Privacy Policy

This Privacy Policy describes how Autivo (“Autivo,” “we,” “us,” or “our”) collects, uses, discloses, and protects information when you use our websites, mobile applications, and related services (collectively, the “Services”), including the Autivo web application available at https://app.autivoapp.com. This policy is designed to meet common requirements for mobile app distribution platforms, including Apple App Store Review Guideline 5.1.1 (privacy policy content and accessibility) and Google Play User Data and Data safety expectations (clear disclosure of collection, use, and sharing of user data). Your answers in App Store Connect and Google Play Console (including Data safety) must be accurate and kept in sync with your actual practices and this policy.

Not legal advice. Regulations vary by region and change over time. Have qualified counsel review this policy for your entity, jurisdictions, and data flows.

1. Who we are

Autivo provides software and related services for automotive service businesses. For privacy inquiries, contact us at legal@autivoapp.com.

2. Scope

This policy applies to personal information we process in connection with the Services. It does not apply to:

• Information that is aggregated or de-identified so it cannot reasonably identify you;
• Sites or services we do not control (third-party links are subject to their own policies).

3. Information we collect

We collect information that you provide, that is generated through your use of the Services, and from certain third parties as described below. The categories depend on how you use the Services (for example, whether you create an account or only browse our marketing site).

3.1 Account and business profile

• Identifiers and contact data: name, email address, phone number, company or shop name, job title, billing and shipping addresses, and similar contact details you submit when registering, purchasing, or communicating with us.
• Credentials: account username or email and password (stored using industry-standard hashing where applicable).

3.2 Customer and operational data you submit (“Customer Data”)

If you use Autivo to manage communications with your customers, you may upload or generate data about your customers and operations, which may include:

• Customer names, phone numbers, email addresses, vehicle information, appointment details, and message content;
• Call logs, SMS or messaging metadata and content, notes, and other records you choose to store in the Services.

You are responsible for obtaining any legally required notices and consents for Customer Data you submit. Where applicable law treats you as a controller of Customer Data and Autivo as a processor, our processing is performed to provide the Services in accordance with your instructions and our agreement with you.

3.3 Usage, device, and technical data

• Device and app data: device type, operating system version, app version, language settings, diagnostic logs, crash reports, and similar technical information needed to operate and improve the Services.
• Usage data: features used, session duration, timestamps, approximate location derived from IP address where needed for security or localization, and similar analytics.

3.4 Communications with us

When you contact support or correspond with us, we process the content of those communications and related metadata.

3.5 Marketing site and cookies

On our public marketing pages, we and our partners may use cookies and similar technologies to measure traffic and improve the site. Where required by law, we will obtain consent before non-essential cookies or similar tracking.

4. How we use information

We use personal information to:

• Provide, maintain, secure, and improve the Services;
• Create and manage accounts, authenticate users, and process transactions;
• Deliver customer support and respond to requests;
• Send service-related notices, security alerts, and administrative messages;
• Analyze usage to understand product performance and develop new features;
• Detect, investigate, and prevent fraud, abuse, and illegal activity;
• Comply with legal obligations and enforce our terms; and
• Send marketing communications where permitted (you may opt out as described below).

5. Legal bases (EEA, UK, and similar jurisdictions)

Where GDPR or similar laws apply, we rely on one or more of the following bases:

• Contract: processing necessary to provide the Services you request;
• Legitimate interests: securing and improving the Services, fraud prevention, and internal analytics, balanced against your rights;
• Consent: where we ask for it (for example, certain cookies or marketing); and
• Legal obligation: where processing is required by law.

6. How we share information

We may share personal information with:

• Service providers and subprocessors who host data, deliver infrastructure, provide email or SMS delivery, analytics, customer support tooling, payment processing, security monitoring, and similar functions. They are contractually required to use personal information only to provide services to us and to implement appropriate security measures.
• Professional advisors (lawyers, accountants) under confidentiality obligations.
• Authorities when required by law, legal process, or to protect rights, safety, and security.
• Business transfers in connection with a merger, acquisition, financing, or sale of assets, subject to standard protections.

6.1 Third-party protection commitment (Apple App Review Guideline 5.1.1)

Any third party with whom we share user data for the purposes described in this policy—including analytics providers, communications infrastructure vendors, and software libraries integrated into our apps—must provide protection of user data that is the same or equal to the protections described here and required by applicable platform rules. We select vendors with appropriate contractual commitments and security practices.

6.2 No sale of personal information (California)

We do not “sell” or “share” personal information as those terms are defined under the California Consumer Privacy Act (CCPA/CPRA) for monetary or cross-context behavioral advertising consideration. We may use advertising or analytics partners on our marketing site as described in cookie notices; you can control certain choices through your browser or any cookie banner we provide.

7. International transfers

We may process and store information in the United States and other countries where we or our service providers operate. Where required, we use appropriate safeguards (such as Standard Contractual Clauses) for transfers of personal data from the EEA, UK, or Switzerland.

8. Retention and deletion (Apple App Review Guideline 5.1.1)

We retain personal information for as long as needed to provide the Services, comply with legal obligations, resolve disputes, and enforce agreements. Retention periods vary depending on the nature of the data and legal requirements. When retention is no longer required, we delete or de-identify information in accordance with our internal schedules, subject to backup and archival systems that may retain copies for a limited period.

Account holders: you may request deletion of your account and associated Customer Data where applicable, subject to legal exceptions (for example, records we must retain for tax or regulatory compliance).

9. Your choices and rights

9.1 Marketing opt-out

You may unsubscribe from marketing emails using the link in those emails or by contacting us.

9.2 Platform permissions

Mobile operating systems offer permissions (notifications, microphone, camera, contacts, location, etc.). You can review and change these in device settings. Denying certain permissions may limit functionality.

9.3 Access, correction, deletion, and portability

Depending on your location, you may have rights to access, correct, delete, or export personal information, and to restrict or object to certain processing. Submit requests to legal@autivoapp.com. We will verify your request as permitted by law and respond within the timeframe required for your jurisdiction.

9.4 EEA, UK, and Switzerland

You may lodge a complaint with your local supervisory authority. You also have the right to object to processing based on legitimate interests and, where processing is based on consent, to withdraw consent at any time without affecting the lawfulness of processing before withdrawal.

9.5 Nevada and other U.S. state privacy rights

Residents of certain U.S. states may have additional rights (for example, to confirm processing, access specific categories, or opt out of certain uses). Contact us to exercise applicable rights.

10. Security

We implement technical and organizational measures designed to protect personal information against unauthorized access, loss, or alteration. No method of transmission over the Internet is completely secure; we encourage strong passwords and safeguarding your credentials.

11. Children’s privacy

The Services are not directed to children under 13 (or the minimum age required in your jurisdiction), and we do not knowingly collect personal information from children for consumer purposes. If you believe we have collected such information, contact us and we will take appropriate steps to delete it.

12. Automated decision-making

We do not use solely automated decision-making that produces legal or similarly significant effects about you in the sense of Article 22 GDPR as a default part of the Services. If that changes, we will update this policy and provide any required notices.

13. Changes to this policy

We may update this Privacy Policy from time to time. We will post the updated version on this page and revise the “Last updated” date. If changes are material, we will provide additional notice as required by law (for example, in-app notice or email).

14. Contact

Questions about this Privacy Policy or our privacy practices: legal@autivoapp.com

See also our Terms of Service.