Privacy policy

1. Data controller

The legal entity responsible for processing personal data related to this app and the carcontrol-obd2.app website:

• Cafaro Carmelina — Innovatek
• Contrada Piano del Pero 11, 84046 Ascea (SA), Italia
• P.IVA 06424410659
• privacy@carcontrol-obd2.app

We act as controller for the identity and subscription data we keep to run the cloud features. The data you create in the app (vehicles, trips, refuels) stays on your device under your sole control: for that data we are neither controller nor processor.

2. When this policy applies

This policy applies to:

• The carcontrol-obd2.app website
• The Car Control - OBD2 Android app available on Google Play
• The cloud services (account, backup, subscription validation) when you choose to use them

3. Data processed on your device

By default this information is processed entirely on your device and never leaves your phone, unless you enable cloud backup (section 5):

• Vehicle profile you create (make, model, year, optional license plate)
• Live OBD-II readings during connection (RPM, speed, coolant, etc.) — held in memory only
• Trips you record (GPS coordinates, duration, fuel used, average speed) — saved locally
• Refuels and maintenance entries you log — saved locally
• Approximate location, only when you open the fuel-price screen, to find nearby stations
• Bluetooth device list and pairing state, only while the app is open

4. What we do NOT collect by default

If you do not sign in with an account and do not enable cloud backup, the app talks to none of our servers: we do not collect, transmit or store on our servers your name, location history, vehicle data, trips, refuels, contact list or IP address. We use no Crashlytics and no telemetry in the app. The only network connections are to public fuel-price sources and map tiles (section 6).

5. Account, cloud backup and subscription (optional)

These features are off until you turn them on. When you use them we process on our servers (Microsoft Azure, EU — section 6) only the following data, for the stated purposes:

• Google sign-in — When you sign in we receive from Google your email address (verified), your account name, your language and an opaque Google identifier (subject ID) to re-link your account on later logins. We do not receive your Google password, profile photo or contacts. Legal basis: performance of a contract.
• Encrypted cloud backup — Your vehicle backup (the database, which may include license plates, documents and receipts you enter) is encrypted on your device before upload; we keep only the encrypted blob, its size and the app version. The encryption key never leaves your phone: we cannot read the contents of your backups. Legal basis: performance of a contract.
• Pro subscription — Subscriptions are handled by Google Play Billing. We receive the subscription status from Google (active, expired, on hold, refunded) to unlock Pro features. We do not see your card details, which are handled entirely by Google. Legal basis: performance of a contract.
• Operational data — For session security we store refresh tokens as SHA-256 hashes with issue/expiry dates and a device descriptor (model, OS version) — legal basis: legitimate interest. When you accept this policy or the terms we record the consent type, version, timestamp and a hashed form of your IP address, to demonstrate consent collection under GDPR Art. 7 — legal basis: legal obligation.

You can use the app in full without ever enabling any of these features.

6. Third-party services and processors

The app connects to the following public fuel-price and map sources only when needed, without sending your personal data:

• MIMIT (Ministero delle Imprese e del Made in Italy) — Italian fuel prices
• Roulez-Eco (data.economie.gouv.fr) — French fuel prices
• Geoportal Gasolineras (sedeaplicaciones.minetur.gob.es) — Spanish fuel prices
• data.public.lu — Luxembourg fuel prices
• CMA (UK Competition and Markets Authority retailer feeds) — UK fuel prices
• European Central Bank — daily exchange rates for currency conversion
• OpenStreetMap (osmdroid) — map tiles for trip routes and station map

For the optional cloud features we rely on the following processors, each bound by a data processing agreement:

• Microsoft Ireland Operations Ltd. (Azure) — hosting of backend, database, encrypted-backup storage and key vault. Location: EU (West Europe).
• Google LLC / Google Ireland Ltd. — Google sign-in and Play Billing. Location: EU + USA (under Standard Contractual Clauses).

7. International transfers

The core cloud service (account, backup, subscription validation) is hosted entirely in the European Union. Some Google services may transfer data to the United States: in that case transfers rely on the European Commission's Standard Contractual Clauses. You can request a copy at the email below.

8. Data retention

• Local data: stays on your device until you delete it or uninstall the app.
• Account data: as long as your account exists. On deletion, identifying data is removed within 30 days, except for entries required by law.
• Cloud backup: until it is replaced or the account is deleted.
• Refresh tokens: until expiry, plus a short grace period for security audits.
• Consent logs: for as long as needed to meet legal obligations.

9. Security

We apply technical and organisational measures appropriate to the risk:

• TLS 1.2+ for all data in transit
• Encryption at rest on Azure Storage
• Client-side encryption for backups: the key never leaves your device
• Secrets managed in Azure Key Vault with role-based access
• No passwords: authentication delegated to Google
• Refresh tokens hashed (SHA-256), never stored in clear text

10. Permissions we request

• Bluetooth (scan and connect): to pair with your OBD-II adapter and detect your car's head unit
• Location (precise): to record trip routes via GPS and to find nearby fuel stations. Required by Android for any Bluetooth scan
• Notifications: to inform you about trip status, low fuel, scheduled deadlines
• Foreground service: to keep the OBD connection and GPS tracking alive while the app is in background during a trip
• Vibrate: for haptic feedback on warnings
• Internet: for fuel price downloads and ECB rates and, if you enable the cloud features, to sync account and backup

11. Backup, export and deletion

From Settings you can export a full backup as a single ZIP file and restore it on a new device. If you have an account, from the app you can also export all the data we keep on the server (GDPR Art. 15) and permanently delete your account and cloud backup (Art. 17). For local data only: uninstall the app or use Settings → Storage.

12. Your rights

Under the GDPR you can access your data (Art. 15), rectify it (Art. 16), erase it and close your account (Art. 17), restrict or object to processing (Arts. 18 and 21), export it in a machine-readable format (Art. 20) and withdraw consent at any time (Art. 7.3). For local data you exercise these rights yourself through export and uninstall; for account data, through the export and deletion features in the app or by writing to us. You also have the right to lodge a complaint with a supervisory authority — in Italy, the Garante per la protezione dei dati personali.

13. Children

The app is not intended for children under 16 and we do not knowingly collect their data. If you believe a minor has provided us with personal data, contact us and we will delete it.

14. Changes to this policy

If we update this policy we will publish a new version on this page with a fresh update date. Material changes will be highlighted in the app or by email.

15. Contact

For any privacy-related question or to exercise your rights, write to: privacy@carcontrol-obd2.app