Privacy Policy for WeAuto

Effective Date: July 7, 2025

At WeAuto (referred to as “WeAuto,” “we,” “us,” or “our”), we are committed to protecting the privacy and security of your personal data. This Privacy Policy explains how we collect, use, disclose, and protect your information when you visit our website at  weauto.ma, use our car rental services, or interact with us online.

By accessing or using our services, you agree to the collection and use of your information in accordance with this policy. If you do not agree with the terms of this policy, please do not use our services.

1. Information We Collect

We collect various types of information to provide and improve our car rental services. This may include:

  • Personal Identification Information:

    • Full name

    • Date of birth

    • Contact details (email address, phone number, physical address)

    • Nationality

    • Copies of identity documents (National ID card, Passport) for verification purposes

    • Driver’s license details (number, issuing authority, expiry date, class)

    • Emergency contact information

  • Payment Information:

    • Credit card or debit card details (card number, expiry date, CVV – note: CVV is typically processed by payment gateways and not stored by WeAuto)

    • Bank account details (for refunds or specific payment methods)

  • Rental Information:

    • Pickup and drop-off locations

    • Rental dates and times

    • Vehicle preferences

    • Rental history with WeAuto

    • Insurance preferences

  • Communication Information:

    • Records of your correspondence with us (emails, chat messages, phone calls)

    • Feedback and survey responses

  • Technical and Usage Data:

    • IP address

    • Browser type and version

    • Operating system

    • Pages visited on our website

    • Time and date of visit

    • Referring website URLs

    • Device identifiers

    • Information collected via cookies and similar tracking technologies (see Section 5 below)

  • Vehicle Telematics Data (if applicable and with clear disclosure):

    • If our vehicles are equipped with telematics systems that collect data such as location, mileage, fuel level, or vehicle performance, we will clearly inform you at the time of rental and explain the purpose of such collection. This data is generally used for vehicle tracking (in case of theft/loss), maintenance, and ensuring safe operation.

2. How We Collect Your Information

We collect personal data through various methods:

  • Directly from You: When you make a booking online, fill out forms on our website, contact our customer service, create an account, or complete rental agreements at our physical locations.

  • Automatically: As you navigate our website, through cookies, web beacons, and other tracking technologies.

  • From Third Parties: We may receive information from payment service providers, identity verification services, insurance companies, and other partners involved in facilitating your rental.

3. How We Use Your Information

We use your personal data for the following purposes and based on the following legal grounds:

  • To Process and Manage Your Bookings and Rentals (Contractual Necessity):

    • Confirming and guaranteeing your reservations.

    • Processing payments and managing invoices.

    • Delivering and collecting vehicles.

    • Managing potential claims, accidents, or damages to the vehicle.

    • Verifying your identity and driver’s license eligibility.

    • Providing customer support related to your rental.

  • To Improve Our Services and Website (Legitimate Interest):

    • Analyzing website usage to understand user behavior and optimize our website’s functionality and user experience.

    • Conducting research and analysis to develop new products and services.

    • Gathering feedback through surveys to enhance our offerings.

  • For Marketing and Promotional Activities (With Your Consent or Legitimate Interest):

    • Sending you information about special offers, promotions, and new services that may be of interest to you, based on your preferences.

    • Personalizing your experience and suggesting preferred products/services based on your rental history.

    • Managing loyalty programs.

    • We will obtain your explicit consent for direct marketing communications unless permissible under legitimate interest for existing customers and similar services. You can opt-out at any time.

  • To Ensure Safety, Security, and Fraud Prevention (Legitimate Interest & Legal Obligation):

    • Protecting our vehicles and property.

    • Preventing and detecting fraud and unauthorized use of our services.

    • Maintaining “Do Not Rent” lists for safety and financial risk management.

    • Monitoring vehicle usage (if telematics are in place) for safety and theft prevention.

  • To Comply with Legal and Regulatory Obligations (Legal Obligation):

    • Responding to requests from law enforcement, government agencies, or judicial bodies.

    • Complying with tax, accounting, and other legal requirements.

    • Managing and resolving legal disputes.

4. Sharing Your Information

We may share your personal data with the following categories of recipients, only when necessary and in accordance with applicable data protection laws:

  • Our Affiliates and Group Companies: For internal administration and service provision.

  • Service Providers: Third-party companies that perform services on our behalf, such as payment processing, IT services, website hosting, customer support, marketing, and analytics. These providers are contractually obligated to protect your data and only use it for the purposes for which it was shared.

  • Insurance Companies: In case of an accident, damage, or claims related to your rental.

  • Law Enforcement and Government Authorities: If required by law, court order, or to protect our legal rights, property, or safety, or that of our customers or the public.

  • Debt Collection Agencies: In case of unpaid debts related to your rental.

  • Emergency Services: If a vehicle is equipped with telematics and an accident or emergency is detected.

  • Professional Advisors: Such as lawyers, accountants, or auditors.

  • In connection with Business Transfers: If WeAuto is involved in a merger, acquisition, or asset sale, your personal data may be transferred as part of that transaction. We will notify you of any such transfer and changes to this Privacy Policy.

We do not sell or rent your personal data to third parties for their marketing purposes without your explicit consent.

5. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance your Browse experience, analyze site traffic, personalize content, and deliver relevant advertisements.

  • What are Cookies? Cookies are small text files placed on your device when you visit a website.

  • How We Use Them: We use both session cookies (which expire when you close your browser) and persistent cookies (which remain on your device for a set period or until you delete them) for purposes such as:

    • Remembering your preferences (e.g., language, currency).

    • Keeping you logged in.

    • Analyzing website traffic and user behavior.

    • Tailoring advertising to your interests.

  • Your Choices: You can manage your cookie preferences through your browser settings. Please note that disabling certain cookies may affect the functionality of our website.

6. Data Security

We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, alteration, disclosure, destruction, or loss. These measures include:

  • Encryption: Using Secure Socket Layer (SSL) technology to encrypt data during transmission (e.g., when you enter payment details).

  • Access Controls: Restricting access to personal data to authorized personnel on a need-to-know basis.

  • Data Minimization: Collecting only the personal data that is necessary for the stated purposes.

  • Regular Security Audits: Periodically reviewing our security practices.

  • Secure Storage: Storing data on secure servers with robust physical and digital safeguards.

While we strive to protect your personal data, no method of transmission over the internet or electronic storage is 100% secure. Therefore, we cannot guarantee its absolute security.

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for legal, accounting, or reporting requirements. The retention period is determined by factors such as:

  • The type of data and its purpose.

  • The nature and sensitivity of the data.

  • Potential risks of unauthorized use or disclosure.

  • Legal and regulatory obligations (e.g., tax data often retained for 5-10 years, contractual data related to rentals).

  • Any disputes or legal claims.

Once your data is no longer required, we will securely delete or anonymize it.

8. Your Rights

Under Moroccan data protection law (Law n° 09-08) and GDPR (if applicable), you have certain rights regarding your personal data:

  • Right to Access: You have the right to request a copy of the personal data we hold about you.

  • Right to Rectification: You have the right to request correction of inaccurate or incomplete personal data.

  • Right to Erasure (Right to be Forgotten): You have the right to request the deletion of your personal data under certain circumstances (e.g., when it is no longer necessary for the purposes for which it was collected).

  • Right to Restrict Processing: You have the right to request that we limit the processing of your personal data under certain conditions.

  • Right to Object to Processing: You have the right to object to the processing of your personal data, particularly for direct marketing purposes or when based on legitimate interest.

  • Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller, where technically feasible.

  • Right to Withdraw Consent: Where we rely on your consent for processing your personal data, you have the right to withdraw that consent at any time. This will not affect the lawfulness of processing based on consent before its withdrawal.

  • Right to Lodge a Complaint: You have the right to lodge a complaint with the relevant data protection authority. In Morocco, this is the CNDP (Commission Nationale de Contrôle de la Protection des Données à Caractère Personnel).

To exercise any of these rights, please contact us using the details provided in Section 10. We will respond to your request within the legally required timeframe. We may require you to verify your identity before processing your request.

9. International Data Transfers

As WeAuto operates globally (or may in the future), your personal data may be transferred to, stored, and processed in countries outside of Morocco, including countries within the European Union or other jurisdictions where our service providers operate. When transferring your data internationally, we ensure appropriate safeguards are in place to protect your privacy rights and comply with applicable laws, such as using standard contractual clauses or ensuring the recipient country has adequate data protection laws.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or new technologies. We will notify you of any significant changes by posting the new Privacy Policy on this page and updating the “Effective Date” at the top. We encourage you to review this Privacy Policy periodically for any changes.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

WeAuto Customer Privacy

  • Our location: N°177 Rue 9, Fès, Morocco
  • Email: contact@weauto.ma
  • Phone: +212663765838