderation & safety

Block the other party with one tap
Report spam, abuse, fraud, off-platform payments or other concerns
Reviewed within 24 hours by our moderation team
Authorised administrators may access conversations strictly for moderation, dispute resolution and customer support

Legal basis & retention

Art. 6(1)(b) GDPR — performance of contract (service coordination).
Art. 6(1)(f) GDPR — legitimate interest (safety, audit, dispute resolution).

Message content and attachments are deleted 90 days after the transfer is completed. Audit metadata (sender, timestamps, message length) is retained for fraud prevention and the accounting periods required by law.

Messages are stored on VIP Transfers servers within the European Economic Area. The chat is not end-to-end encrypted: traffic is protected by TLS and data-at-rest is protected by infrastructure-level controls, but authorised VIP Transfers personnel may read conversations as required for moderation, safety, fraud prevention and customer support.

Data Storage & Security

TLS/HTTPS encryption for all communication

Servers within the European Economic Area

Secure on-device storage (Android Keystore / iOS Keychain)

Personal data never sold or rented to third parties

Mobile App Data Retention

Location dataRetained for service delivery & dispute resolution, then anonymised

Account dataRetained while account is active; anonymised upon account deletion

Order dataRetained per applicable law (e.g. accounting records — 5 years)

Chat messagesContent deleted 90 days after the transfer; audit metadata retained for fraud prevention & accounting law

Push tokensDeleted on logout or account deletion

07

Data Sharing

Employees and contractors who need it to deliver the service.
Data processors (e.g. payment operators, IT providers) under GDPR-compliant agreements.
Public authorities — only when required by law.

VIP Transfers does not sell or rent personal data. Data is not transferred outside the European Economic Area.

08

Cookies

Essential — website operation, sessions, forms.
Analytical — anonymous statistics (Google Analytics).
Functional — language, preferences.

You may change cookie settings in your browser at any time.

09

Data Security

VIP Transfers implements appropriate technical and organisational measures to protect personal data. In the event of a breach, we will report it to UODO within 72 hours and, where necessary, notify affected individuals promptly.

LAST UPDATED

March 2026

The current version is always available at viptransfers.pl/en/privacy-policy

Privacy Policy & Terms of Service