Security & Compliance
Your data protection is our top priority. Here's how we keep your information safe.
Encryption
All data is encrypted in transit (TLS 1.3) and at rest (AES-256). Your location and trip data is never exposed in plain text.
Access Controls
Role-based access control ensures only authorized personnel can access data. Multi-factor authentication is available for all accounts.
Regular Audits
We conduct regular security assessments and penetration testing to identify and address potential vulnerabilities.
Secure Infrastructure
Hosted on enterprise-grade cloud infrastructure with redundancy, automated backups, and disaster recovery.
Privacy by Design
We collect only the data needed to provide our services. Personal trips are never shared with employers on enterprise plans.
Compliance
GDPR, CCPA, and SOC 2 compliant. We meet the highest standards for data protection and privacy.
How We Handle Your Data
Location Data
GPS data is collected only during active trips and only when you have granted location permissions. You can revoke access at any time through your device settings.
Data Retention
We retain trip data for 7 years to support tax compliance requirements. You can request deletion of your data at any time, subject to legal retention obligations.
No Data Sales
We never sell, rent, or share your personal data with third parties for advertising or marketing purposes. Your data is yours.
Report a Vulnerability
Found a security issue? We appreciate responsible disclosure. Please report vulnerabilities to our security team.
security@odoalibi.ca