Privacy Policy

Last updated: December 2024

1. Introduction

DiagBuddy ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our automotive diagnostic assistant service.

2. Information We Collect

Account Information

• Email address (required for account creation)
• Password (stored securely using bcrypt hashing)

Usage Data

• Diagnostic queries and chat history
• Vehicle information you provide (make, model, year, VIN)
• DTC codes you look up
• Feature usage statistics

Technical Data

• IP address
• Browser type and version
• Device information
• Session data

3. How We Use Your Information

• To provide and maintain our diagnostic assistance service
• To process your subscription and payments (via Stripe)
• To improve our AI diagnostic capabilities
• To communicate with you about your account
• To detect and prevent fraud or abuse

4. Third-Party Services

We use the following third-party services:

• OpenAI/Anthropic/Groq: AI providers that process your diagnostic queries. Your queries are sent to these services to generate responses. Please review their privacy policies.
• Stripe: Payment processing. We do not store your credit card information.
• NHTSA: We access public recall and complaint data.

5. Data Retention

• Account data: Retained until you delete your account
• Chat history: Retained for 90 days, then automatically deleted
• Usage statistics: Retained in aggregate form

6. Data Security

We implement appropriate security measures including:

• Password hashing with bcrypt
• HTTPS encryption for all communications
• Rate limiting to prevent abuse
• Regular security audits

7. Your Rights

You have the right to:

• Access your personal data
• Correct inaccurate data
• Delete your account and associated data
• Export your data
• Opt out of marketing communications

8. GDPR Compliance (EU Users)

If you are in the European Union, you have additional rights under GDPR:

• Right to data portability
• Right to restrict processing
• Right to object to processing
• Right to withdraw consent

To exercise these rights, contact us at the email below.

9. CCPA Compliance (California Users)

California residents have the right to:

• Know what personal information is collected
• Know whether personal information is sold or disclosed
• Say no to the sale of personal information (we do not sell your data)
• Access your personal information
• Equal service and price, even if you exercise your privacy rights

10. Children's Privacy

DiagBuddy is intended for professional automotive technicians and is not directed at children under 13. We do not knowingly collect information from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

12. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us at:

Email: [email protected]