Privacy Policy

PitStop PRO is committed to protecting your privacy. This policy explains how we collect, use, and safeguard your personal information.

Effective Date: June 8, 2025Last Updated: June 8, 2025

1. Introduction

Welcome to PitStop PRO ("we," "our," or "us"). PitStop PRO provides an on-demand mobile vehicle service platform that connects customers with qualified mechanics and auto detailers. This Privacy Policy describes how we collect, use, disclose, and protect your personal information when you use our website, mobile application, and related services (collectively, the "Services").

By accessing or using our Services, you agree to the collection and use of your information in accordance with this Privacy Policy. If you do not agree with the practices described in this policy, please do not use our Services.

This policy applies to all users of PitStop PRO, including customers who book services, technicians and detailers who provide services ("Service Providers"), and visitors to our website and app.

2. Information We Collect

We collect information in several ways depending on how you interact with our Services:

2.1 Account Information

When you create an account, we collect:

  • Full name
  • Email address
  • Password (stored securely using industry-standard hashing)
  • Phone number
  • Profile photo (optional)
  • Date of birth (optional)

2.2 Address & Location Information

To provide our mobile service, we collect:

  • Street address, city, state, and zip code (for service locations and your profile)
  • GPS coordinates when you use location-based features or share your current location
  • Saved addresses you choose to store (e.g., Home, Work)

2.3 Vehicle Information

When you add vehicles to your account or book services, we collect:

  • Vehicle year, make, model, and trim
  • Engine and transmission type
  • License plate number and state (when using plate lookup; used for vehicle identification only and not stored on our servers)
  • Vehicle Identification Number (VIN) — retrieved from third-party services for accurate vehicle data
  • Fuel type

2.4 Booking & Service Information

When you book a service, we collect:

  • Selected service type and description
  • Preferred appointment date and time
  • Special instructions or notes you provide
  • Service location address and geocoded coordinates
  • Pricing information, including estimates, deposits, and final costs
  • Diagnostic information (DTC codes, issue descriptions) for repair bookings

2.5 Payment Information

We use Stripe to process payments. When you make a payment:

  • Your payment card details are collected and processed directly by Stripe — we never see, store, or have access to your full card number
  • We store payment transaction identifiers (Stripe payment intent IDs) to track payment status
  • We store payment status flags (e.g., deposit paid, balance paid, fully paid)
  • Your email address is shared with Stripe to send payment receipts

2.6 Communications & Messages

When you use our in-app messaging feature:

  • Message content exchanged between you and your assigned technician
  • Your name and email address as message sender identifiers
  • Read receipts and message timestamps

2.7 Service Provider Information

If you register as a mechanic or detailer, we additionally collect:

  • Professional certifications and documentation
  • Areas of specialization
  • Experience level and prior affiliations
  • Equipment and tools inventory
  • Portfolio images of prior work
  • Availability schedule
  • Real-time GPS location while on active duty (for dispatch and customer tracking purposes)
  • Stripe Connect account information for receiving payouts
  • Earnings and job completion history

2.8 Reviews & Feedback

After a service is completed, we may collect:

  • Star rating (1–5)
  • Written review text
  • Your name associated with the review

3. How We Use Your Information

We use the information we collect for the following purposes:

1

Service Delivery

To match you with qualified technicians, schedule appointments, and facilitate the delivery of vehicle services at your location.

2

Account Management

To create and manage your account, authenticate your identity, and enable you to access your booking history and profile.

3

Payment Processing

To process payments for services, issue receipts, manage deposits and balances, and facilitate payouts to Service Providers.

4

Communication

To enable messaging between customers and technicians, send booking confirmations, status updates, and service reminders.

5

Location Services

To dispatch the nearest available technician, provide real-time tracking of your technician's arrival, and geocode service addresses for accurate routing.

6

Service Improvement

To analyze service patterns, improve our matching algorithms, monitor rejection rates, and enhance the overall quality of our platform.

7

Safety & Trust

To verify Service Provider credentials, maintain quality standards, and investigate disputes or fraudulent activity.

8

Customer Support

To respond to your inquiries, troubleshoot issues, and provide technical support.

9

Legal Compliance

To comply with applicable laws, regulations, and legal processes, and to enforce our terms of service.

4. How We Share Your Information

We do not sell your personal information to third parties. We may share your information in the following limited circumstances:

With Service Providers (Technicians/Detailers)

When you book a service, your name, phone number, service address, vehicle information, and special instructions are shared with the assigned technician so they can perform the service.

With Customers (if you are a Service Provider)

Your name, profile photo, professional level, rating, and real-time location (when en route) are shared with customers who have booked your services.

With Payment Processors

We share your email address and booking details with Stripe to process payments securely. Service Providers' banking information is handled through Stripe Connect.

With Third-Party Service Partners

We may share limited information with partners who assist in providing our Services (e.g., geocoding services, vehicle data lookup services). See Section 6 for details.

For Legal Reasons

We may disclose your information if required by law, court order, or government request, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

Business Transfers

In the event of a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of the transaction. We will notify you of any such change.

5. Data Storage & Security

We take the security of your personal information seriously and employ industry-standard measures to protect it:

  • Encryption: All data transmitted between your device and our servers is encrypted using TLS/SSL protocols.
  • Password Security: Passwords are hashed using Argon2, an industry-leading password hashing algorithm. We never store passwords in plain text.
  • Payment Security: Payment card data is handled entirely by Stripe, which is PCI-DSS Level 1 certified. We never process or store credit card numbers.
  • Database Security: Your data is stored in secure, managed PostgreSQL databases with access controls and automated backups.
  • Session Management: Authentication sessions are securely managed with expiring tokens.

While we strive to use commercially acceptable means to protect your personal information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

6. Third-Party Services

Our Services integrate with the following third-party providers, each with their own privacy policies:

Stripe

Purpose: Payment processing for customers and payout disbursement to Service Providers via Stripe Connect

Data shared: Email, payment details, banking info (Service Providers)

View their privacy policy →

Google Maps / Geocoding

Purpose: Address geocoding, service location mapping, and technician tracking

Data shared: Service addresses, GPS coordinates

View their privacy policy →

PlateToVIN

Purpose: Vehicle identification via license plate lookup

Data shared: License plate number and state

Resend

Purpose: Transactional email delivery (password resets, booking confirmations, admin alerts)

Data shared: Email address, name

View their privacy policy →

7. Location Data

Location data is a critical part of how our service works. Here is how we handle it:

For Customers

  • We collect your service address to dispatch a technician to your location
  • We may geocode your address (convert it to GPS coordinates) for routing purposes
  • If you use the "current location" feature on the mobile app, we access your device's GPS with your permission
  • Saved addresses are stored locally on your device and are not transmitted to our servers unless used for a booking

For Service Providers

  • When you enable location tracking (while on duty), your GPS coordinates are collected approximately every 30 seconds
  • Your real-time location is shared with customers who have active bookings with you, so they can track your arrival
  • Location data includes latitude, longitude, and accuracy metrics
  • You can enable or disable location tracking at any time through the app
  • Location data is used for job dispatching and matching you with nearby service requests

8. Cookies & Local Storage

Our Services use the following client-side storage mechanisms:

  • Session Cookies: We use cookies to maintain your authentication session and keep you logged in. These are essential for the platform to function.
  • Local Storage (Web): We use your browser's local storage to save your vehicle selections, saved addresses, and user preferences for a better experience. This data stays on your device.
  • AsyncStorage (Mobile): On the mobile app, we use device storage to save your selected vehicles, addresses, and authentication tokens locally.

We do not use tracking cookies or third-party advertising cookies. You can clear local storage data at any time through your browser or app settings.

9. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal information:

Right to Access

Request a copy of the personal data we hold about you.

Right to Correction

Request correction of inaccurate or incomplete personal data. You can update most information directly in your profile.

Right to Deletion

Request deletion of your personal data, subject to legal obligations and legitimate business needs.

Right to Portability

Request a copy of your data in a structured, commonly used, and machine-readable format.

Right to Opt-Out

Opt out of certain data processing activities, including marketing communications.

Right to Withdraw Consent

Withdraw your consent for data processing at any time, where consent is the legal basis for processing.

Right to Restrict Processing

Request restriction of processing of your personal data under certain circumstances.

Right to Non-Discrimination

We will not discriminate against you for exercising any of your privacy rights.

To exercise any of these rights, please contact us using the information provided in the "Contact Us" section below. We will respond to your request within 30 days.

10. Data Retention

We retain your personal information for as long as necessary to provide our Services and fulfill the purposes described in this policy:

  • Account Data: Retained as long as your account is active. Upon account deletion request, data is removed within 30 days, except where retention is required by law.
  • Booking Records: Retained for a minimum of 3 years for warranty, dispute resolution, and legal compliance purposes.
  • Payment Records: Retained as required by tax and financial regulations (typically 7 years).
  • Messages: Retained for 1 year after the associated booking is completed.
  • Location Data (Service Providers): Real-time location data is overwritten with each update and is not historically retained beyond the current session.
  • Password Reset Tokens: Automatically expire and are marked as used. Expired tokens are periodically purged.

11. Children's Privacy

Our Services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately. If we discover that a child under 18 has provided us with personal information, we will take steps to delete that information promptly.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will notify you by updating the "Last Updated" date at the top of this page and, where required, provide additional notice (such as an in-app notification or email). We encourage you to review this policy periodically. Your continued use of our Services after any changes indicates your acceptance of the updated policy.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email

privacy@pitstoppro.com

Company

PitStop PRO

© 2026 PitStop PRO. All rights reserved.