PRIVACY POLICY (GLBA/FCRA-Aligned)

Effective Date: 12/10/2024 Last Updated: 10/10/2025
Address: 162 W 9240 S, Sandy, UT 84070
Phone: (801) 683-0017 Email: Finance@tdauto1.com

1) Purpose

This Privacy Policy explains how we collect, use, disclose, and protect information from visitors, applicants, and customers, consistent with the Gramm-Leach-Bliley Act (GLBA), FTC Safeguards Rule, FCRA, and Utah law.

2) Categories of Information We Collect

• Identifiers: Name, postal address, email, phone, date of birth, driver’s license, SSN/ITIN.
  
  
• Financial/Credit: Employment, income, banking/payment details, references, credit history, insurance info.
  
  
• Transaction/Vehicle: VIN, mileage, service/repair and payment history, payoff, title/lien data.
  
  
• Internet/Device: IP address, device/browser type, pages viewed, cookies, analytics, reCAPTCHA signals.
  
  
• Communications: Calls, voicemails, texts, and emails (content and metadata) for servicing, compliance, and training.
  
  

3) Sources of Information

• Directly from you (online forms, in-store, phone/text/email).
  
  
• From credit bureaus, employers, references, insurers, and service providers.
  
  
• Automatically from your device via cookies/analytics.
  
  

4) How We Use Information

• To verify identity and process credit applications;
  
  
• Underwrite loans and structure payment terms;
  
  
• Service accounts, process/collect payments, and manage repossessions;
  
  
• Report to credit bureaus and respond to disputes;
  
  
• Prevent fraud, comply with KYC/OFAC checks, audits, and legal obligations;
  
  
• Communicate about applications, accounts, and promotions (with opt-out options).
  
  

5) Sharing & Disclosures

We do not sell personal information. We may disclose to:

• Credit Bureaus (Experian/Equifax/TransUnion) and fraud-prevention agencies;
  
  
• Insurers/Lienholders, payment processors, and banking partners;
  
  
• Service Providers (IT/cloud, mailing, document/PDF tools, analytics, e-signature) bound by confidentiality;
  
  
• Collections counsel/Agencies in default situations;
  
  
• Government/Regulators as required by law, subpoena, or court order;
  
  
• Business Transfers (e.g., sale/assignment of contracts) with appropriate safeguards.
  
  

6) Your Choices & Rights

• Access/Copy: Request a copy of your data we maintain.
  
  
• Correction: Request updates to inaccurate or incomplete information.
  
  
• Deletion: Request deletion of non-mandatory records (where legally permissible).
  
  
• Marketing Opt-Out: Unsubscribe from promotional emails, reply STOP to SMS, or email Finance@tdauto1.com.
  
  
• Adverse Action/Disputes: If you receive an adverse action, you’ll get reasons and bureau contact info; you may dispute inaccuracies with the bureau(s) and with us.
  
  

7) Data Security (Safeguards Program)

We maintain a written Information Security Program that includes:

• Encryption in transit (SSL/TLS) and at rest (where applicable);
  
  
• Access controls, least-privilege, and MFA for admin systems;
  
  
• Firewalls, endpoint protection, and vendor due diligence;
  
  
• Employee training and background checks appropriate to roles;
  
  
• Incident Response Plan (see §9).
  
  

8) Data Retention

We retain application, account, and transaction records for periods required by law (often 7+ years after account closure) or longer if needed for tax, audit, litigation, or fraud prevention, then securely destroy them.

9) Data Breach / Incident Response

If we discover unauthorized access or acquisition of personal information, we will investigate, contain, and remediate. Where legally required, we will notify affected individuals and regulators, describing steps taken and recommended protective measures (e.g., credit monitoring guidance).

10) Cookies, Analytics & Do-Not-Track

We use cookies and similar technologies for functionality, fraud mitigation (e.g., reCAPTCHA), and analytics (e.g., page performance). You can control cookies via browser settings; some site features may not function without them. We currently do not respond to browser “Do-Not-Track” signals.

11) Third-Party Links & Embedded Tools

Our site may link to or embed third-party services (e.g., payment portals, PDF tools, map widgets). Their data practices are governed by their own policies. Review those policies before submitting information.

12) Children’s Privacy

Our services are not directed to individuals under 18. We do not knowingly collect data from minors; if learned, we will delete it.

13) Geographic Scope

We primarily serve customers in the United States. If you access from outside the U.S., your data may be processed and stored in the U.S., subject to U.S. laws.

14) How to Exercise Your Rights

Email Finance@tdauto1.com or mail a written request to our address. We may require identity verification (e.g., photo ID, known-only data points). We respond within applicable legal timelines.

15) Policy Updates

We may amend this Policy from time to time. The “Last Updated” date reflects the latest revision. Material changes will be highlighted on our site.

16) Contact

Tint & Detail Shop LLC, dba T&D Automotive
162 W 9240 S, Sandy, UT 84070
(801) 683-0017 • Finance@tdauto1.com