Privacy Policy · BonBon

BonBon respects your privacy. This document describes the data we collect, how we use it, and your rights.

1. Data we collect

We collect: (a) account info (phone number, full name); (b) vehicle info (license plate, service history); (c) payment info (garage bank details — encrypted); (d) anonymized usage data (PostHog analytics).

2. How we use data

Data is used to: operate the service, remind you of maintenance/inspection, process payments, and improve experience. We do not sell data.

3. Data sharing

We share data only with: (a) the garage serving you; (b) infrastructure providers (hosting, analytics) under confidentiality agreements; (c) authorities when legally required.

4. Security

Sensitive info (garage bank details) is encrypted at rest with AES-256-GCM. Connections use HTTPS. Access is role-based.

5. Retention

Data is kept while you use the service. When you delete your account, personal data is removed within 7 days, except records required by law (invoices, transactions) which are kept per accounting statutes.

6. Your rights

You may: access, correct, delete data; withdraw consent; request data export. Email support to submit a request.

7. Children

BonBon is not intended for users under 16, and we do not knowingly collect data from children.

8. Policy changes

We may update this policy. New versions take effect when posted on this page.