Privacy Policy
Last Updated: February 8, 2026
Table of Contents
CarServ ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our vehicle service tracking platform.
Operator Notice: CarServ is currently operated as a sole proprietorship by an individual doing business as "CarServ." CarServ is not a corporation, LLC, or other legal entity at this time. Your data is handled in accordance with this Privacy Policy regardless of our business structure.
1. Information We Collect
Information You Provide
- Account Information: Name and email address when you create an account
- Vehicle Information: Make, model, year, VIN, license plate, and mileage of your vehicles
- Service Records: Text data extracted from service documents you upload. We do not store the original images — documents are processed by AI in memory and only the extracted text data (dates, costs, services performed) is saved to your account.
- Payment Information: Payment details are processed securely by Stripe or Apple. We do not store your credit card information.
Information Collected Automatically
- Usage Data: How you interact with our service, features used, and time spent
- Device Information: Browser type, operating system, device identifiers
- Log Data: IP address, access times, pages viewed, and referring URLs
Information from Third Parties
- AI Analysis: We use Anthropic's Claude AI to analyze your service documents. Documents are sent to the AI for processing and are not retained by Anthropic. Only the extracted data is stored in your account.
- Authentication Providers: If you sign in with Google or Apple, we receive your name and email from that provider. Sign in with Apple allows you to hide your email address.
2. How We Use Your Information
We use your information to:
- Provide, maintain, and improve our services
- Process your service records using AI analysis
- Send you service reminders and notifications
- Process payments and manage subscriptions
- Respond to your inquiries and provide customer support
- Detect and prevent fraud or abuse
- Comply with legal obligations
- No AI Training: We do NOT use your documents to train any AI models
- No Data Retention by AI: Anthropic does not retain your data after processing
- Processing Only: Your documents are processed solely for extraction purposes
- Secure Transmission: All data sent to AI services uses encrypted connections
3. Data Sharing and Disclosure
We do not sell your personal information. We may share your information with:
- Service Providers: Companies that help us operate (Supabase for database and hosting, Stripe/Apple for payments, Anthropic for AI document analysis, Cloudflare for content delivery)
- Family Members: If you use the Family plan, family members you invite can view shared vehicle records
- Fleet Team Members: If you use the Fleet plan, team members you invite can view fleet vehicles and work orders
- Legal Requirements: When required by law, court order, or to protect our rights
4. Data Security
We implement security measures to protect your data:
- All data transmitted using TLS encryption
- Data at rest encrypted in our database
- Row-level security policies ensuring users can only access their own data
- SOC 2 Type II compliant infrastructure (Supabase)
5. Your Rights
Depending on your location, you may have the right to:
- Access: Request a copy of your personal data
- Correction: Update or correct inaccurate data
- Deletion: Delete your account and all associated data directly from the app's Settings screen
- Portability: Export your data in a machine-readable format
- Opt-out: Unsubscribe from marketing communications
To exercise these rights, contact us at carserv.help@gmail.com or visit your Account Settings.
6. Local Storage and Tracking
We use browser local storage (not cookies) to:
- Keep you signed in
- Remember your preferences
We do not use third-party tracking cookies or advertising trackers. We do not collect data for advertising purposes. You can clear local storage through your browser settings.
7. Children's Privacy
CarServ is not intended for users under 18 years of age. We do not knowingly collect information from children. If we learn we have collected data from a child, we will delete it promptly.
7.5 California Privacy Rights (CCPA)
If you are a California resident, you have specific rights under the California Consumer Privacy Act:
- Right to Know: You can request details about the personal information we collect
- Right to Delete: You can request deletion of your personal information
- Right to Opt-Out: You can opt out of the sale of personal information
- Non-Discrimination: We will not discriminate against you for exercising these rights
We Do Not Sell Your Personal Information. CarServ does not sell, rent, or trade your personal information to third parties for monetary or other valuable consideration.
To exercise your California privacy rights, contact us at carserv.help@gmail.com. We will respond within 45 days as required by law.
8. Changes to This Policy
We may update this Privacy Policy periodically. We will notify you of significant changes by email or through a notice on our platform. Your continued use after changes constitutes acceptance.
9. Contact Us
If you have questions about this Privacy Policy or our data practices, please contact us:
- Email: carserv.help@gmail.com
- Contact Form: Contact Us
CarServ is operated as a sole proprietorship. Privacy inquiries should be directed to carserv.help@gmail.com.
10. Limitation of Liability for Data
While we implement industry-standard security measures, no system is completely secure. You acknowledge that:
- You upload data at your own risk
- We are not liable for unauthorized access to your data by third parties despite our security measures
- We are not responsible for the accuracy of AI-generated analysis
- You should maintain your own backups of important documents
To the maximum extent permitted by law, CarServ and its operator shall not be liable for any data breaches, loss of data, or damages arising from the storage or processing of your information.