Legal

Privacy Policy

Last updated: April 2026

1. Who we are

AllVignette ("we", "our", "us") is the data controller for the personal data you submit when ordering a vignette through this website.

2. What data we collect

We collect only what is required to deliver the service:

Vehicle details: license plate, country of registration, vehicle type.
Contact email (to deliver the vignette confirmation and receipt).
Payment details processed by our PCI-compliant payment provider (we do not store card numbers ourselves).
Technical data: IP address, browser user-agent, referrer URL.
Marketing attribution data (UTM tags) when present in the URL.

3. Why we use your data

To purchase the official vignette from the national operator on your behalf.
To send the vignette confirmation, receipt and customer support updates.
To prevent fraud and verify payment integrity.
To improve the service (aggregated analytics on usage patterns).
To comply with tax, accounting and legal obligations.

4. Who we share data with

The national toll operator relevant to your order (ASFINAG, DARS, etc.) — to issue the vignette.
Our payment provider — for processing the transaction.
Our email delivery provider — to send confirmation messages.
Authorities and courts — only if legally required.

We do not sell personal data to third parties for marketing purposes.

5. Data retention

We keep order data for as long as required by applicable tax and accounting law (typically 6 to 10 years). After that period data is deleted or anonymised.

6. Your rights under GDPR

If you are in the EU/EEA, you have the right to:

Access the personal data we hold about you.
Correct inaccurate data.
Request deletion (where legally possible).
Restrict or object to processing.
Data portability — receive a copy in a machine-readable format.
Lodge a complaint with a supervisory authority in your country of residence.

To exercise your rights, please contact our support team with proof of your identity.

7. Cookies

See our Cookie Policy for details on the cookies we use.

8. International transfers

Some of our service providers may be located outside the EU/EEA. In those cases transfers are covered by Standard Contractual Clauses or equivalent safeguards under GDPR Article 46.

9. Contact

For privacy-related questions, please write to our data protection contact via the form on this website.