Effective Date: July 24, 2025

• Introduction

  TAI’S BROS. CORP and its affiliated rental brands—TAICO Rent-A-Car, JAPAN Rent-A-Car, ONE’S Rent-A-Car, e Rent-A-Car, GU Rent-A-Car, and NET Rent-A-Car (collectively “we,” “our,” or “the Company”)—are committed to protecting your privacy.
  This Privacy Policy explains how we collect, use, store, and protect personal information in compliance with laws applicable in Guam and international best practices. It also describes your rights and how to exercise them.

• What Information We Collect

  We may collect the following types of personal information:
  - Identification: Full name, date of birth, government ID, driver’s license, photos
  - Contact: Physical address, phone, email, emergency contact
  - Financial: Payment card details, billing address
  - Employment: Employer information (if applicable)
  - Usage: IP address, browser info, cookies, site behavior, GPS data from vehicles
  - Surveillance: In-office video recordings for fraud and safety purposes
  - Communication: Customer support inquiries, emails, and call logs

• How Information is Collected

  We collect personal data:
  - Directly from you during booking or rental transactions
  - Automatically via our website, telematics, or security systems
  - From third parties like insurers, background screening agencies, or affiliates

• Why We Collect Your Data

  - To complete your rental transaction and verify your eligibility
  - To fulfill legal or insurance obligations
  - To prevent fraud or unauthorized vehicle use
  - To enhance service quality and customer support
  - To communicate updates, promotions (with opt-out rights)
  - To process payments and manage your account

• Legal Basis for Processing

  - Your consent (for optional services and marketing)
  - Contractual necessity (to deliver rental services)
  - Legal obligations (such as vehicle accident reporting)
  - Legitimate interest (fraud prevention, service improvement)

• Who We Share Your Information With

  - Service providers who assist with payments, analytics, and operations
  - Law enforcement or regulatory bodies when legally required
  - Insurance partners for claims or coverage verification
  - Affiliates and contractors under strict data agreements
  We do not sell your personal data.

• International Transfers

  If necessary, your data may be processed outside Guam (e.g., USA data centers).
  We ensure these transfers meet legal standards for data protection.

• Data Retention

• Data Security

  We implement physical, technical, and administrative measures to protect your data from unauthorized access, loss, or misuse.

• Your Rights

  You may:
  - Access your personal data
  - Request correction or deletion
  - Withdraw consent for marketing
  - Object to or restrict certain uses
  - File a complaint with Guam authorities

• Cookies and Tracking

  Our website uses cookies to enhance user experience and for analytics.
  You can manage your cookie preferences in your browser settings.

• Children’s Privacy

  We do not knowingly collect data from anyone under the age of 13.
  If you are a parent or guardian and believe we have collected information from your child, please contact us.

• Electronic Signature Capture & Acknowledgment

• Updates to This Policy

  We may update this Privacy Policy periodically. Changes take effect upon publication.
  We encourage you to review the latest version on our website.

• Contact Us

  If you have any questions or requests, please contact us:
  Email: info@taico-guam.com
  Phone: +1-671-647-6000
  Mail: 482 Pale San Vitores Road, Tamuning, Guam 96913-4003
  
  We retain your personal information only as long as necessary to meet legal, contractual, and operational obligations.
  
  Retention periods may vary depending on the nature of the data and applicable law.
  
  For efficiency and compliance, we use electronic systems to capture your signature when you acknowledge and agree to this Privacy Policy.
  Your electronic signature is legally binding and treated the same as a handwritten signature under Guam law.
  
  By engaging with our services—whether through online booking platforms, mobile applications, direct in-person interactions, or third-party service partners—you are entrusting us with your personal information, and we take this responsibility seriously.
  
  We recognize and acknowledge the immense importance of safeguarding personal privacy in an ever-evolving digital landscape. Our unwavering commitment to privacy protection extends across all facets of our operations and is grounded in the principles of transparency, accountability, and regulatory compliance.
  
  In cases where permissible under applicable jurisdictional guidelines, we may also cross-reference user-submitted data with publicly available databases or commercial repositories for validation, augmentation, or fraud prevention purposes.
  
  Collection methods include, but are not limited to, direct transmission of data via user-submitted digital forms, passive data collection via telemetry and browser-based technologies, third-party data enrichment, opt-in marketing services, and metadata extraction from user-generated digital interactions with our platform.
  
  This framework aligns with principles established under globally recognized data protection laws, including but not limited to the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and the Fair Credit Reporting Act (FCRA), insofar as they are applicable to our operations.
  
  Our processing activities are grounded in a multifaceted framework of lawful bases, which include consent (explicit, implicit, and informed), contractual necessity, compliance with legal obligations (both statutory and regulatory), and legitimate interests pursued by the Company or by a third party.
  
  We also engage in regular vulnerability assessments, penetration testing, and incident response simulations to identify potential security risks and remediate them proactively.
  
  To maintain and enhance the integrity, confidentiality, and availability of your personal information, we deploy a layered security approach encompassing administrative controls (e.g., policies and training), technical safeguards (e.g., encryption protocols, intrusion detection systems), and physical controls (e.g., access restriction, surveillance systems).
  
  For instance, the contact data you provide may not only enable transactional communications but may also, under specific conditions and with appropriate legal safeguards, inform our predictive analytics models that forecast rental demand based on temporal and geographic variables.
  
  The multifactorial rationale underpinning our data collection processes arises from a confluence of operational necessities, regulatory mandates, contractual obligations, and discretionary strategic imperatives. Each datum serves a distinct and, in some instances, overlapping function in our efforts to ensure service continuity, uphold legal compliance, and facilitate scalable customer-centric innovations.
  
  We reserve the right, to the fullest extent permitted under prevailing legislation, to cooperate with regulatory bodies, judicial authorities, and enforcement agencies by disclosing pertinent personal data as may be required in response to subpoenas, warrants, statutory requests, or intergovernmental data exchange frameworks.
  
  Data sharing occurs strictly in accordance with pre-established data processing agreements, non-disclosure covenants, and jurisdictional requirements. These external entities are contractually obligated to adhere to data protection standards that meet or exceed those established under applicable law.
  
  Any such request shall be evaluated on a case-by-case basis, and the Company reserves the prerogative to impose reasonable limitations where legally justified, including but not limited to scenarios involving the preservation of legal claims, protection of third-party rights, or conflicts with ongoing law enforcement investigations.
  
  You are entitled, within the constraints of applicable law and subject to identity verification protocols, to exercise your individual data subject rights. These may include the rights to access, rectify, erase, restrict processing, data portability, and object to automated decision-making where applicable.
  
  For efficiency and compliance with applicable digital transaction practices, we utilize electronic signature systems to facilitate your acknowledgment of this Privacy Policy.
  
  By providing an electronic signature—whether through touchscreen interface, typed confirmation, checkbox verification, or any other legally recognized digital method—you affirm your informed understanding and consent to the collection, processing, and sharing of your personal data as outlined herein.
  
  Such electronic signatures are deemed legally binding and enforceable to the fullest extent permitted under the laws of Guam and applicable federal standards. The digital record of your acceptance is securely stored and may be used as evidence of your agreement.