1Scope & Who We Are
AutoVizerz, Inc. is a Delaware corporation with its principal place of business in the United States. We develop and operate a cloud-based Dealership Management System (DMS) and related software services for automotive dealers and dealer groups.
This Privacy Policy applies to:
- Visitors to our marketing website at autovizerz.com and any subdomains (the "Site")
- Authorized users of the AutoVizerz platform and applications (the "Platform") acting on behalf of a dealership customer
- Dealership employees, administrators, and other personnel whose information is submitted to us by a dealership customer
- Any other person who communicates with us directly (e.g., via email or a contact form)
This Policy does not apply to the personal information of dealership end-customers (retail vehicle buyers) that AutoVizerz processes solely as a data processor on behalf of and under the instructions of the dealership. The dealership's own privacy notice governs the use of that data.
If you are an AutoVizerz dealership customer, the processing of personal data you submit through the Platform is governed by the Data Processing Agreement (DPA) incorporated into your Master Subscription Agreement, not by this public Privacy Policy.
2Information We Collect
We collect information in three ways: information you provide directly, information collected automatically, and information received from third parties.
2.1 Information You Provide Directly
| Category | Examples | Context |
|---|---|---|
| Account & Identity | Full name, work email address, job title, dealership name, phone number | Demo request form, account registration, user profile |
| Business Information | Dealership group name, number of rooftops, current DMS platform, rooftop locations | Onboarding, sales process, contract execution |
| Communications | Message content, attachments, email threads, support tickets, meeting notes | Contact form, email correspondence, support portal |
| Payment & Billing | Billing contact name and address, payment method (tokenized — card numbers are never stored by AutoVizerz) | Subscription billing |
| Credentials | Username, hashed password, MFA enrollment data | Platform authentication |
2.2 Information Collected Automatically
When you visit our Site or use the Platform, we and our service providers automatically collect certain technical and usage information:
- Log Data: IP address, browser type and version, operating system, referring URL, pages visited, time and date of visits, and time spent on pages.
- Device Information: Device type, screen resolution, device identifiers, and language settings.
- Usage Data: Features accessed, workflows initiated, clicks and navigation patterns within the Platform, and error logs.
- Location Data: Approximate geographic location derived from IP address (city/country level only). We do not collect precise GPS location.
- Cookies & Similar Technologies: See Section 7 for full details.
2.3 Information from Third Parties
- Identity Providers: If you sign in via SSO (Microsoft Entra ID, Okta, Google Workspace), we receive your name, email address, and group memberships from your identity provider.
- Marketing Partners: We may receive contact information and firmographic data from business intelligence services to enrich our understanding of prospective dealership customers. This data is used solely for B2B sales and marketing outreach.
- Referrals: If another AutoVizerz customer or partner refers you, we may receive your name and email address to initiate contact.
3How We Use Information
We use the information we collect for the following purposes, relying on the legal bases identified below:
Creating and managing accounts, delivering Platform functionality, processing transactions, providing customer support, and communicating service-related updates.
Detecting, investigating, and preventing fraudulent activity, unauthorized access, abuse of our Services, and other security incidents. Maintaining audit logs for accountability.
Understanding how our Services are used to improve features, fix bugs, optimize performance, and develop new capabilities. Analytics are conducted on aggregated or de-identified data wherever possible.
Sending information about AutoVizerz products, industry insights, and events to prospective and existing dealership customers. You may opt out at any time via the unsubscribe link in any marketing email.
Complying with applicable laws and regulations, responding to lawful government requests, enforcing our terms and agreements, and protecting our legal rights and those of our customers.
Managing vendor and partner relationships, conducting internal business planning, financial accounting, and corporate transactions such as mergers, acquisitions, or asset sales.
AutoVizerz does not sell, rent, or lease personal information to third parties for their independent commercial purposes. This applies to all users — dealership personnel and Site visitors alike.
4Sharing & Disclosure
We do not share personal information except in the circumstances described below.
4.1 Service Providers (Sub-Processors)
We engage third-party companies to perform functions on our behalf — such as cloud infrastructure, email delivery, payment processing, customer support tooling, and analytics. These providers access personal information only as necessary to perform their services and are contractually bound to use it only for that purpose and to maintain appropriate security standards.
A current list of our sub-processors is available to dealership customers upon request. Material changes to our sub-processor list are communicated to customers at least 30 days in advance.
4.2 Dealership Customers
If you are a Platform user acting on behalf of a dealership, the dealership is the data controller for your account information. The dealership's administrators can view, modify, or delete your account. Your use of the Platform may be subject to the dealership's own internal policies in addition to this Privacy Policy.
4.3 Legal Requirements & Protection of Rights
We may disclose personal information if we believe in good faith that disclosure is necessary to:
- Comply with a legal obligation, court order, subpoena, or lawful government request
- Enforce our Terms of Service or other agreements
- Protect the rights, property, or safety of AutoVizerz, our customers, or the public
- Detect, prevent, or address fraud, security, or technical issues
When legally permitted, we will notify affected customers of such requests before disclosure.
4.4 Business Transfers
In the event of a merger, acquisition, financing, reorganization, bankruptcy, or sale of all or a portion of our assets, personal information may be transferred as part of the transaction. We will notify affected users via email or a prominent notice on our Site before personal information becomes subject to a materially different privacy policy, and we will provide the opportunity to opt out where required by law.
4.5 With Your Consent
We may share information with third parties when you have explicitly consented to such sharing. You may withdraw consent at any time; withdrawal does not affect the lawfulness of processing before the withdrawal.
AutoVizerz does not share dealership operational data, customer lists, deal structures, pricing strategies, or any proprietary business information with competing dealerships or automotive industry third parties.
5Data Retention
We retain personal information for as long as necessary to fulfill the purposes described in this Policy, unless a longer retention period is required by law.
| Data Category | Retention Period | Basis |
|---|---|---|
| Active account and user profile data | Duration of active subscription + 90 days | Contract performance |
| Dealership operational / transaction data | Duration of active subscription + 30 days post-termination | Contract + legal obligation |
| Security and audit logs | 12 months online · 7 years archival | Legal obligation / legitimate interest |
| Billing and financial records | 7 years from transaction date | Legal obligation (tax / financial regulation) |
| Marketing contact data | Until opt-out or 3 years of inactivity | Legitimate interest / consent |
| Support and communication records | 3 years from last interaction | Legitimate interest |
| Website analytics (aggregated) | 26 months rolling | Legitimate interest |
Upon expiration of the applicable retention period, personal information is securely deleted or de-identified using NIST SP 800-88 compliant methods. Dealership customers may request a Certificate of Destruction confirming deletion of their data upon contract termination.
6Security
AutoVizerz implements administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, disclosure, alteration, and destruction. Key measures include:
- AES-256 encryption for all data at rest
- TLS 1.3 for all data in transit
- Multi-factor authentication (MFA) enforced for all Platform accounts
- Role-based access controls (RBAC) limiting access to the minimum necessary
- Annual third-party penetration testing with findings remediated within 30 days
- SOC 2 Type II certification covering Security, Availability, Confidentiality, Processing Integrity, and Privacy
- 24/7 security monitoring with anomaly detection and incident response procedures
For a detailed description of our security program, please visit our Security & Compliance page.
No method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security. In the event of a security incident affecting your personal information, we will notify you in accordance with applicable law.
7Cookies & Tracking Technologies
We use cookies and similar technologies on our Site and Platform. Below is a description of the types of cookies we deploy:
| Cookie Type | Purpose | Duration | Can Opt Out? |
|---|---|---|---|
| Strictly Necessary | Session management, authentication, CSRF protection, load balancing. The Platform cannot function without these. | Session / up to 24 hours | No — Required |
| Functional | Remembering your language preference, UI layout settings, and recently visited sections. | Up to 12 months | Yes |
| Analytics | Understanding how visitors navigate the Site and Platform (page views, bounce rate, feature usage). Data is aggregated and does not identify individuals. | Up to 26 months | Yes |
| Marketing | Measuring the effectiveness of our marketing campaigns and delivering relevant content to prospective customers. Used on the marketing Site only — not on the Platform. | Up to 12 months | Yes |
Managing Your Cookie Preferences
You can control and manage cookies in several ways:
- Browser settings: Most browsers allow you to refuse or delete cookies. Consult your browser's help documentation for instructions. Note that disabling cookies may impair certain functionality of our Site.
- Opt-out tools: For analytics cookies, you may opt out via the Google Analytics Opt-out Browser Add-on where applicable.
- Do Not Track: Our Site currently does not respond to browser "Do Not Track" signals, as there is no established standard for how such signals should be interpreted. We will update this policy if a standard is adopted.
8Your Privacy Rights
Depending on your location and applicable law, you may have the following rights with respect to your personal information:
Right to Access
Request a copy of the personal information we hold about you and information about how we process it.
Right to Rectification
Request correction of inaccurate or incomplete personal information we hold about you.
Right to Erasure
Request deletion of your personal information, subject to our legal obligations to retain certain records.
Right to Restrict Processing
Request that we limit how we use your personal information in certain circumstances, such as while we verify a correction request.
Right to Data Portability
Receive a copy of your personal information in a structured, machine-readable format to transfer to another service, where technically feasible.
Right to Object
Object to processing based on legitimate interest, including direct marketing. Marketing opt-outs take effect within 10 business days.
Right Against Automated Decisions
Request human review of any decision made solely by automated means that produces significant effects about you.
Right to Withdraw Consent
Where processing is based on consent, withdraw that consent at any time. Withdrawal does not affect prior lawful processing.
Exercising Your Rights
To submit a privacy rights request, contact us at privacy@autovizerz.com or use the contact details in Section 11. We will respond within 30 days (extendable to 60 days for complex requests with notice). We may need to verify your identity before fulfilling a request.
We will not discriminate against you for exercising any of these rights.
California Residents (CCPA / CPRA)
California residents have the rights described above plus additional rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA):
- Right to Know: The categories and specific pieces of personal information collected, the purposes of collection, and the categories of third parties with whom it is shared.
- Right to Opt Out of Sale or Sharing: AutoVizerz does not sell or share personal information as those terms are defined under CCPA/CPRA. No opt-out is needed, but you may submit a request confirming this at any time.
- Right to Limit Use of Sensitive Personal Information: We only use sensitive personal information (such as login credentials) for the purposes for which it was collected and as permitted by regulation.
- Shine the Light: California Civil Code Section 1798.83 permits California customers to request information about disclosures of personal information to third parties for direct marketing purposes. AutoVizerz does not make such disclosures.
To submit a CCPA request: email privacy@autovizerz.com with "California Privacy Request" in the subject line.
Nevada Residents
Nevada law (SB 220) gives Nevada residents the right to opt out of the sale of certain personal information. AutoVizerz does not sell personal information. Nevada residents may still submit an opt-out request at privacy@autovizerz.com.
EEA, UK & Swiss Residents (GDPR / UK GDPR)
If you are located in the European Economic Area, United Kingdom, or Switzerland, your personal information is processed pursuant to GDPR or the applicable national implementation. In addition to the rights above, you have the right to lodge a complaint with your local supervisory authority. Our legal bases for processing are: contract performance, legitimate interests (balanced against your rights), legal obligation, and — where required — explicit consent.
9Children's Privacy
The AutoVizerz Services are designed for use by automotive dealership businesses and their adult employees. Our Services are not directed to children under the age of 16, and we do not knowingly collect personal information from children under 16.
If we become aware that we have collected personal information from a child under 16 without appropriate parental or guardian consent, we will take steps to delete that information promptly. If you believe we may have inadvertently collected information from a minor, please contact us at privacy@autovizerz.com.
10Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other legitimate business reasons. When we make changes, we will:
- Update the "Last Updated" date at the top of this page
- Post the revised policy at this URL (autovizerz.com/privacy.html)
- For material changes, provide at least 30 days' advance notice via email to registered account holders and/or a prominent banner on the Site
Your continued use of the Services after the effective date of a revised policy constitutes your acceptance of the changes, to the extent permitted by applicable law. If you do not agree with a material change, you may close your account before the effective date of the change.
11Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us through any of the following channels:
Privacy Team
For all privacy rights requests, data subject inquiries, and general privacy questions.
privacy@autovizerz.comSecurity Team
To report a potential security vulnerability or suspected data breach.
security@autovizerz.comLegal Department
For legal process, DPA negotiations, and regulatory correspondence.
legal@autovizerz.comMailing Address
AutoVizerz, Inc.
Attn: Privacy Officer
United States
We are committed to working with you to resolve any privacy concern fairly and promptly. If you are not satisfied with our response, you have the right to lodge a complaint with the relevant data protection authority in your jurisdiction.