Privacy Policy

Your privacy and data security are our top priorities. Learn how RepairTrak protects your business and customer information.

📅 Last Updated: January 15, 2025
🔒 GDPR & CCPA Compliant
🏢 RepairTrak LLC
🛡️ Enterprise Security
🔐 Data Encryption
SOC 2 Compliant
🇪🇺 GDPR Ready

Privacy at a Glance

RepairTrak is committed to protecting your privacy and maintaining the security of your business and customer data. Here's what you need to know:

🏪
You Own Your Data
🔒
End-to-End Encryption
🚫
No Data Selling
📱
Customer Opt-In
🗑️
Right to Delete
🌍
Global Compliance

📋 Privacy Policy Contents

1. Privacy Overview

RepairTrak LLC ("RepairTrak," "we," "us," or "our") is committed to protecting the privacy and security of your personal information and business data. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you use our auto repair tracking platform and related services (the "Service").

Our Privacy Commitment: We believe that your business data belongs to you. RepairTrak serves as a secure platform for managing your customer communications and repair tracking, and we are committed to maintaining the highest standards of data protection and privacy.

This Privacy Policy applies to all information collected through our Service, including our website, mobile applications, and any related services, sales, marketing, or events. It also describes your rights regarding your personal information and how you can exercise those rights.

Key Privacy Principles

  • Data Ownership: You retain complete ownership of your business and customer data
  • Transparency: We clearly explain what data we collect and how we use it
  • Control: You have full control over your data and can request access, modification, or deletion
  • Security: We implement industry-leading security measures to protect your information
  • Compliance: We adhere to global privacy regulations including GDPR and CCPA

2. Data We Collect

We collect several types of information to provide and improve our Service. The information we collect falls into three main categories:

2.1 Account and Business Information

When you create a RepairTrak account, we collect:

Data Type Examples Purpose
Business Information Shop name, address, phone number, business license Account setup, service delivery, compliance verification
Contact Information Name, email address, phone number, job title Account management, support, billing communications
Authentication Data Username, password (encrypted), security questions Account security, login verification
Billing Information Payment method, billing address, transaction history Payment processing, subscription management

2.2 Customer Data (Data You Input)

Through your use of RepairTrak, you may input customer information including:

Data Type Examples Your Responsibility
Customer Contact Info Names, phone numbers, email addresses Ensure customer consent for data collection
Vehicle Information VIN, make, model, year, license plate Use only for legitimate business purposes
Repair Documentation Photos, videos, repair notes, estimates Obtain permission before photographing vehicles
Communication Records Messages, comments, voice recordings Follow local recording consent laws

2.3 Usage and Technical Information

We automatically collect certain technical information to improve our Service:

  • Device Information: IP address, browser type, operating system, device identifiers
  • Usage Data: Pages visited, features used, time spent, click patterns
  • Performance Data: Error logs, loading times, feature usage statistics
  • Location Data: General geographic location (for service optimization)
  • Communication Metadata: Timestamps, delivery status, message types

Important: As a RepairTrak user, you act as a data controller for any customer information you collect and process. You are responsible for ensuring compliance with applicable privacy laws and obtaining necessary consents from your customers.

3. How We Use Data

We use the collected information for various legitimate business purposes to provide, maintain, and improve our Service:

3.1 Service Provision

  • Creating and managing your RepairTrak account
  • Processing repair status updates and notifications
  • Facilitating communication between shops and customers
  • Storing and organizing repair documentation
  • Processing payments and managing subscriptions
  • Providing customer support and technical assistance

3.2 Service Improvement

  • Analyzing usage patterns to improve user experience
  • Developing new features and functionality
  • Optimizing performance and reliability
  • Conducting quality assurance and testing
  • Troubleshooting technical issues

3.3 Communication

  • Sending transactional emails (receipts, notifications)
  • Providing important service updates and announcements
  • Responding to your inquiries and support requests
  • Sending educational content about auto repair best practices
  • Marketing communications (with your consent)

3.4 Legal and Security

  • Complying with legal obligations and regulations
  • Protecting against fraud, abuse, and security threats
  • Enforcing our Terms of Service and policies
  • Responding to legal requests and court orders
  • Protecting our rights, property, and safety

Data Processing Legal Basis: We process personal data based on legitimate business interests, contractual necessity, legal obligations, and consent where required. You can withdraw consent at any time for marketing communications.

4. Data Sharing & Disclosure

RepairTrak does not sell, trade, or rent your personal information to third parties. We only share data in the limited circumstances described below:

4.1 With Your Explicit Consent

We may share information when you explicitly authorize us to do so, such as:

  • Integrating with third-party payment processors you choose
  • Connecting with external invoice systems you authorize
  • Sharing data with business partners for specific features you enable

4.2 Service Providers

We work with trusted third-party service providers who assist in operating our Service:

Service Type Purpose Data Access
Cloud Hosting Data storage and application hosting Encrypted data only, strict access controls
Payment Processing Processing subscription payments Payment information only, PCI compliant
Email Services Sending notifications and updates Email addresses and message content only
SMS Services Sending text message notifications Phone numbers and message content only

4.3 Legal Requirements

We may disclose information when required by law or to protect our rights:

  • In response to valid legal process (subpoenas, court orders)
  • To comply with regulatory requirements
  • To protect the safety of users or the public
  • To investigate and prevent fraud or abuse
  • To enforce our Terms of Service

No Data Selling: RepairTrak will never sell your personal information or customer data to advertisers, marketers, or other third parties. Your data is used solely to provide and improve our Service.

5. Customer Data Protection

When you use RepairTrak to communicate with your customers, you are entrusting us with sensitive customer information. We take this responsibility seriously and implement specific protections for customer data.

5.1 Your Role as Data Controller

As a RepairTrak user, you act as the data controller for your customer information. This means:

  • Consent Management: You must obtain proper consent from customers before collecting their information
  • Purpose Limitation: Customer data should only be used for legitimate auto repair business purposes
  • Data Accuracy: You're responsible for keeping customer information accurate and up-to-date
  • Retention Control: You decide how long to retain customer information
  • Access Management: You control which staff members can access customer data

5.2 Our Role as Data Processor

RepairTrak acts as a data processor, providing secure infrastructure and tools:

  • Secure Storage: All customer data is encrypted and stored securely
  • Access Controls: Only authorized personnel can access customer data
  • Data Isolation: Each shop's customer data is isolated from other users
  • Processing Instructions: We only process customer data according to your instructions
  • Breach Notification: We immediately notify you of any security incidents

5.3 Customer Communication Consent

Before using RepairTrak to communicate with customers, ensure you have appropriate consent:

SMS Notifications

Customers must explicitly opt-in to receive SMS notifications. RepairTrak provides tools to manage opt-in/opt-out preferences.

Email Communications

Email consent may be implied for transactional messages about active repairs, but marketing emails require explicit consent.

Voice Recordings

If you use RepairTrak's voice message feature, follow local laws regarding recording consent and notification.

6. Data Security Measures

RepairTrak implements comprehensive security measures to protect your data from unauthorized access, alteration, disclosure, or destruction. Our security program includes technical, administrative, and physical safeguards.

6.1 Technical Safeguards

Security Measure Implementation Protection Level
Data Encryption AES-256 encryption for data at rest, TLS 1.3 for data in transit Military-grade encryption
Access Controls Multi-factor authentication, role-based permissions Principle of least privilege
Network Security Firewalls, intrusion detection, DDoS protection Enterprise-grade security
Database Security Encrypted databases, secure connections, audit logging Bank-level protection

6.2 Administrative Safeguards

  • Security Training: All employees receive comprehensive security training
  • Background Checks: Thorough screening for all personnel with data access
  • Access Management: Regular review and revocation of access privileges
  • Incident Response: Documented procedures for security incident handling
  • Vendor Management: Security assessments for all third-party providers

Security Certifications: RepairTrak maintains SOC 2 Type II compliance and follows industry standards including ISO 27001 guidelines. We undergo regular third-party security audits to ensure our protections meet the highest standards.

7. Data Retention & Deletion

We retain different types of data for varying periods based on business needs, legal requirements, and your preferences. You have control over most data retention decisions.

7.1 Account Data Retention

Data Type Retention Period Deletion Policy
Active Account Data Duration of active subscription Retained while account is active and needed for service
Repair Reports & Documentation Indefinitely (your choice) You control retention - can export or delete anytime
Communication Records 7 years (business records) Deleted after retention period unless legally required
Billing Information 7 years (tax compliance) Retained for financial and tax reporting requirements

7.2 Account Termination

When you terminate your RepairTrak account:

  • Immediate: Access to the service is revoked
  • 30 Days: Data export period - you can request full data export
  • 90 Days: Complete data deletion (except legally required records)
  • Legal Records: Some data retained for legal/tax compliance as required

Secure Deletion: We use cryptographic erasure and secure deletion protocols that meet NIST guidelines. Once data is deleted, it cannot be recovered by RepairTrak or any third party.

8. Your Privacy Rights

You have comprehensive rights regarding your personal information. RepairTrak provides tools and processes to exercise these rights easily and effectively.

8.1 Access Rights

You have the right to know what personal information we have about you:

  • Account Dashboard: View your account information and settings
  • Data Export: Download all your data in portable formats (JSON, CSV)
  • Usage Reports: Access logs of how your data has been processed
  • Third-Party Sharing: Information about any data sharing (none for sales/marketing)

8.2 Correction and Update Rights

You can correct or update your information at any time:

  • Self-Service: Update most information through your account settings
  • Support Assistance: Contact support for help with complex updates
  • Bulk Updates: Tools for updating multiple records simultaneously
  • Verification: We may verify your identity for sensitive changes

8.3 Deletion Rights

You can request deletion of your personal information:

Right to Delete

  • Complete Account Deletion: Permanently delete your entire account and associated data
  • Selective Deletion: Delete specific pieces of information or records
  • Customer Data Deletion: Remove specific customer records from your account
  • Communication Deletion: Delete specific messages or communication threads

Identity Verification: To protect your privacy, we may need to verify your identity before processing certain requests. This helps ensure your personal information is only accessed by you.

9. Cookies & Tracking

RepairTrak uses cookies and similar technologies to enhance your experience, improve our services, and provide security features. You have control over cookie preferences.

9.1 Types of Cookies We Use

Cookie Type Purpose Duration Required
Essential Cookies Login, security, basic functionality Session/30 days Yes
Functional Cookies User preferences, settings, language 1 year Optional
Analytics Cookies Usage statistics, performance monitoring 2 years Optional
Security Cookies Fraud prevention, account protection Session/24 hours Yes

9.2 Cookie Management

You can control cookies through multiple methods:

  • Browser Settings: Configure cookie preferences in your browser
  • Cookie Banner: Manage preferences through our cookie consent banner
  • Account Settings: Control analytics and tracking preferences
  • Opt-Out Tools: Use industry opt-out tools for advertising cookies

Cookie Security: All cookies use secure transmission (HTTPS only) and are protected against cross-site scripting (XSS) attacks. Session cookies are automatically deleted when you log out.

10. Third-Party Services

RepairTrak integrates with select third-party services to provide enhanced functionality. We carefully vet all partners and limit data sharing to what's necessary for service delivery.

10.1 Essential Service Providers

Service Provider Service Type Data Shared Privacy Policy
Amazon Web Services Cloud hosting and storage Encrypted application data AWS Privacy Policy
Stripe Payment processing Billing information only Stripe Privacy Policy
Twilio SMS/email delivery Phone numbers, email addresses Twilio Privacy Policy
Cloudflare Security and performance Technical/usage data only Cloudflare Privacy Policy

10.2 Data Processing Agreements

All third-party processors sign comprehensive data processing agreements:

  • GDPR Compliance: All processors meet GDPR requirements
  • Data Limitation: Access limited to necessary data only
  • Security Standards: Equivalent security measures required
  • Audit Rights: Right to audit security and compliance
  • Breach Notification: Immediate notification of security incidents

External Link Disclaimer: RepairTrak is not responsible for the privacy practices of external websites. We recommend reviewing the privacy policies of any third-party sites you visit.

11. GDPR Compliance

RepairTrak is fully compliant with the European Union's General Data Protection Regulation (GDPR). If you process personal data of EU residents, these protections apply to your RepairTrak usage.

11.1 GDPR Rights Implementation

Right to Information (Articles 13-14)

This privacy policy provides transparent information about data processing. Additional notices are provided at point of collection.

Right of Access (Article 15)

You can access all personal data through your account dashboard or by requesting a complete data export.

Right to Rectification (Article 16)

Update or correct personal data through account settings or by contacting support.

Right to Erasure (Article 17)

Request deletion of personal data through account settings or support. Some data may be retained for legitimate interests.

Right to Data Portability (Article 20)

Export your data in structured, machine-readable formats for transfer to other services.

11.2 Data Protection Officer

RepairTrak has appointed a Data Protection Officer (DPO):

  • Contact: dpo@trakrepair.com
  • Role: Monitor GDPR compliance and serve as supervisory authority contact
  • Accessibility: Available for data protection questions and complaints
  • Independence: Reports directly to executive management

Your GDPR Rights as a Shop Owner: If you use RepairTrak to process customer data of EU residents, you have obligations as a data controller. We provide tools and guidance to help you meet these obligations.

12. CCPA Compliance

RepairTrak complies with the California Consumer Privacy Act (CCPA) and its amendments (CPRA). California residents have specific rights regarding their personal information.

12.1 CCPA Rights for California Residents

Right to Know (CCPA Section 1798.110)

  • Categories of personal information collected
  • Sources of personal information
  • Business purposes for collecting personal information
  • Categories of third parties with whom we share personal information

Right to Delete (CCPA Section 1798.105)

  • Request deletion of personal information we've collected
  • Some exceptions apply for legal compliance and business operations

Right to Opt-Out (CCPA Section 1798.120)

  • RepairTrak does not sell personal information
  • No opt-out required as we don't engage in sales

Right to Non-Discrimination (CCPA Section 1798.125)

  • No discrimination for exercising CCPA rights
  • Same service quality regardless of privacy choices

12.2 How to Exercise CCPA Rights

California residents can exercise their rights through:

  • Online Form: Privacy request form in account settings
  • Email: privacy@trakrepair.com with "CCPA Request" in subject
  • Phone: (833) 415-4220 during business hours
  • Mail: RepairTrak LLC, 48-50 W Chestnut St Ste. 1, Lancaster, PA 17603

No Sale of Personal Information: RepairTrak does not sell personal information and never has. We do not share personal information with third parties for monetary or other valuable consideration.

13. International Data Transfers

RepairTrak primarily operates in the United States, but we implement appropriate safeguards for international data transfers to ensure your data remains protected regardless of location.

13.1 Data Storage Locations

Your data is primarily stored and processed in:

  • Primary: United States (AWS US-East region)
  • Backup: United States (AWS US-West region)
  • CDN: Global content delivery network for performance
  • Support: Limited support operations in Canada

13.2 International Transfer Safeguards

When data is transferred internationally, we implement comprehensive safeguards:

Transfer Type Safeguard Mechanism Additional Protections
EU to US Standard Contractual Clauses (SCCs) Additional encryption, access controls
UK to US UK International Data Transfer Agreement Enhanced monitoring, audit rights
Canada to US Adequacy finding, contractual protections Equivalent privacy standards
Other Jurisdictions Individual assessment and safeguards Jurisdiction-specific protections

Enhanced Protection for International Transfers: All international data transfers use additional encryption layers and are subject to enhanced monitoring and access controls beyond our standard security measures.

14. Children's Privacy

RepairTrak is designed for use by business professionals and is not intended for children under 13 years of age. We are committed to protecting children's privacy in accordance with COPPA and other applicable laws.

14.1 Age Restrictions

RepairTrak services have the following age restrictions:

  • Minimum Age: 13 years old (16 in EU jurisdictions)
  • Business Use: Service intended for business professionals
  • Account Creation: Users must certify they meet age requirements
  • Parental Consent: Required for users under 18 with parental supervision

14.2 No Intentional Collection from Children

We do not knowingly collect personal information from children:

  • Account Verification: Age verification during account creation
  • Monitoring: Systems to detect potential underage users
  • Immediate Action: Prompt deletion of any inadvertently collected children's data
  • Parental Notification: Contact parents if children's data is discovered

14.3 Customer Data Considerations

While RepairTrak users typically serve adult customers, we provide guidance for situations involving minors:

When Customer Data May Include Minors

  • Family Vehicles: Repairs on vehicles used by families with children
  • Parental Consent: Ensure proper consent for any minor's information
  • Limited Collection: Collect only necessary information for vehicle repairs
  • Enhanced Protection: Apply additional privacy protections for minor's data

Immediate Action on Children's Data: If we discover that we have inadvertently collected personal information from a child under 13, we will delete that information immediately and take steps to prevent future collection.

15. Privacy Policy Changes

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. We are committed to providing clear notice of any material changes.

15.1 Types of Changes

We may update this policy for various reasons:

Change Type Examples Notice Period
Material Changes New data uses, sharing practices, rights changes 30 days advance notice
Legal Updates Compliance with new privacy laws Immediate, with explanation
Clarifications Improved explanations, formatting Standard update notice
New Features Privacy aspects of new service features Notice before feature launch

15.2 Notification Methods

We will notify you of privacy policy changes through:

  • Email Notification: Direct email to account holders for material changes
  • In-App Notice: Prominent notice when you log into RepairTrak
  • Website Banner: Notice banner on our website and login page
  • Account Dashboard: Privacy update notifications in your account
  • Version History: Maintained record of policy changes

15.3 Your Options After Changes

When we make material changes, you have several options:

  • Accept Changes: Continue using RepairTrak under the updated policy
  • Export Data: Download your data before changes take effect
  • Modify Settings: Adjust privacy settings to align with your preferences
  • Cancel Account: Terminate your account if you don't agree with changes
  • Contact Us: Discuss concerns or questions about the changes

15.4 Effective Date and Transitions

Policy changes follow a structured transition process:

  • Advance Notice: Changes announced before effective date
  • Transition Period: Time to review and respond to changes
  • Effective Date: Clear date when new policy takes effect
  • Grace Period: Additional time for account modifications if needed
  • Old Policy Archive: Previous versions archived for reference

Continued Use = Acceptance: Continued use of RepairTrak after the effective date of privacy policy changes constitutes acceptance of the updated policy. If you don't agree with changes, please contact us before the effective date.

>

16. Contact Information

We're committed to addressing your privacy questions and concerns promptly. Multiple contact methods are available depending on your needs.

Privacy Questions & Requests

Our privacy team is here to help with any questions about this policy or your privacy rights.

🔒
Privacy Officer
privacy@trakrepair.com
Dedicated privacy team
🇪🇺
Data Protection Officer
dpo@trakrepair.com
GDPR and European inquiries
📞
Phone Support
(833) 415-4220
Mon-Fri: 8AM - 6PM EST
📮
Mailing Address
RepairTrak LLC
Attn: Privacy Team
48-50 W Chestnut St Ste. 1
Lancaster, PA 17603

Quick Privacy Actions

📋 Terms & Conditions 🏠 Back to Home 💰 View Pricing Platform Features 🚀 Live Demo 📞 Contact Support