Skip to content Skip to footer
Menu Close
Close
SCHEDULE NOW!

Last updated: [Month Day, Year]

This Privacy Policy explains how [CARLUX, LLC] (“CARLUX,” “we,” “us,” “our”) collects, uses, discloses, and protects personal information when you visit our websites, apps, and related services (the “Services”), book vehicle services, or otherwise interact with us. By using the Services, you agree to this Policy. If you do not agree, please do not use the Services.

1) Scope & Who We Are

This Policy applies to information we collect online and offline (e.g., bookings, calls/texts, email, on-site service appointments). CARLUX may operate as a direct service provider and/or marketplace connecting you with independent third-party providers (“Providers”). When you book with a Provider, we process your information as described here; Providers may have their own privacy policies.

Contact:
[CARLUX, LLC] • [Street, City, State ZIP] • [privacy@carlux.com] • [Phone]

2) Information We Collect

a) You provide

  • Identity & contact: name, email, phone, billing/shipping address, account credentials.

  • Vehicle & service: make/model/VIN, license plate, photos/video (before/after), appointment notes, location for mobile service, access instructions.

  • Payment: cardholder name, last 4 digits, and transaction details (processed by our payment processor; we do not store full card numbers).

  • Communications: support requests, reviews, survey responses, contest entries.

  • Marketing preferences: consents, opt-ins for email/SMS/push.

b) Collected automatically

  • Usage data & device info: IP address, device IDs, browser type, pages viewed, timestamps, referring URLs.

  • Approx. location: derived from IP or (if you allow) precise location for mobile bookings/technician routing.

  • Cookies/SDKs: identifiers for authentication, analytics, fraud prevention, and ads. See Cookies & Ads below.

c) From third parties

  • Providers/partners: appointment status, service notes, photos, incident reports.

  • Payments & fraud tools: transaction risk signals.

  • Marketing/lead sources: campaign attribution, audience segments (where permitted by law).

3) How We Use Information

  • Provide & improve Services: create/manage accounts; process bookings; route technicians/Providers; send confirmations, reminders, and updates; personalize content; troubleshoot and enhance the user experience.

  • Payments & collections: process transactions, refunds, and fraud prevention.

  • Safety & integrity: verify identity where needed; detect, investigate, and prevent fraud, abuse, or policy violations.

  • Communications: service alerts, transactional emails/SMS, customer support. With consent or as permitted, marketing messages you can opt out of anytime.

  • Analytics & product development: measure performance, test new features, and aggregate statistics.

  • Legal compliance: tax/accounting, regulatory requests, claims defense, and enforcing our Terms.

Legal bases (EEA/UK/Switzerland): contract performance, legitimate interests (e.g., security, improvement), legal obligation, and consent where required (e.g., marketing, precise location).

4) How We Share Information

We do not sell personal information for money. We share information with:

  • Providers to fulfill your booking (limited to what they need to perform services).

  • Service processors (hosting, payments, SMS/email, analytics, customer support, maps/routing, cloud storage) under contracts restricting their use of data.

  • Business operations (auditors, advisors, insurers) as needed.

  • Legal & safety (law enforcement, regulators) when required by law or to protect rights, safety, and property.

  • Corporate transactions (merger, financing, acquisition) where your information may transfer subject to this Policy.

Cross-context behavioral advertising (US): We may share pseudonymous identifiers with ad partners for measurement/ads. California residents can opt out of “sharing” (see Your Rights).

5) Cookies, Analytics, & Ads

We use cookies, pixels, SDKs, and similar tech to:

  • keep you signed in, remember preferences;

  • understand site/app performance;

  • measure campaigns and, where permitted, deliver/limit ads.

Choices: Use your browser/app settings to manage cookies; some features may not work without them. You can opt out of certain third-party ad cookies via platform tools (e.g., Google/Meta settings) and, in California, via our “Do Not Sell/Share My Personal Information” link.

6) Retention

We keep personal information only as long as needed for the purposes above, including:

  • account records & transaction data: typically 7 years (tax/accounting);

  • service media (before/after photos): typically 2 years or as needed for quality/dispute resolution;

  • marketing preferences & consent logs: while active + 3 years;

  • if you close your account, we retain only what is required for legal obligations or legitimate interests (e.g., fraud prevention).

7) Security

We use administrative, technical, and physical safeguards appropriate to the nature of the data (encryption in transit, access controls, least-privilege, employee training). No method is 100% secure; please use strong passwords and keep credentials confidential.

8) Children’s Privacy

Our Services are not directed to children under 13, and we do not knowingly collect their data. If we learn we collected information from a child under 13 (or under the applicable age of consent), we will delete it.

9) Your Privacy Choices & Rights

All users

  • Marketing opt-out: click “unsubscribe” in emails; reply STOP to SMS; manage push in device settings.

  • Location: disable device/location permissions to stop precise geolocation collection.

  • Cookies: manage in browser/app; see Cookies section.

California (CPRA/CCPA)

  • Right to know/access categories and specific pieces of personal information we collected.

  • Right to delete personal information (subject to legal exceptions).

  • Right to correct inaccurate information.

  • Right to opt out of “selling” or “sharing” personal information for cross-context behavioral advertising. Use the “Do Not Sell/Share My Personal Information” link or email us.

  • Right to limit use of sensitive information (we only use any “sensitive” data—e.g., precise location—for the service you request).

  • Non-discrimination: we won’t discriminate for exercising your rights.

Notice of Financial Incentive (if applicable): If we offer loyalty, referrals, or discounts in exchange for personal information, we will describe the program’s material terms, the value calculation method, and how to opt in/out at any time without penalty.

EEA/UK/Switzerland (GDPR)

  • Access, rectification, deletion, restriction, portability, and objection to processing based on legitimate interests or direct marketing.

  • Withdraw consent at any time where processing relies on consent.

  • Lodge a complaint with your supervisory authority.

How to exercise rights: Email [privacy@carlux.com] or use in-product controls. We will verify your request (and, in California, may require an authorized agent form).

10) International Data Transfers

We may transfer personal information to the United States and other countries with different data protection laws. Where required, we use appropriate safeguards (e.g., Standard Contractual Clauses).

11) SMS, Calls & Recording

By providing a mobile number, you consent to receive transactional texts/calls about your bookings and account. Message/data rates may apply. You may opt out of marketing texts at any time by replying STOP. For quality/safety, technicians or support may capture before/after photos or record calls where permitted by law and disclosed at the time.

12) Third-Party Links & Services

Our Services may link to third-party sites, apps, or services. Their privacy practices are governed by their own policies; please review them.

13) Changes to This Policy

We may update this Policy periodically. The “Last updated” date reflects the latest version. Material changes will be posted on the Services, and your continued use constitutes acceptance.

14) State-Specific Disclosures (US)

Residents of California, Virginia, Colorado, Connecticut, Utah, and other states with privacy laws may have additional rights similar to those described above. Contact us to exercise these rights or visit our state-specific notices if available.

15) Contact Us

Questions or requests?
Email: [privacy@carlux.com]
Mail: [CARLUX, LLC, Address]
Phone: [Support Number]