Privacy Policy

Effective date: [EFFECTIVE DATE]

⚠️ Template — review before publishing. This is a starting draft, not legal advice. Fill in every [bracket], delete anything that doesn't apply to you, and have it reviewed by an attorney (and your compliance team) before you go live — especially if you store customer data in the cloud or operate in California, Colorado, Virginia, the EU/UK, or other regions with specific privacy laws.

This Privacy Policy explains how [DEALERSHIP / COMPANY NAME] (“we,” “us,” “our”) collects, uses, stores, and shares information when you use the TAuto tools, including TAuto Quick Deals, and the Playground website at [YOUR DOMAIN] (the “Services”).

1. Who we are

[DEALERSHIP / COMPANY NAME]
[BUSINESS ADDRESS]
Contact: [PRIVACY EMAIL] · [PHONE]

2. Information we collect

Depending on how you use the Services, we may collect:

Account information — your email address and authentication details when you create a TAuto account (handled by our authentication provider, Supabase).
Deal & customer information you enter — including customer name, phone, email, mailing address, driver-license number, ZIP/county; vehicle details (VIN, year/make/model, mileage, price); trade-in details; and financial inputs (down payment, APR, term, taxes, fees).
Documents & media — photos you capture (e.g., VIN plate, vehicle, license, odometer) and electronic signatures you draw.
Usage & device data — basic, privacy-preserving analytics about pages visited and general device/browser type (via [Cloudflare Web Analytics / your analytics]). We do not use these to track you across other websites.

We only collect what you choose to enter or capture. You can use most TAuto calculators without entering any personal information at all.

3. How information is stored

On your device — drafts, saved deals, and signatures are kept in your browser’s local storage on the device you use them on. This data is not sent to us unless you sign in and save it to the cloud.
In the cloud (only if you create an account and choose “Save to cloud”) — deals are stored in a database hosted by Supabase. Access is restricted by row-level security so that only your account can read or change your records.

4. How we use information

To build, calculate, save, print, and email/text the vehicle deal documents you request.
To provide your account and sync your saved deals across your devices.
To operate, secure, support, and improve the Services.
To comply with legal, tax, and recordkeeping obligations.

We do not sell your personal information, and we do not use it for cross-site advertising.

5. When information is shared

We share information only with service providers that help us run the Services, and only as needed:

Hosting & database: Netlify (website hosting) and Supabase (accounts & cloud storage).
Vehicle data lookups: when you decode a VIN, the 17-character VIN is sent to the U.S. NHTSA vPIC database to return public vehicle specifications. No personal customer data is sent.
News headlines: the TAuto Desk loads public auto-news headlines from third-party news feeds; no personal data is sent.
Email/SMS (if you use those buttons): the message opens in your own mail or messaging app, or is sent through [email/SMS provider, e.g. SendGrid / Twilio — if/when enabled].
We may disclose information if required by law, or to protect our rights, safety, or property.

6. Security

We use reasonable safeguards, including encryption in transit (HTTPS) and database access controls (row-level security). No method of transmission or storage is 100% secure; we cannot guarantee absolute security. Protect your account credentials and the devices you use.

7. Data retention

Device-stored data remains until you clear it or your browser does. Cloud-saved deals remain until you delete them or close your account. We retain certain records as required for legal, tax, and dealer-recordkeeping purposes. To request deletion, contact us at [PRIVACY EMAIL].

8. Your choices & rights

You can use most tools without an account or any personal data.
You can view, load, and delete your cloud deals from within the app, or ask us to delete your account and data.
State privacy rights: residents of California (CCPA/CPRA) and other states with privacy laws (e.g., Colorado, Connecticut, Virginia, Utah, and others) may have rights to access, correct, delete, or limit use of their personal information, and to not be discriminated against for exercising them. To exercise these rights, contact [PRIVACY EMAIL].
Note for dealerships: handling of consumer financial information may also be subject to the Gramm-Leach-Bliley Act (GLBA) and the FTC Safeguards Rule. [Confirm your obligations with counsel.]

9. Children

The TAuto tools are intended for business/adult use and are not directed to children under 13, and we do not knowingly collect their personal information. (The Playground games section is general-audience entertainment and does not collect personal information.)

10. Cookies & local storage

We use browser local storage to remember your inputs, drafts, and preferences on your device. We do not use third-party advertising cookies. [If you add any cookies/analytics that require consent, describe and add a consent banner.]

11. Changes to this policy

We may update this policy from time to time. The “Effective date” above shows the latest version. Material changes will be posted here.

12. Contact us

[DEALERSHIP / COMPANY NAME] · [PRIVACY EMAIL] · [PHONE] · [BUSINESS ADDRESS]

This document is a template provided for convenience and is not legal advice. Consult an attorney before relying on it.