Data Protection

Last updated: April 2026

Our commitment

Unlocs, Inc. ("Unlocs") is committed to protecting the privacy and security of personal data. We are a Michigan corporation with registered office at 12906 E. Washington, Reese, MI 48757, United States, and we comply with applicable US federal and state privacy laws. Where we process data of individuals in the European Economic Area (EEA), the United Kingdom, or Switzerland, we comply with the General Data Protection Regulation (GDPR) and equivalent frameworks. For personal data of Canadian residents, we comply with the Personal Information Protection and Electronic Documents Act (PIPEDA).

How we process data

As a platform provider, Unlocs processes data on two levels:

  • Website visitors: We collect limited data through this website (contact form submissions and analytics). See our Privacy Policy for details.
  • Platform data: When fleet operators use the Unlocs platform, we process data on their behalf as a data processor. This is governed by a separate Data Processing Agreement (DPA) between Unlocs and the fleet operator.

Data Processing Agreement (DPA)

Fleet operators who use the Unlocs platform can request a Data Processing Agreement that covers:

  • Categories of data processed and data subjects
  • Purpose, nature, and duration of processing
  • Technical and organizational security measures
  • Sub-processor disclosures and approval process
  • Data subject rights procedures
  • Data breach notification procedures
  • International data transfer safeguards
  • Audit and assistance obligations

To request a DPA, contact us at info@unlocs.com.

Sub-processors

We use the following third-party services that may process personal data in connection with the Site or platform:

  • Google (Firebase / Google Cloud): Website hosting and cloud infrastructure
  • Google Analytics: Website usage analytics
  • Resend: Transactional email delivery

An up-to-date list of platform sub-processors is provided to fleet operators under the DPA.

Security measures

We implement appropriate technical and organizational measures to protect personal data, including:

  • Encryption in transit (TLS/HTTPS) and at rest where applicable
  • Access controls, authentication, and principle of least privilege
  • Regular security reviews and dependency updates
  • Logging and monitoring of access to sensitive systems
  • Incident response procedures

Your rights

Depending on your location, you may have the right to access, correct, delete, or port your personal data, or to opt out of certain processing activities. If you are in the EEA, UK, or Switzerland, you have rights under GDPR including access, rectification, erasure, restriction of processing, objection, and data portability. If you are in Canada, you have rights under PIPEDA including access to personal information we hold about you, correction of inaccurate information, and withdrawal of consent (subject to legal or contractual restrictions).

For any data protection inquiry, contact: info@unlocs.com.

International data transfers

Unlocs is based in the United States. If you are located outside the US, your data may be transferred to and processed in the United States. Where required, we rely on appropriate safeguards — such as the EU Standard Contractual Clauses — to ensure your data is protected in accordance with applicable laws.

Complaints

If you are in the EEA, UK, or Switzerland and believe your data protection rights have been violated, you have the right to lodge a complaint with your local supervisory authority. Canadian residents may lodge a complaint with the Office of the Privacy Commissioner of Canada (priv.gc.ca). US residents may contact us directly at info@unlocs.com with any concerns, and we will work with you in good faith to resolve them.