Auto Analytics Pro
DocsSign In

Legal

Privacy Policy

Last updated: May 2, 2026

Auto Analytics Pro ("we", "our", "us") operates an analytics platform that surfaces vehicle registration data from India's official VAHAN portal. This Privacy Policy explains what personal information we collect, how we use it, and your rights regarding that information.

By using our platform you agree to the practices described in this policy. If you do not agree, please discontinue use and contact us to close your account.

1. Information We Collect

1.1 Account Information

When a workspace is created or a user is invited, we collect:

  • Email address
  • Organisation / company name (tenant-level)
  • Password (stored as a one-way bcrypt hash — we cannot read your password)
  • Role assigned within the workspace
  • Account status and timestamps (created at, last login)

We do not collect payment card details directly. Billing is handled by a third-party processor and governed by their own privacy policy.

1.2 Usage Data

We log standard server-side request metadata (timestamp, HTTP method, response status, approximate response time) for operational monitoring and debugging. These logs are retained for 14 days and do not include request body content or personal identifiers beyond the authenticated user ID.

1.3 Vehicle Registration Data

The analytics data displayed on the platform — registration counts by state, RTO, manufacturer, and vehicle class — is aggregated, statistical data sourced from the Ministry of Road Transport & Highways' VAHAN portal. It contains no personal information about vehicle owners. We do not process or store individual vehicle owner names, addresses, or contact details.

1.4 Cookies and Local Storage

We use browser localStorage to store your authentication token during an active session. We do not use tracking cookies, advertising pixels, or third-party analytics scripts.

2. How We Use Your Information

  • Authentication & access control — To verify your identity and enforce role-based permissions within your workspace.
  • Email communications — To send account setup links, password reset emails, and (rarely) important service announcements. We do not send marketing emails without your explicit consent.
  • Service operation & support — To diagnose errors, investigate security incidents, and respond to support requests.
  • Billing & subscription management — To enforce seat limits and plan entitlements associated with your workspace subscription.

We do not sell, rent, or share your personal information with third parties for marketing or advertising purposes.

3. Data Retention

Data typeRetention period
User account recordsUntil account deletion is requested
Server access logs14 days (rolling rotation)
Password reset tokens1 hour (expires and is cleared automatically)
Authentication tokens (localStorage)Cleared on sign-out or session expiry
Vehicle registration dataRetained indefinitely (public government data, no personal data)

4. Data Security

We take reasonable technical measures to protect the information we hold:

  • Passwords are hashed using bcrypt before storage. Plaintext passwords are never stored or logged.
  • All data in transit is encrypted using TLS.
  • Authentication tokens are issued as signed JWTs and validated on every API request.
  • Access to production infrastructure is restricted to authorised personnel.

No system is completely secure. If you believe your account has been compromised, contact us immediately at [email protected] and change your password using the reset flow.

5. Your Rights

Subject to applicable law (including the Digital Personal Data Protection Act, 2023 where applicable), you may request:

  • Access — a copy of the personal information we hold about you.
  • Correction — updates to inaccurate or incomplete information.
  • Deletion — removal of your account and associated personal data. Note: your workspace Administrator may also remove your account. Aggregated usage statistics that do not identify you individually may be retained.
  • Portability — a machine-readable export of your account data.

To exercise any of these rights, email [email protected] from the address associated with your account. We will respond within 30 days.

6. Third-Party Services

The platform may use the following third-party services. Each is governed by its own privacy policy:

  • SMTP email provider — Used to deliver account setup, invite, and password reset emails. Email addresses are transmitted to the provider solely for delivery purposes.

We do not integrate advertising networks, social media trackers, or behavioural analytics tools.

7. Children

Auto Analytics Pro is a professional B2B tool intended for use by adults in a business context. We do not knowingly collect information from anyone under 18 years of age.

8. Changes to This Policy

We may update this policy from time to time. The "Last updated" date at the top of this page reflects the most recent revision. For material changes we will notify workspace Administrators by email at least 14 days in advance.

9. Contact Us

For privacy-related questions or to exercise your rights, contact:

Auto Analytics Pro

Email: [email protected]