Last updated: April 2026
AutoDiag is an Australian SaaS product for independent automotive workshops. We are committed to protecting your personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).
Account data: Name, email address, workshop name, and billing details provided during signup.
Diagnostic data: Vehicle information (make, model, year, VIN), fault codes (DTCs), symptom descriptions, and AI diagnostic results created by your technicians.
Usage data: Log entries of actions taken within the platform for security and audit purposes.
OEM credentials: Portal usernames and passwords provided for optional credential vault storage. In the current server-vault flow, credentials are processed by AutoDiag before forwarding to the configured vault — see Section 4.
Application data is stored in the region defined by the production hosting configuration.
Billing data is processed by Stripe, a PCI-DSS compliant payment processor. We do not store credit card numbers.
OEM portal credentials are forwarded to the configured credential vault and stored as vault references in AutoDiag. Vault region and logging settings must be verified for each production deployment.
AI processing currently uses the Anthropic Claude API and may involve international routing or storage under Anthropic's commercial data terms. AutoDiag minimises and redacts personal data before provider processing.
When you save OEM portal credentials, AutoDiag forwards them to the configured vault and stores only a vault reference. AutoDiag does not log into OEM portals on your behalf. Browser-side envelope encryption is not yet enabled in this build.
We use your data to provide the AutoDiag diagnostic assistance service, send billing communications, and improve the platform. We do not sell your data to third parties. We do not use your diagnostic data to train AI models.
Account data is retained for the duration of your subscription plus a reasonable operational period. Tenant export, deletion, and retention automation must be confirmed in the production data terms before paid launch. Anonymised, aggregated usage statistics may be retained indefinitely.
Under the Privacy Act 1988 (Cth), you have the right to access, correct, or request deletion of your personal data. To exercise these rights, contact privacy@autodiag.com.au.
For privacy enquiries: privacy@autodiag.com.au