Privacy Policy

Information We Collect

We collect information you provide directly when you create an account, purchase a license, or use Tuning Labs services.

• Account information: Name, email address, and password when you register for a Tuning Labs account.
• Billing information: Payment details (credit card, billing address) processed securely through our payment provider. Tuning Labs does not store full credit card numbers.
• Profile and tuning data: Vehicle information, hardware configurations, DSP settings, EQ profiles, RTA measurements, and notes you create within the platform.
• Usage data: Feature usage patterns, session duration, and error logs to help us improve the product.
• Device information: Browser type, operating system, and screen resolution for compatibility and support purposes.
• Affiliate information: If you join the affiliate program, we collect tax identification details (W-9) and payment information for commission payouts.

How We Use Your Information

We use the information we collect for the following purposes:

• Provide and maintain the service: Deliver tuning profiles, sync data across devices, process license validation, and enable offline workflows.
• Process transactions: Handle subscription billing, one-time purchases, profile token issuance, and affiliate commission payments.
• Improve the product: Analyze usage patterns to improve features, fix bugs, and develop new capabilities.
• Communicate with you: Send account-related notifications, license renewal reminders, and product updates. You can opt out of non-essential communications at any time.
• Support and troubleshooting: Diagnose technical issues and provide customer support.
• Security and fraud prevention: Protect against unauthorized access, detect abuse, and maintain the integrity of our licensing system.

Data Storage & Security

We take data security seriously and implement industry-standard measures to protect your information.

• All data is encrypted in transit using TLS/SSL.
• Sensitive data (including affiliate tax information) is encrypted at rest using AES-256-GCM encryption.
• Our database infrastructure is hosted on Supabase with PostgreSQL, using enterprise-grade security controls and regular backups.
• Access to production systems is restricted to authorized personnel only.
• We perform regular security reviews of our codebase and infrastructure.

Third-Party Services

Tuning Labs uses trusted third-party services to operate the platform. These services have their own privacy policies.

• Stripe: Payment processing for subscriptions and one-time purchases. Stripe handles all credit card data securely. Stripe Privacy Policy.
• Supabase: Database hosting and authentication infrastructure. Supabase Privacy Policy.
• Netlify: Website hosting and serverless function execution. Netlify Privacy Policy.
• Anthropic (Claude AI): AI-powered tuning recommendations. Tuning data sent to the AI is used only to generate recommendations and is not used to train models.

We do not sell your personal information to third parties. We only share data with the service providers listed above as necessary to deliver Tuning Labs services.

Cookies & Local Storage

Tuning Labs uses cookies and browser local storage to provide a functional experience.

• Essential cookies: Session authentication, license validation tokens, and security cookies required for the platform to function.
• Local storage: Tuning profiles, shop setup preferences, and offline data are stored in your browser's local storage to support offline workflows.
• Analytics: We may use minimal analytics to understand aggregate usage patterns. No personally identifiable information is shared with analytics providers.

We do not use advertising cookies or third-party tracking cookies. You can manage cookies through your browser settings, but disabling essential cookies may affect platform functionality.

Your Rights (GDPR & CCPA)

Depending on your location, you may have specific rights regarding your personal data.

For EU/EEA residents (GDPR)

• Right of access: Request a copy of the personal data we hold about you.
• Right to rectification: Request correction of inaccurate personal data.
• Right to erasure: Request deletion of your personal data ("right to be forgotten").
• Right to restrict processing: Request that we limit how we use your data.
• Right to data portability: Request your data in a structured, machine-readable format.
• Right to object: Object to processing of your data for certain purposes.

For California residents (CCPA)

• Right to know: Request disclosure of what personal information we collect, use, and share.
• Right to delete: Request deletion of your personal information.
• Right to opt out: Opt out of the sale of personal information. Note: Tuning Labs does not sell personal information.
• Right to non-discrimination: Exercise your privacy rights without receiving discriminatory treatment.

To exercise any of these rights, contact us using the information in the Contact section below.

Data Retention

We retain your data only as long as necessary to provide our services and fulfill the purposes described in this policy.

• Active accounts: Data is retained for the duration of your account and active license.
• Cancelled subscriptions: Tuning profiles and account data are retained for 12 months after cancellation to allow reactivation. After this period, data may be permanently deleted.
• Billing records: Transaction records are retained as required by applicable tax and financial regulations.
• Support logs: Support correspondence is retained for up to 24 months for quality and training purposes.

You may request early deletion of your data by contacting us. Some data may be retained as required by law.

Contact for Privacy

If you have questions about this privacy policy, want to exercise your data rights, or have a privacy concern, please contact us:

• Email: privacy@tuninglabs.net
• Contact page: tuninglabs.net/contact

We aim to respond to all privacy requests within 30 days.