Privacy Policy

What we collect

What you tell us:

• Your discovery answers: driving needs and habits, household context (for example, whether you have children and their ages, or pets), budget figures (such as target monthly payment and down payment), vehicle preferences, your ZIP code, and any free-text notes you choose to write.
• If you create an account: your email address. Sign-in — including Google sign-in — is handled by Google’s Firebase Authentication. We never see or store your password.
• If you send feedback: your message and, if you choose to include it, your email address.

What we collect automatically:

• Product analytics events (via Google Analytics 4) about how the site is used — pages viewed, steps completed, features used. These are tied to a random session ID stored in your browser for up to 30 days — not to your account or email.
• Signals used to enforce free-usage limits: characteristics of your browser and device (such as browser type, screen size, time zone, language, and hardware details) combined into a hashed identifier, plus a salted, hashed version of your IP address. We do not store your raw IP address.
• A basic service record we create on your first visit — a random user ID and session ID with timestamps — that lets your session work. It contains no answers or personal details unless you create an account or save results.
• Data your browser stores locally — see “Data stored in your browser.”

How we use your information

• To build your shortlist. Your discovery answers are sent to Google’s Gemini AI models, which generate your results. Only the first 3 digits of your ZIP code are ever sent to the AI — never your full ZIP.
• To ground results in current data. As part of generating your shortlist, Gemini may run Google Search queries derived from your answers, and your results may cite the sources used.
• To enforce fair free-usage limits (described below).
• To save your results. Generated results are cached for a working window of about 48 hours so reopening the same shortlist doesn’t cost you another use, and if you have an account, your profile and saved results are kept so you can come back to them.
• To respond when you contact us, and to improve the product using feedback and aggregate usage patterns.

We do not sell your personal information. We do not share it with advertisers or data brokers. We have no marketing email list, and we will not add you to one without your explicit opt-in.

Usage limits, device signals, and IP addresses

To keep the free tier available to everyone, we limit how many shortlists can be generated per day. To enforce this — including for visitors without accounts — we compute an identifier from your browser and device characteristics together with a salted, hashed version of your IP address. The raw IP address and raw device details are not stored; the hashed identifier is stored alongside usage counts that reset daily. If you have an account, limits are tracked against your account instead.

AI processing

Your discovery answers — including any free-text notes you write — are processed by Google’s Gemini models to generate your shortlist. Protections we apply:

• Only the first 3 digits of your ZIP code are sent.
• Free-text inputs are length-limited and sanitized before sending.
• Generated results, together with the answers that produced them, are cached on our servers for a working window of about 48 hours.

Google is our AI provider. We never sell or publish your answers.

Feedback

If you submit feedback through the app:

• It is stored in our database (Google Firestore).
• It is emailed to our team inbox (feedback@autosavant.ai) so a human actually reads it.
• We may use AI tools to help review and organize feedback for support and product improvement.
• If you include your email address, we store it only so we can reply to you. We will not use it for marketing without your explicit opt-in.

Who processes data on our behalf

• Google — our infrastructure and AI provider: Firebase Authentication (sign-in), Firestore (database), Cloud Run (hosting), Gemini models with Google Search grounding (shortlist generation), Google Analytics 4 (product analytics), and Gmail (internal delivery of feedback to our team inbox).
• Stripe — only if you purchase a paid feature when one is offered (see “Features we’re building”). We never see or store your card number.

That is the complete list today.

Analytics and your choices

We use Google Analytics 4 with IP anonymization enabled. Analytics events describe feature usage and are tied to a random session ID — not your email, name, or account. Analytics are on by default. If you prefer not to be counted, browser-level tools — content blockers or Google’s Analytics opt-out browser add-on — are effective against our setup.

Data stored in your browser

We use your browser’s local storage (not tracking cookies) for: your in-progress discovery session (expires after about 30 minutes of inactivity), a local copy of your recent results (working window of about 48 hours), your disclaimer acknowledgment, and small interface preferences. Google Analytics sets its own analytics cookies on this site; we set no other cookies ourselves.

How long we keep things

• In-progress discovery session: about 30 minutes of inactivity, in your browser.
• Generated-results cache: a working window of about 48 hours on our servers (expired entries are cleared when next accessed, so some may persist somewhat longer).
• Service records, accounts, profiles, saved results, and feedback: kept until you ask us to delete them.
• Usage-limit counters: reset on daily (and, for account tiers, monthly) windows; the hashed identifiers are retained with the counters.

Your rights and choices

You can ask us at any time to show you, export, or delete the data we hold about you — your account, profile, saved results, and feedback. Email privacy@autosavant.ai and we will take care of it. There is no self-serve deletion button yet; email is the real, working path today, and we honor requests from any user.

You can also clear your browser’s local storage at any time, and block analytics as described above.

Children

AutoSavant is a vehicle-shopping tool intended for adults. It is not directed at children, and we do not knowingly collect information from children. Household details — such as whether you have children and their ages — are provided by adult shoppers about their own households.

Security

Data moves over HTTPS and lives in Google Cloud services with access controls. Identifiers used for usage limits are hashed, and raw IP addresses are not stored. No system is perfectly secure, but we design for data minimization — for example, sending only partial ZIP codes to AI and keeping your email out of analytics.

Features we’re building (not active yet)

We are building a listing analyzer and a paid Buyer Pass. None of this is live today. When a feature ships, this policy’s date and version will be updated. If and when these features are active:

• If you submit a vehicle listing URL, VIN, or pasted listing text, we will process it to analyze that listing for you. Listing data would come from licensed data providers or public sources, with the source recorded; we would not keep raw copies of source pages.
• If you purchase a Buyer Pass, payment would be processed by Stripe — we never see or store your card number — and we would keep a record of your purchase keyed to your email address so your access works.

Changes to this policy

When this policy changes, we update the date and version at the top. Material changes will be called out on this page.

Contact

Privacy questions or requests: privacy@autosavant.ai

Product feedback: the feedback button anywhere in the app, or feedback@autosavant.ai