Introduction
AlerteAuto ("we," "our," or "us") respects your privacy and is committed to protecting your personal data. This privacy policy explains how we collect, use, store, and protect your information when you use the AlerteAuto mobile application (the "App").
By using AlerteAuto, you agree to the collection and use of information in accordance with this policy.
1. Information We Collect
1.1 Personal Information
When you create an account and use AlerteAuto, we collect the following personal information:
- Account Information:
- Email address
- First name and last name
- Phone number
- Password (encrypted)
- Profile Settings:
- Preferred reminder days
- Notification preferences
- Language preference
- Theme preference (light/dark mode)
- Subscription status (Free, Pro, or Lifetime)
1.2 Vehicle Information
To provide vehicle monitoring and maintenance tracking services, we collect:
- Vehicle make, model, and year
- License plate number
- Vehicle Identification Number (VIN)
- Engine capacity
- Fuel type (Petrol, Diesel, Hybrid, Electric, LPG, CNG)
- Vehicle color
- Current mileage
- Vehicle notes and custom information
1.3 Maintenance and Service Data
- Service records (maintenance dates, descriptions, costs)
- Repair records (repair types, costs, service providers)
- Fuel consumption records (date, amount, cost, mileage)
- Maintenance alerts and reminders
- Service recommendations
1.4 Document and File Information
We process and store documents you upload, including:
- Insurance documents (RCA, CASCO)
- Vehicle registration documents (Talon Auto)
- Driving licenses (Permis de Conducere)
- Service receipts and invoices
- Document metadata (file name, size, type, upload date)
1.5 Technical and Usage Information
- Device information (Android version, device model)
- App usage statistics
- Push notification tokens (for Firebase Cloud Messaging)
- Error logs and crash reports
- Network connectivity status
2. How We Use Your Information
We use the collected information for the following purposes:
2.1 Core Services
- **Account Management:** Create and manage your user account
- **Vehicle Monitoring:** Track your vehicles and their maintenance history
- **Alerts and Notifications:** Send timely reminders for maintenance, insurance renewals, and vehicle inspections
- **Service History:** Maintain comprehensive records of all vehicle services, repairs, and fuel consumption
- **Document Storage:** Securely store and organize vehicle-related documents
2.2 Communication
- Send push notifications for maintenance reminders and alerts
- Provide customer support and respond to your inquiries
- Send important service updates and security notifications
2.3 App Improvement
- Analyze app usage to improve functionality and user experience
- Fix bugs and resolve technical issues
- Develop new features based on user needs
2.4 Legal Compliance
- Comply with applicable laws and regulations
- Respond to legal requests and prevent fraud
- Enforce our terms of service
3. Data Storage and Security
3.1 Data Storage Infrastructure
Your data is stored using the following secure infrastructure:
- Supabase (PostgreSQL Database): User accounts, vehicle data, service records, and alerts
- Cloudflare R2: Document and file storage with secure presigned URLs
- Local Device Storage (Room Database): Temporary offline data caching
3.2 Data Location
- Primary servers are located in cloud infrastructure provided by Supabase
- Document files are stored in Cloudflare R2 storage buckets
- Local data is stored on your Android device
3.3 Security Measures
We implement industry-standard security measures to protect your data:
- Encryption in Transit: All data transmitted between your device and our servers uses HTTPS/TLS encryption
- Encryption at Rest: Database and file storage are encrypted
- Authentication: Secure authentication using Supabase Auth with encrypted passwords
- Access Controls: Role-based access control ensures users can only access their own data
- Presigned URLs: File uploads use time-limited presigned URLs for secure direct uploads
- Regular Security Updates: We regularly update our dependencies and security patches
3.4 Data Retention
- Active Accounts: Your data is retained as long as your account is active
- Account Deletion: Upon account deletion, all associated data (vehicles, alerts, documents) is permanently deleted within 30 days
- Backup Data: Backup data is retained for 90 days for disaster recovery purposes
4. Data Sharing and Third Parties
4.1 Third-Party Services
We use the following third-party services to operate AlerteAuto:
- Supabase: Backend infrastructure for authentication, database, real-time updates, and storage
- Cloudflare R2: Secure file storage for documents and images
- Firebase Cloud Messaging: Push notification delivery
- Android WorkManager: Background task scheduling for alerts
4.2 Data Sharing Policy
We do NOT:
- Sell your personal information to third parties
- Share your data with advertisers
- Use your data for marketing purposes without consent
We MAY share your information only in these circumstances:
- With Your Consent: When you explicitly authorize data sharing
- Legal Obligations: When required by law, court order, or legal process
- Service Providers: With trusted third-party service providers who assist in operating our app (under strict confidentiality agreements)
- Business Transfers: In the event of a merger, acquisition, or sale of assets (users will be notified)
5. Your Rights and Choices
5.1 Access and Control
You have the right to:
- Access Your Data: View and download all your personal data
- Update Information: Edit your profile, vehicle information, and settings at any time
- Delete Data: Delete specific vehicles, alerts, documents, or your entire account
- Export Data: Request a copy of your data in a portable format
5.2 Notification Preferences
You can control notifications through:
- In-app notification settings
- Device system settings (Android notification channels)
- Disabling push notifications entirely
5.3 Account Deletion
To delete your account:
1. Go to Settings > Account Settings > Delete Account
2. Confirm deletion
3. All your data will be permanently deleted within 30 days
6. Permissions
AlerteAuto requests the following Android permissions:
| Permission | Purpose | Required |
|------------|---------|----------|
| INTERNET| Connect to backend servers and sync data | Yes |
| CAMERA | Capture photos of documents and receipts | Optional |
| READ_EXTERNAL_STORAGE | Select and upload document files | Optional |
| POST_NOTIFICATIONS | Send maintenance reminders and alerts | Optional |
| VIBRATE | Vibrate device for notifications | Optional |
| SCHEDULE_EXACT_ALARM | Schedule exact maintenance reminders | Optional |
| USE_EXACT_ALARM | Ensure timely alert delivery | Optional |
You can revoke permissions at any time through your device settings.
7. Children's Privacy
AlerteAuto is not intended for users under the age of 16. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately, and we will take steps to delete such information.
8. International Data Transfers
Your information may be transferred to and processed in countries other than your country of residence. We ensure that such transfers comply with applicable data protection laws and that your data receives adequate protection.
9. Analytics and Tracking
9.1 Firebase Analytics
We have **disabled** Firebase Analytics collection (`firebase_analytics_collection_enabled = false`) to respect your privacy.
9.2 Crash Reporting
We may collect anonymous crash reports to improve app stability. These reports do not contain personally identifiable information.
10. Changes to This Privacy Policy
We may update this privacy policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons. We will notify you of any material changes by:
- Updating the "Last Updated" date at the top of this policy
- Sending an in-app notification or email (for significant changes)
- Requesting your consent for material changes that affect your rights
We encourage you to review this policy periodically.
11. Your Consent
By using AlerteAuto, you consent to:
- The collection and use of information as described in this privacy policy
- The storage of your data in Supabase and Cloudflare R2
- The use of cookies and similar technologies for app functionality
12. Contact Us
If you have any questions, concerns, or requests regarding this privacy policy or your personal data, please contact us:
Email: contact@codemint.ro
Website: codemint.ro
13. Legal Basis for Processing (GDPR Compliance)
For users in the European Economic Area (EEA), we process your personal data based on:
- Consent: When you provide explicit consent (e.g., notifications)
- Contract Performance: To provide the services you requested
- Legitimate Interests: To improve our app and ensure security
- Legal Obligation: To comply with applicable laws
GDPR Rights
If you are located in the EEA, you have additional rights under GDPR:
- Right to access your data
- Right to rectification (correct inaccurate data)
- Right to erasure ("right to be forgotten")
- Right to restrict processing
- Right to data portability
- Right to object to processing
- Right to withdraw consent at any time
- Right to lodge a complaint with a supervisory authority
14. California Privacy Rights (CCPA)
California residents have additional rights under the California Consumer Privacy Act (CCPA):
- Right to know what personal information is collected
- Right to know whether personal information is sold or disclosed
- Right to opt-out of the sale of personal information (we do not sell your data)
- Right to deletion of personal information
- Right to non-discrimination for exercising CCPA rights
15. Data Backup and Recovery
- Automatic Backup: Your data is automatically backed up on our servers
- Local Backup: Option to enable automatic local backup (disabled by default)
- Data Recovery: You can restore your data when logging in from a new device
---
Summary of Key Privacy Practices
✅ We DO:
- Encrypt all data in transit and at rest
- Use secure authentication and access controls
- Give you full control over your data
- Allow you to delete your account and data at any time
- Keep your data private and never sell it
❌ We DON'T:
- Sell your personal information
- Share your data with advertisers
- Track you across other apps or websites
- Collect data from children under 16
- Enable Firebase Analytics