CRASH LENS ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our crash analysis platform and related services (collectively, the "Service").
Important Notice
By accessing or using CRASH LENS, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access or use our Service.
1. Information We Collect
1.1 Information You Provide Directly
We collect information that you voluntarily provide when using our Service:
- Account Information: Name, email address, organization name, and password when you create an account
- Profile Information: Job title, professional credentials, and contact preferences
- Payment Information: Billing address and payment method details (processed securely through third-party payment processors)
- Communication Data: Information you provide when contacting us for support or sales inquiries
- Resource Downloads: Name and email address when you download resources or lead magnets
1.2 Crash Data and Professional Information
When you use our crash analysis features, you may upload or input:
- Crash Reports: CSV, Excel, or other data files containing crash incident information
- Location Data: Geographic coordinates, road names, and intersection information
- Analysis Parameters: Filter criteria, date ranges, and analysis configurations
- Generated Reports: Safety studies, countermeasure recommendations, and HSIP applications
Important Data Notice
Crash data you upload may contain sensitive information about traffic incidents. You are responsible for ensuring you have proper authorization to upload and process this data in accordance with applicable laws and your organization's policies. We recommend redacting personally identifiable information (PII) from crash reports before uploading.
1.3 Automatically Collected Information
When you access our Service, we automatically collect:
- Device Information: Browser type, operating system, device identifiers, and screen resolution
- Usage Data: Pages visited, features used, time spent on the Service, and interaction patterns
- Log Data: IP address, access times, referring URLs, and error logs
- Cookies and Similar Technologies: Session identifiers, preferences, and authentication tokens
2. How We Use Your Information
We use the collected information for the following purposes:
2.1 Service Delivery
- Providing, maintaining, and improving the CRASH LENS platform
- Processing crash data and generating analysis reports
- Managing your account and subscription
- Providing customer support and responding to inquiries
2.2 Communication
- Sending transactional emails (account confirmations, password resets, download links)
- Providing service updates and important notifications
- Sending marketing communications (with your consent, which you may withdraw at any time)
- Delivering traffic safety tips and professional resources
2.3 Service Improvement
- Analyzing usage patterns to improve features and user experience
- Conducting research and development for new features
- Troubleshooting technical issues and ensuring security
- Generating aggregate statistics (which do not identify individual users)
2.4 Legal and Compliance
- Complying with applicable laws and regulations
- Enforcing our Terms of Service and other agreements
- Protecting our rights, privacy, safety, and property
- Responding to lawful requests from government authorities
3. Third-Party Services
We use the following third-party services to operate CRASH LENS:
| Service Provider |
Purpose |
Data Shared |
| Firebase (Google) |
Authentication and database services |
Account credentials, user data, application data |
| EmailJS |
Email delivery to users |
Email address, name, resource information |
| Formspree |
Form submission processing |
Email address, name, form responses |
| ArcGIS (Esri) |
Mapping and geographic data services |
Location queries, map interactions |
| Virginia Roads / TREDS |
Official crash data source |
Data queries (no personal information) |
Each third-party service provider has its own privacy policy governing their handling of your data. We encourage you to review these policies:
4. Data Storage and Security
4.1 Data Storage
Your data is stored using industry-standard cloud infrastructure:
- Account and application data is stored in Firebase (Google Cloud Platform)
- Uploaded crash data may be processed locally in your browser or stored temporarily for analysis
- All data is stored in the United States
4.2 Security Measures
We implement appropriate technical and organizational security measures, including:
- Encryption of data in transit using TLS/SSL protocols
- Secure authentication mechanisms including password hashing
- Regular security assessments and updates
- Access controls limiting data access to authorized personnel
- Monitoring systems to detect unauthorized access attempts
No Guarantee of Security
While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security of your data. You acknowledge that you provide personal information at your own risk.
5. Data Retention
We retain your information for as long as necessary to:
- Provide our Service to you
- Comply with legal obligations
- Resolve disputes and enforce our agreements
Specific retention periods:
- Account Data: Retained while your account is active and for 3 years after account closure
- Uploaded Crash Data: Retained according to your subscription plan settings; you may delete data at any time
- Usage Logs: Retained for 12 months
- Marketing Preferences: Retained until you unsubscribe or request deletion
6. Your Rights and Choices
6.1 Access and Portability
You have the right to:
- Access the personal information we hold about you
- Request a copy of your data in a portable format
- Download your uploaded crash data and generated reports
6.2 Correction and Deletion
You have the right to:
- Correct inaccurate or incomplete personal information
- Request deletion of your personal information (subject to legal retention requirements)
- Delete your account and associated data
6.3 Marketing and Communication Preferences
You may:
- Unsubscribe from marketing emails using the link in each email
- Update your communication preferences in your account settings
- Opt out of non-essential communications
6.4 Cookies
You can control cookies through your browser settings. Note that disabling certain cookies may affect the functionality of our Service.
7. California Privacy Rights (CCPA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):
- Right to Know: You may request information about the categories and specific pieces of personal information we have collected about you
- Right to Delete: You may request deletion of your personal information
- Right to Opt-Out: You have the right to opt out of the "sale" of personal information (we do not sell personal information)
- Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights
To exercise these rights, please contact us at the address below.
8. European Privacy Rights (GDPR)
If you are in the European Economic Area (EEA), United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR):
- Legal Basis: We process your data based on consent, contractual necessity, legitimate interests, or legal obligations
- Right to Object: You may object to processing based on legitimate interests
- Right to Restrict: You may request restriction of processing in certain circumstances
- Right to Complaint: You have the right to lodge a complaint with your local data protection authority
- Data Transfers: When we transfer data outside the EEA, we use appropriate safeguards (Standard Contractual Clauses)
9. Children's Privacy
CRASH LENS is not intended for use by individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child under 18, we will take steps to delete that information promptly.
10. Do Not Track
Some browsers include a "Do Not Track" (DNT) feature. Our Service does not currently respond to DNT signals. However, you can control tracking through cookie settings and browser privacy features.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by:
- Posting the updated policy on this page with a new "Last Updated" date
- Sending an email notification to registered users (for significant changes)
- Displaying a prominent notice within the Service
Your continued use of the Service after any changes constitutes acceptance of the updated Privacy Policy.
12. Contact Us
If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact us:
13. Supplemental Terms for Government Users
If you are using CRASH LENS on behalf of a government agency:
- You represent that you have authority to bind the agency to these terms
- We may execute additional data processing agreements as required by your agency's procurement policies
- Public records laws may affect how your agency retains or discloses information
- We will cooperate with reasonable requests related to compliance with government data policies