Privacy Policy

How we collect, use, and protect your information.

1. Who We Are

AZ Global Automotive Software ("we," "us," "our") provides website and shop management software to diesel repair shops and similar automotive businesses. Our company is operated from Phoenix, Arizona, United States.

This Privacy Policy applies to:

• Our marketing website at azgasystems.com
• The hosted platform services we provide to our subscriber shops
• Any customer-facing websites we operate on behalf of our subscriber shops

2. What Information We Collect

Information you provide directly

• Business information: Shop name, address, phone, time zone, hours, services offered, year established
• Contact information: Your name, email, phone number, role at the business
• Account credentials: Email and password (passwords are stored hashed, never in plain text)
• Billing information: Payment details processed through Stripe — we do not store credit card numbers
• Quote requests and support communications: Information you provide in our contact forms or support emails

Information collected automatically

• Usage data: Pages visited, features used, session timestamps, approximate location based on IP address
• Device information: Browser type, operating system, screen size
• Cookies: Authentication cookies and basic session cookies (see Section 6)

Information collected from third parties

If you sign up via a payment, we receive a confirmation from Stripe that the payment succeeded along with billing details you provided to Stripe.

3. How We Use Your Information

We use the information we collect to:

• Provide and operate the platform services you've subscribed to
• Process payments and manage your subscription
• Communicate with you about your account, support requests, and service changes
• Customize your shop's website with your branding and content
• Detect, prevent, and address technical issues, fraud, and security threats
• Comply with legal obligations (taxes, regulatory requirements)
• Improve our services based on aggregated, non-identifying usage patterns

We do not sell your information to advertisers, data brokers, or any third party.

4. Who We Share Information With

We share information only with the service providers we use to operate the platform:

• Stripe — payment processing
• Supabase — database and authentication hosting
• Netlify — website hosting
• Resend — transactional email delivery
• Google / Cloudflare — DNS services where applicable

Each of these providers handles your data subject to their own privacy policies and contractual obligations to us. We require all providers to meet industry-standard data protection standards.

We may also disclose information when legally required (subpoenas, court orders, government investigations) or to protect our rights, your safety, or the safety of others.

If we are acquired or merge with another company, your information may be transferred. We will notify you before this happens and you'll have the opportunity to opt out.

5. How We Store and Protect Information

Information is stored on encrypted servers operated by our service providers, primarily in the United States. We use industry-standard security measures including:

• TLS/SSL encryption for all data in transit
• Encrypted storage at rest
• Hashed passwords (we never see or store your plaintext password)
• Limited access to personal data, restricted to staff who need it for support
• Two-factor authentication on our administrative tools

We retain account data for as long as your subscription is active, plus 90 days after cancellation to allow for data export and recovery. After that, account data is permanently deleted unless we are legally required to retain it.

6. Cookies and Tracking

We use a minimal set of cookies:

• Authentication cookies: Required to keep you logged in. Without these, you'd have to sign in on every page.
• Session cookies: Track your current visit so the site works smoothly. Cleared when you close your browser.

We do not use advertising cookies, retargeting pixels, or third-party tracking. We do not currently use analytics services that collect personal data.

7. Your Rights

Regardless of where you live, you can:

• Access the information we have about you
• Correct inaccurate information through your account or by emailing us
• Delete your account and your data (subject to legal retention requirements)
• Export your data in standard formats (CSV/JSON)
• Object to certain types of processing
• Withdraw consent at any time where we rely on consent

If you're in California, the EU, UK, or other jurisdictions with specific privacy laws, you may have additional rights under those laws (CCPA, GDPR, UK-GDPR, etc.). Contact us to exercise any of these rights.

To exercise any of these rights, email privacy@azglobalautomotive.com. We respond within 30 days.

8. Children's Privacy

Our services are designed for business use and are not directed at children under 13. We do not knowingly collect information from anyone under 13. If you believe we have collected information from a child, please contact us and we will delete it.

9. Changes to This Policy

We may update this Privacy Policy from time to time. If we make significant changes, we'll notify active subscribers by email at least 30 days before changes take effect. The "Last updated" date at the top of this page indicates when the policy was last changed.

10. Contact Us

Questions about this policy, your data, or your rights?

Email: privacy@azglobalautomotive.com
General contact: hello@azglobalautomotive.com
Mail: AZ Global Automotive Software, Phoenix, AZ, United States

This policy is provided as a starting point and reflects our actual practices. It is not legal advice. For specific legal questions, consult an attorney familiar with privacy law in your jurisdiction.