Privacy Policy

Last updated: March 26, 2026

What We Collect

When you use FixieScanner, we collect only what is necessary to provide diagnostic services:

• Account data: Email address (for magic link authentication). No passwords are stored.
• Vehicle data: VIN, DTCs, and sensor readings are transmitted to our API for analysis. These are associated with your account for scan history.
• Device data: A device fingerprint (hashed) is used for session security and fraud prevention. We do not collect IMEI, phone number, or contacts.
• Payment data: Handled entirely by Stripe. We never see or store card numbers.

What Stays on Your Device

Brand data packages downloaded for offline use are encrypted with AES-256 and stored only on your device. Scan recordings, saved reports, and live data logs stay local unless you explicitly share or export them.

Optional: Nearby Shops Feature

The in-app Shops Near You feature is off by default and requires your explicit in-app consent before any network request is made. If you turn it on, your device contacts three third-party services to find auto shops near you:

• ipapi.co — receives your IP address to estimate your approximate city.
• api.zippopotam.us — receives any 5-digit US ZIP you type in order to return coordinates for that area.
• overpass-api.de (OpenStreetMap) — receives approximate coordinates so it can return a list of nearby auto-repair and parts shops.

Location data shared with these services is coarse (city / ZIP-level, not precise GPS), is never associated with your Fixie account, is not retained by us, and is only sent while you are actively using the Shops screen. You can revoke consent at any time from Settings, which stops all three calls immediately. Declining does not affect any diagnostic feature of the app.

What We Do Not Do

• We do not sell your data to third parties.
• We do not serve ads or use tracking pixels.
• We do not share vehicle data with insurance companies, dealers, or data brokers.

Data Retention

Account data is retained while your account is active. Scan history is kept for 12 months, then automatically purged. You can delete your account and all associated data at any time via Settings.

Security

All data in transit is encrypted via TLS 1.3. Data at rest uses AES-256-GCM encryption. API requests are signed with HMAC-SHA256. Our infrastructure runs on Cloudflare Workers (see api/wrangler.toml) with HSTS preload, strict CSP, and per-route deployment guards.

Contact

Questions? Email [email protected].