InspctIQ

Privacy Policy

General

We take your privacy very seriously and we ask that you read this privacy policy carefully as it contains important information on:

  • the personal data we collect about you and why we collect it;
  • What we do with your information;
  • who your information might be shared with; and
  • your rights.

We are a data controller within the meaning of Article 4(7) of the EU General Data Protection Regulation (GDPR / DSGVO). We are responsible for, and control the processing of, your personal data in accordance with the GDPR and applicable German data protection laws, including the Telecommunications and Telemedia Data Protection Act (TTDSG).​

This policy sets out the basis on which any personal data and sensitive personal data (both as defined below) we collect from you, or that you provide to us, will be collected, used, stored, disclosed and otherwise processed by us.

Changes To Our Privacy Policy

We may change this Privacy Policy from time to time by updating this page and we will notify you by email to the email address registered to your account.

Personal Data

Any information from which a living individual can be identified. This will include information such as names, email addresses, photographs, and vehicle registration numbers. It will also include expressions of opinion and indications of intentions about data subjects (and their own expressions of opinion/intentions). It will also cover information which, on its own, does not identify someone but which would identify them if put together with other information which we have or are likely to have in the future.

Special Categories of Personal Data (or Sensitive Personal Data)

Any information relating to:

  • racial or ethnic origin;
  • political opinions;
  • religious beliefs or beliefs of a similar nature;
  • trade union membership;
  • physical or mental health or condition;
  • sexual life;
  • genetic data or biometric data for the purpose of uniquely identifying you; or
  • offences or alleged offences or information relating to any offences committed or allegedly committed
  • ​Processing

Virtually anything anyone can do with personal data, including:

  • obtaining, recording, retrieving, consulting or holding it;
  • organising, adapting or altering it;
  • disclosing, disseminating or otherwise making it available;
  • and aligning, blocking, erasing or destroying it

Data Subject

The person about whom the data is information Commissioner

The competent German data protection supervisory authority (Datenschutzbehörde) is responsible for monitoring and enforcing compliance with the GDPR. 

Information We May Collect From You

Registration Of An Account ​

To use our Application, you will need to register and open an account on our Website and/or our Platform and become a user (regardless of whether or not you are a business or a renter). When you open such aan ccount with us and apply to become a user, the personal data we collect from you is as follows:

  • name ;
  • email address;
  • vehicle registration;
  • Vehicle details
  • Rental Booking number
  • Photographs of your vehicle

Creating a condition report or damage log​

We do not collect any additional personal data in relation to a condition report or damage log.

IP Address

We use your IP address to help diagnose problems with our server, and to administer our Website.

Automatically Collected Data On Mobile Devices

When you install the Application, we may collect any or all of the following technical data:

  • Device Identifiers (the internet protocol address used to connect your device to the internet, your login information, browser type and version, regional settings, operating system and platform)
  • Data about your use of the Platform (anonymous user information, for example, open rates, user journeys). We use the information to compile analytical reports, which help us improve our Platform.)
  • Information stored on your device
  • Location information – we use GPS technology to determine your current location only where necessary for app functionality and only after you have explicitly granted permission. You may disable location access at any time via your device settings.​

Access to information stored on your mobile device (such as device identifiers, camera access and location data) is carried out in accordance with §25 TTDSG and, where required, based on your prior consent, which you may withdraw at any time via your device or application settings.

Monitoring And Recording Communications

We may monitor and record communications with you (such as telephone conversations and emails) for the purpose of quality assurance, training and compliance.

Marketing

We would like to provide you with information about our services and other information which we think you may find interesting. We may send you such information by post and email, provided you have given your consent when registering an account with us.

If you are a customer of ours or you have previously asked us for information on our products and services, we may send you information by email. However, in every marketing email message we send you, we will give you the opportunity to unsubscribe from our mailings altogether.

We do not provide your personal data to external organisations (i.e. outside of Damage Control) for their own marketing purposes without your explicit consent.

If at any time you do not want your information used for direct marketing purposes please contact us at hello@inspctiq.com.  If you decide that you no longer wish to receive marketing emails from us, please either follow the unsubscribe link in one of our marketing email messages or contact us at hello@inspctiq.com

Personal Data About Other Individuals

If you give us information on behalf of someone else, you confirm that the other person has appointed you to act on their behalf and has agreed that you can:

  • give consent on their behalf to the processing of their personal data in accordance with this Privacy Policy;
  • receive on their behalf any data protection notices;
  • And give consent to the transfer of their personal data abroad.

How We Use Your Information

The principal purposes for which we collect and store your personal information are as follows:

  • to process and assist with your account application and opening an account with us;
  • allow you to list a vehicle;
  • allow you to create a condition report for the vehicle;
  • respond to your enquiries;
  • improve our products and services;
  • and maintain your account with us.
  • We process personal data in accordance with Article 6 GDPR on the following legal bases:
  • Article 6(1)(b) GDPR – processing is necessary for the performance of a contract or to take steps at your request prior to entering into a contract (e.g. account registration, vehicle inspections, condition reports);
  • Article 6(1)(a) GDPR – where you have provided your consent (e.g. marketing communications, location data, analytics);
  • Article 6(1)(c) GDPR – where processing is necessary to comply with a legal obligation; and
  • Article 6(1)(f) GDPR – where processing is necessary for our legitimate interests, provided those interests are not overridden by your rights and freedoms.

Photographic Evidence Integrity

Photographs and condition reports generated via the platform are timestamped and stored securely in an encrypted format. Damage Control does not modify or alter user-generated photographic evidence.

How Long Will We Keep Your Data For?

Personal data will be retained for the duration of your user account and thereafter only for as long as necessary to comply with statutory retention obligations, resolve disputes, or enforce legal claims.

Who Do We Share Your Information With?

General

InspctIQ does not sell, trade, or rent your personal information to others. We will not share the personal information we collect from you through our services with third parties except as described in this Privacy Policy.

Enterprise Clients

Where Damage Control is used by an enterprise client (including, but not limited to, an employer, fleet manager, or leasing provider), that organisation may act as the data controller and determine how and why personal data is processed. In such cases, InspectIQ acts as a data processor on behalf of the enterprise client, in accordance with the terms of a separate Data Processing Agreement (DPA) entered into with that client. Users should refer to their employer’s or organisation’s privacy notice for further details about how their data is used in that context.

Other Members

InspctIQ enables two parties to inspect a vehicle and share the condition report and/or damage logs of the vehicle between themselves for mutual protection. If you agree to confirm the condition of a vehicle through the mobile application, InspctIQ  may provide your personal information to the other party in that transaction as reasonably necessary to facilitate the mutual agreement of the condition report. For example, InspctIQ may provide your name on the damage inspection report.

Other third parties

If InspctIQ offers or promotes services in conjunction with another company, and you request those services (or additional information about them), you consent to our sharing your personal information with those parties. In those cases, we will only share the information reasonably needed to provide you with the applicable service. We may also share personal information with third parties when you give us your consent to do so. Information that is shared with third parties as described in this paragraph is subject to the privacy policies of those parties, which may differ from this Privacy Policy. InspctIQ is not responsible for the acts or omissions of those third parties. We encourage you to become familiar with their practices before disclosing information directly to them.

InspctIQ may disclose personal information in the good faith belief that we are lawfully authorized or required to do so, or that doing so is reasonably necessary or appropriate to comply with the law or with legal process or authorities, respond to any claims, or to protect the rights, property or safety of InspctIQ, our users, our employees or the public. That includes actions we may take to protect InspctIQ or our users from fraudulent, abusive, inappropriate or unlawful use of our site or marketplace.

Information about our users, including personal information, may also be disclosed or transferred as part of, or during negotiations of, any merger, sale of company assets, financing or acquisition or in any other situation where personal information may be transferred as one of the business assets of Damage Control. You understand that when you use the application, information you post in your profile or in any other area of the application will be available to other users and in some cases may be publicly available.

International Data Transfers

Personal data may be processed or stored in the Germany, which is considered a third country under the GDPR. Transfers are safeguarded by an EU adequacy decision and, where applicable, additional contractual safeguards in accordance with Articles 44–46 GDPR

Security

We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect, including locked cabinets and electronic password protection.

If at any point you suspect or become aware of a security incident (i.e. your password is stolen or you receive suspicious communication from someone holding themselves out to be a InspctIQ employee or from a dupe website claiming to be affiliated with InspctIQ), please forward the communication to us or report the incident by email to hello@inspctIQ.com

While we will use all reasonable efforts to safeguard your personal data, you acknowledge that the use of the internet is not entirely secure and for this reason we cannot guarantee the security or integrity of any personal data that are transferred from you or to you via the internet. If you have any particular concerns about your information, please contact us (see ‘How to contact us’ below).

What Rights Do You Have?

As a data subject, you have the following rights under the EU General Data Protection Regulation (GDPR / DSGVO):​

  • the right of access to personal data relating to you;
  • the right to correct any mistakes in your information;
  • the right to ask us to stop contacting you with direct marketing as specified above;
  • the right to restrict your personal data being processed;
  • the right to have your personal data ported to another data controller (e.g. if you decide to contract with a different supplier) where we are processing your personal data on the basis of it being necessary for the performance of a contract between us;
  • the right to object to your personal data being processed where we are processing your personal data on the basis of it being in our legitimate interests or for direct marketing;
  • the right to erasure;
  • compensation for damage caused by contravention of the Data Protection Laws; and

These rights are explained in more detail below, but if you have any comments, concerns or complaints about our use of your personal data, please contact us (see ‘How to contact us’ below). We will respond to any rights that you exercise within a month of receiving your request, unless the request is particularly complex, in which case we will respond within three months.

Right To Access Personal Data Relating To You

You may ask to see what personal data we hold about you and be provided with:

  • a copy;
  • details of the purpose for which it is being or is to be processed;
  • details of the recipients or classes of recipients to whom it is or may be disclosed, including if they are overseas and what protections are used for those oversea transfers;
  • the period for which it is held (or the criteria we use to determine how long it is held); and
  • any information available about the source of that data.

Requests for your personal data must be made to us in writing (see ‘How to contact us’ above), and a copy will be retained on your personnel file. To help us find the information easily, please give us as much information as possible about the type of information you would like to see.

If, to comply with your request, we would have to disclose information relating to or identifying another person, we may need to obtain the consent of that person if possible. If we cannot obtain consent, we may need to withhold that information or edit the data to remove the identity of that person if possible.

There are certain types of data which we are not obliged to disclose to you, which include personal data which records our intentions in relation to any negotiations with you where disclosure would be likely to prejudice those negotiations.

Right To Correct Any Mistakes In Your Information

You can require us to correct any mistakes in your information which we hold free of charge. If you would like to do this, please:

  • email, or write to us (see ‘How can you contact us’ below);
  • let us have enough information to identify you (e.g. account number, user name, registration details); and
  • let us know the information that is incorrect and what it should be replaced with.

Right To Prevent Processing Of Personal Data

From 25 May 2018 and in accordance with the General Data Protection Regulations 2018, you may request that we stop processing your personal data temporarily if:

  • you do not think that your data is accurate (but we will start processing again once we have checked and confirmed that it is accurate);
  • the processing is unlawful but you do not want us to erasure your data;
  • we no longer needs the personal data for our processing, but you need the data to establish, exercise or defend legal claims; or
  • you have objected to processing because you believe that your interests should override our legitimate interests.

Right To Erasure

From 25 May 2018 and in accordance with the General Data Protection Regulations 2018, you can ask us to erase your personal data where:

  • you do not believe that we need your data in order to process it for the purposes set out in this Privacy Policy;
  • you object to our processing and we do not have any legitimate interests that mean we can continue to process your data; or
  • your data has been processed unlawfully or have not been erased when it should have been.
  • There may be exemptions which mean we may continue to process your data.

Data Portability

Where we are processing your personal data based on being necessary to take steps at your request before entering into a contract, then from 25 May 2018 and in accordance with the General Data Protection Regulations 2018, you may ask for an electronic copy of your personal data provided to us and which we hold electronically, or for us to provide this directly to another party.

Correct/update

If you would like to update your contact information, please use your Account Page. If you have any trouble using the Account Page, please contact Damage Control customer service at hello@inspctiq.com

How To Contact Us

InspctIQ welcomes your questions and comments about privacy and what we do. Please feel free to e-mail us at hello@inspctiq.com

Complaints To The Information Commissioner

If you are not satisfied, you have the right to complain to your local German data protection supervisory authority (Datenschutzbehörde).