Privacy Policy
Last Updated: January 2024
1. Introduction
Wewolta ("we," "us," or "our") operates as an auto service provider. This Privacy Policy explains how we collect, use, and protect your personal data in compliance with GDPR and applicable regulations.
2. Data We Collect
- Contact Information: Name, email, phone number, address
- Vehicle Data: Make, model, year, VIN, service history
- Payment Information: Processed securely; we do not store full credit card details
- Website Usage: IP address, browser type, pages visited (via analytics)
3. How We Use Your Data
- Provide and manage auto repair services
- Process payments and invoices
- Send service updates and appointment reminders
- Improve our services and website experience
- Comply with legal obligations
4. Legal Basis (GDPR)
We process your data based on:
- Performance of a contract (service delivery)
- Legitimate business interests (service improvements)
- Legal compliance (tax and regulatory requirements)
- Your explicit consent (marketing communications)
5. Data Sharing
We do not sell your data. We may share information with:
- Payment processors and financial institutions
- Legal authorities when required by law
- Trusted service providers under data processing agreements
6. Data Retention
We retain service and payment records for 7 years (legal requirement). You may request deletion of other personal data, subject to applicable laws.
7. Your Rights (GDPR)
- Right to access your data
- Right to correct inaccurate data
- Right to erasure ("right to be forgotten")
- Right to restrict processing
- Right to data portability
- Right to withdraw consent
8. Security
We implement industry-standard encryption, firewalls, and secure protocols to protect your data from unauthorized access.
9. Cookies
Our website uses essential cookies for functionality and optional analytics cookies. You can manage cookie preferences in your browser.
10. Contact & Data Subject Requests
Email: contact@wewolta.lol
Address: Viersener Straße 8, 41061 Mönchengladbach, Deutschland
For GDPR requests, please allow 30 days for response.