1. Scope and Introduction
Welcome to Auto Detailing CRM("we," "our," or "us"). This Privacy Policy explains how we collect, use, disclose, retain, and protect information when you use our website, web application, mobile application, booking pages, customer-facing portals, communications tools, AI receptionist workflows, payment features, and related services (the "Service").
Auto Detailing CRM is primarily a business-to-business service for auto detailing businesses. Our customers may upload or collect information about their own customers, vehicles, appointments, invoices, quotes, memberships, and service history. We process that information to provide the Service to the business account.
2. Information We Collect
We may collect the following categories of information:
- Account and profile information: names, business names, email addresses, phone numbers, login credentials, user roles, account settings, subscription status, and support identifiers.
- Business information: shop names, addresses, service areas, business type, tax settings, currency, logo, staff records, working hours, service catalog, pricing, memberships, and operational preferences.
- CRM and customer data: customer names, phone numbers, email addresses, service addresses, notes, vehicle details, VIN, license plate, photos, appointment details, quotes, orders, invoices, signatures, memberships, and service history.
- Payment and transaction information: invoice amounts, tips, taxes, payment status, payment method labels, transaction identifiers, refunds, chargeback or dispute metadata, and payment processor account status. We do not store full credit card numbers.
- Communications information: appointment reminders, review requests, invoice links, email and SMS delivery logs, call metadata, AI voice transcripts or summaries when enabled, support messages, and consent or opt-out records.
- Device, usage, and log information: browser type, device type, operating system, IP-derived approximate location, pages viewed, features used, timestamps, diagnostic logs, crash reports, analytics events, and security audit logs.
- Cookie and advertising information: cookies, pixels, local storage identifiers, referral URLs, campaign parameters, and similar technologies used to operate the website, remember preferences, measure performance, and understand marketing effectiveness.
- Integration information: authorization tokens, connection status, external account identifiers, calendar events, payment processor data, app store or device capability signals, and related data needed to provide integrations you enable.
3. Sources of Information
We collect information from the following sources:
- You and your authorized users: when you register, configure your business, invite staff, upload customer data, contact support, or use product features.
- Your customers: when they use public booking pages, customer portals, payment links, signature links, forms, SMS flows, or other customer-facing workflows you enable.
- Automated systems: when our website, web app, mobile app, servers, security systems, analytics tools, and cookies generate logs or usage data.
- Third-party services: such as payment processors, messaging providers, calendar providers, app platforms, analytics providers, AI or voice providers, and other integrations you connect or use through the Service.
4. How We Use Information
We use information for the following purposes:
- Provide, maintain, secure, troubleshoot, and improve the Service.
- Create and manage accounts, authenticate users, enforce permissions, and provide support.
- Operate CRM workflows including scheduling, quotes, orders, invoices, memberships, payments, signatures, reminders, and customer portals.
- Process payments, generate receipts, reconcile payment status, and support dispute, refund, chargeback, and accounting workflows.
- Send operational communications, product notices, support replies, security alerts, marketing messages where permitted, and legally required notices.
- Provide optional integrations, including Google Calendar, Stripe, Apple Tap to Pay on iPhone, SMS providers, email providers, app stores, AI voice tools, and related services.
- Detect abuse, prevent fraud, investigate incidents, enforce our Terms of Use, comply with law, and protect the rights and safety of Auto Detailing CRM, our users, and their customers.
4.1. Communications from Auto Detailing CRM
When you create an account, request a demo or trial, submit a form, contact us, purchase a subscription, or provide contact information to us, we may use that information to contact you and your authorized users by email, phone call, SMS/text message, in-app message, push notification, or similar channels.
These communications may relate to account setup, onboarding, verification, support, billing, security, service notices, product updates, demos, feedback, renewals, offers, or other business purposes connected to Auto Detailing CRM. Promotional communications are sent where permitted by law and subject to your preferences. You may opt out of promotional email or SMS messages using the unsubscribe link, preference page, replying STOP where supported, or contacting us. Service, security, billing, legal, and other required operational messages may still be sent.
5. Google Calendar Data Usage
Auto Detailing CRM integrates with Google Calendar to provide two-way appointment synchronization. This integration is optional and requires explicit user authorization.
5.1. Data we access
With the user's consent, our application may access the following Google Calendar API scopes:
- https://www.googleapis.com/auth/calendar.eventsfor creating, editing, and deleting events in the user's Google Calendar that correspond to appointments created or modified within the CRM.
- https://www.googleapis.com/auth/calendar.readonly for reading the user's existing calendar events and displaying them inside the CRM.
We do not access or modify calendar settings, sharing permissions, ACLs, or other restricted data.
5.2. How the data is used
- Display the user's Google Calendar events inside the CRM.
- Create, update, or delete Google Calendar events that match CRM appointments.
- Keep the user's schedules synchronized between both systems.
No other use of Google Calendar data occurs.
5.3. Storage and user control
A Google Calendar refresh token is stored securely on our server and used only to maintain calendar synchronization. Google Calendar data is not sold or shared for advertising. Users may revoke Google access at any time via https://myaccount.google.com/permissions.
6. How We Disclose Information
We do not sell personal information, CRM data, customer records, or SMS opt-in data in exchange for money. We may disclose information in the following circumstances:
- Service providers: cloud hosting, database, analytics, support, email, SMS, telephony, AI voice, document generation, security, monitoring, and payment processing providers that help us operate the Service.
- Connected integrations: third-party services you choose to connect, such as Google Calendar, Stripe, Apple Tap to Pay on iPhone, app platforms, or other integrations required for enabled features.
- Authorized users and account owners: information may be visible to the business account owner, administrators, staff, and users with appropriate account permissions.
- Customer-facing workflows: information may be shown on invoices, quotes, booking pages, payment links, customer portals, receipts, signature pages, or messages generated by the business account.
- Legal, safety, and compliance: when required by law, subpoena, court order, regulator, payment network rule, carrier rule, or when needed to protect rights, safety, security, and integrity.
- Business transfers: if we are involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets, information may be transferred as part of that transaction.
We do not share, sell, rent, or lease mobile opt-in data or SMS consent data with third parties or affiliates for their marketing or promotional purposes.
7. California and State Privacy Disclosures
Certain privacy laws require disclosures about categories of personal information collected, disclosed, sold, or shared. Depending on how you use the Service, we may collect the following categories:
- Identifiers: names, email addresses, phone numbers, business names, account IDs, IP addresses, device identifiers, and customer identifiers.
- Customer records information: billing details, transaction records, business contact information, and customer contact information.
- Commercial information: subscriptions, purchases, invoices, quotes, orders, payment status, services, memberships, and customer relationship records.
- Internet or network activity: product usage, pages viewed, clicks, logs, diagnostics, referral data, cookie data, and analytics events.
- Geolocation or address information: business addresses, service addresses, approximate location derived from IP, and location-related data entered into CRM workflows.
- Audio, electronic, or visual information: uploaded photos, signatures, support messages, call metadata, and AI voice records or summaries when enabled.
- Professional or employment-related information:staff names, roles, work schedules, permissions, and business contact details.
- Inferences: product usage patterns, feature preferences, plan suitability, onboarding progress, and marketing or support segmentation.
We disclose these categories to service providers, connected integrations, authorized account users, payment processors, messaging providers, security vendors, analytics providers, and legal or compliance recipients as described in this Policy. We do not knowingly sell or share personal information of individuals under 16.
Some privacy laws may treat sharing identifiers with advertising or analytics partners for cross-context behavioral advertising as a "sale" or "share" of personal information, even when no money changes hands. You may submit an opt-out request through our Do Not Sell or Share Personal Information page.
8. Cookies, Analytics, and Privacy Signals
We may use cookies, pixels, local storage, analytics tools, and similar technologies to keep the Service working, remember preferences, understand product usage, measure marketing performance, prevent fraud, and improve the Service. If you disable cookies, some features may not work correctly.
Some browsers provide "Do Not Track" signals. Because there is not a uniform industry standard for responding to those signals, we do not currently respond to all Do Not Track signals. Where required by applicable law, we will treat a recognized Global Privacy Control or similar opt-out preference signal as a request to opt out of sale or sharing for that browser.
9. Mobile App and Device Data
When you use our mobile application, we may collect device type, operating system, app version, crash logs, diagnostic data, device capability signals, and information needed to operate mobile-specific features such as Tap to Pay on iPhone, camera-based workflows, push notifications, and native app bridge features.
10. Security
We use administrative, technical, and organizational safeguards designed to protect information from unauthorized access, loss, misuse, alteration, or disclosure. No system can be guaranteed to be perfectly secure. You are responsible for keeping account credentials secure and limiting access to authorized users.
11. Data Retention
We retain information for as long as needed to provide the Service, comply with legal, tax, accounting, payment, and carrier obligations, resolve disputes, enforce agreements, maintain security, support backups, and operate legitimate business records. If you delete your account or request deletion, we will delete or de-identify eligible information unless retention is required or permitted by law.
12. Children's Privacy
The Service is not directed to children under 16, and we do not knowingly collect, sell, or share personal information from children under 16. If you believe a child has provided personal information to us, please contact us so we can take appropriate steps.
13. Third-Party Links and Services
The Service may link to or integrate with third-party websites, services, app platforms, payment processors, maps, calendars, SMS providers, AI providers, and other tools. Their privacy practices are governed by their own policies. We are not responsible for third-party privacy or security practices.
14. Your Privacy Rights
Depending on where you live, you may have rights to access, correct, delete, or receive a copy of personal information; opt out of certain sales, sharing, or targeted advertising; limit certain uses of sensitive personal information; withdraw consent; lodge a complaint; or appeal a privacy decision. We will not discriminate against you for exercising privacy rights.
To exercise these rights, contact us at crm@autodetailcrm.com or use our Do Not Sell or Share Personal Information page. We may need to verify your identity or authority before responding. If your request concerns data controlled by one of our business customers, we may direct you to that business or assist them in responding.
15. International Use
Auto Detailing CRM is operated from the United States. If you access the Service from another country, you understand that information may be processed and stored in the United States or other locations where our service providers operate.
16. Changes to This Policy
We may update this Privacy Policy from time to time. The "Last Updated" date above indicates when this Policy was last revised. Your continued use of the Service after an update means the updated Policy applies to information handled after the effective date, to the extent permitted by law.
17. Contact Us
If you have any questions about this Privacy Policy, please contact us:
Email: crm@autodetailcrm.com
Website: autodetailcrm.com