Privacy policy
Last updated: April 28, 2026 · Effective immediately
This page explains what we collect, why, and what you can do about it. We collect as little as possible and never sell your data. If something here is unclear, email privacy@autodealerpro.io.
Three kinds of data
- Dealer data — inventory, deals, leads, employee accounts, audit logs. Owned by the dealer; we host it on their behalf.
- Customer data — names, phone numbers, emails, vehicle history of the dealer's customers. Same: owned by the dealer, we're a processor.
- Operational data — server logs, error traces, performance metrics. Owned by ADP; used to run + improve the platform.
What we collect from website visitors
Just the basics: page views, referrer, country (from IP), basic device info. No cross-site tracking, no Facebook Pixel, no Google Analytics. We use a privacy-respecting analytics tool (Plausible) which doesn't use cookies.
What we collect from dealer users
When you log into the dealer app: your authenticated user ID, the actions you take (for audit logging), and standard server logs. We don't record your screen, keystrokes, or anything outside ADP.
Herald (voice AI) calls
Inbound and outbound calls handled by Herald are recorded and transcribed for dealer record-keeping and quality. Recording disclosure plays at call start where required by law (all U.S. states, EU, UK). Recordings are encrypted at rest and retained per the dealer's configured retention policy (default: 1 year). Customers can request deletion via the dealer.
What we share
With sub-processors only — listed in our DPA. Stripe (payments), Twilio + Vapi (telephony), Anthropic (Concierge LLM), AWS / Hetzner (hosting), Resend (transactional email), Sentry (errors). We never sell or rent dealer or customer data to anyone, period.
Your rights
Under GDPR / CCPA you can: request a copy of your data, ask us to correct or delete it, object to processing, or withdraw consent. Email privacy@autodealerpro.io — we respond within 30 days. For dealer-managed customer data, we'll route the request to your dealer and assist them.
Data retention
Active accounts: as long as you're a customer + 30 days for export. After that we delete. Audit logs: 7 years (regulatory). Anonymous operational data: up to 24 months for capacity planning.
Security
AES-256 at rest, TLS 1.3 in transit, per-tenant key envelope for sensitive PII, Postgres Row-Level Security on every tenant-scoped table. Full details on the security page.
Children's data
ADP is not for individuals under 18. We don't knowingly collect data from minors. If you believe we have, email privacy@autodealerpro.io and we'll delete it.
Changes
We'll post material changes here and email account owners 30 days before they take effect.