We at PlaxidityX Ltd. (“PlaxidityX”, “we”, “our” or “us”) offer automotive cyber security solutions for protecting vehicles worldwide. We put great efforts into communicating our privacy practices and ensuring the information we process is safe and properly used.
This privacy policy (“Policy”) describes how we collect, use, store and disclose information that relates to identified or identifiable individuals (“Personal Data” and “Data Subjects”, respectively) who:
Specifically, this Policy describes our practices regarding:
Please read this Policy carefully and make sure that you fully understand it.
You are not legally required to provide us with any Personal Data, but without it, we may not be able to provide you with the full range of our Services or with the best user experience when interacting with our Sites. If you do not wish to provide us with your Personal Data or to have it processed by us or by our Service Providers (defined in Section 5 below), please avoid any further interaction with us or use of our Services.
We collect and generate about you the following types of Personal Data:
We use your Personal Data as necessary for the following purposes and in reliance on the lawful bases detailed in the chart below:
If you reside or are using the Services in a territory governed by privacy laws under which “consent” is the only or most appropriate legal basis for the processing of personal data as described herein, to the maximum extent permitted by law, your acceptance of this Policy will be deemed as your consent to the processing of your personal data for all purposes detailed in this Policy.
We and our authorized Service Providers (defined in Section 5 below) maintain, store and process Personal Data in Israel, the European Union (e.g., Germany), Japan, South Korea, the United States of America, and other locations as reasonably necessary for the proper performance and delivery of our Services, or as may be required by applicable law.
While privacy laws may vary between jurisdictions, PlaxidityX, its affiliates, and Service Providers engaged in processing hereunder are each committed to protecting Personal Data in accordance with this Policy, customary industry standards, and such appropriate lawful mechanisms and contractual terms requiring adequate data protection – regardless of any lesser legal requirements that may apply in the jurisdiction to which such data is transferred. To the extent we transfer personal data originating from the European Economic Area (EEA), the United Kingdom (UK), Switzerland, or Japan to countries that have not been recognized as offering an adequate level of data protection by the relevant competent authority, we rely on appropriate data transfer mechanisms as established under applicable law, such as the standard contractual clauses adopted by the EU (available here) and the UK (available here).
We will retain your Personal Data for as long as it is reasonably necessary in order to maintain our relationship and provide you with our Services and offerings; in order to comply with our legal and contractual obligations; to pursue our legitimate business purposes; or to protect ourselves from any potential disputes (i.e., as required by laws applicable to log-keeping, records and bookkeeping, and in order to have proof and evidence concerning our relationship, should any legal issues arise following your discontinuance of use), all in accordance with our data retention policy.
Please note that except as required by applicable law or our specific agreements with you or the relevant Customer, we will not be obligated to retain your Personal Data for any particular period, and we are free to securely delete it or restrict access to it for any reason and at any time, with or without notice to you. If you have any questions about our data retention policy, please contact us by e-mail at [email protected].
We may share your data with certain third parties, including law enforcement agencies, our Service Providers and our affiliates, in accordance with this Policy and as described below:
For the avoidance of doubt, PlaxidityX may share your Personal Data in additional manners, pursuant to your explicit consent, or if we are legally obligated to do so.
Cookies: Our Sites (including some of our Service Providers) utilize “cookies”, anonymous identifiers, pixels, container tags, and other technologies in order for us to provide our Services and ensure that they perform properly, to analyse our performance and marketing activities, and to personalize your experience. Such cookies and similar files or tags may also be temporarily placed on your device. Certain cookies and other technologies serve to recall Personal Data, such as an IP address, previously indicated by a Visitor. To learn more about our practices concerning cookies and tracking, please see our Cookies Policy.
Google Analytics: we use Google Analytics to collect information about the use of our Sites. Google Analytics collects information such as how often you visit the Sites, which pages you visited when doing so, and which other sites you used prior to coming to our Sites. We do not merge the information collected through the use of Google Analytics with personally identifiable information. Google’s ability to use and share information collected by Google Analytics about your visits to and use of the Sites is restricted by the Google Analytics Terms of Service and the Google Privacy Policy. You can learn more about how Google collects and processes data specifically in connection with Google Analytics here. Further information about your option to opt out of these analytics services is available here.
We reserve the right to remove or add new analytic tools.
Service Communications: We will contact you from time to time with important information regarding our Services. For example, we may send notifications (through any of the means available to us) of changes or updates to our Services, billing issues, service changes, etc. Please note that you will not be able to opt out of receiving certain service communications which are integral to your use (like billing notices) of the Services.
Promotional Communications: We will send you additional offerings, events, and special opportunities, or any other information we think you will find valuable. Generally speaking, we provide such communications through any of the contact means available to us (e.g., phone, mobile, or e-mail), or through our marketing campaigns on any other sites. If you do not wish to receive such promotional communications, you may notify PlaxidityX at any time by sending an e-mail to contact@plaxidityxcom, or by following the “unsubscribe”, or “manage preferences” instructions contained in the promotional communications you receive.
We implement industry-standard physical, procedural, and electronic security measures to secure your Personal Data held with us, as also demonstrated by our ISO 27001 certification, in order to minimize the risks of theft, damage, loss of information, or unauthorized access or use of information. However, please be aware that regardless of any security measures used, we cannot and do not guarantee that our Site will be immune from any wrongdoing, malfunctions, unlawful interceptions or access, or other kinds or abuse and misuse.
If you wish to exercise your privacy rights under any applicable laws, including the EU General Data Protection Regulation (GDPR), such as the right to be informed; the right to request access to, and rectification or erasure of, your Personal Data held with us; to restrict the processing of such data; to object at any time to processing of Personal Data concerning you (as detailed in Section 2 above); to withdraw at any time your consent to any processing of your data on the basis of such consent; or the right to equal services and prices (each to the extent available to you under the laws that apply to you) – you may do so by contacting us at [email protected].
Please note that once when you ask us to exercise any of your rights under this Policy or applicable law, we may require additional information and documents, including certain Personal Data, in order to authenticate and validate your identity as needed to process your request. Some request-related information (e.g., correspondences related to your request), may be retained by us for legal purposes (e.g., as proof of the identity of the person submitting the request), in accordance with Section 4 above.
Additionally, you have a right to lodge a complaint with a competent authority.
If you would like to make any requests or queries regarding your Personal Data that we process on our Customer’s behalf, please contact the Customer or Admin of such Customer’s account directly, as they would be the “Data Controller” of such data (see Section 10 below).
Certain data protection laws and regulations, such as the GDPR, typically distinguish between two main roles for parties processing Personal Data: the “Data Controller” who determines the purposes and means of processing; and the “Data Processor” (, who processes the data on behalf of the Data Controller. Below we explain how these roles apply to our PlaxidityX Services, to the extent that such laws and regulations apply.
PlaxidityX is the Data Controller of Personal Data relating to Visitors and Prospects, as well as Usage Data relating to our Customer’s Users and Admins, and Admin Data (as detailed in Section 1 above). With respect to such data, we assume the responsibilities of data controller (solely to the extent applicable under the law), as set forth in this Policy. In such instances, our Service Providers processing such data on our behalf will assume the role of Data Processors.
PlaxidityX is the Data Processor of the log-in details relating to Users or Admins, and of Personal Data relating to individuals whose vehicle data we may process on behalf of our Customer. Such Personal Data is processed on behalf of our Customer (who is the Data Controller of your Personal Data). If you are an individual and you have questions related to your Personal Data, please contact the Customer.
Updates and Amendments: We may update and amend this Policy from time to time by posting an amended version on our Sites. The amended version will be effective as of the date it is published. We will provide prior notice if we believe any substantial changes are involved via any of the communication means available to us. After such notice period, to the maximum extent permitted by law, all amendments shall be deemed accepted by you.
Our Services are Not Directed to Children: We do not knowingly collect Personal Data from children, nor do we wish to do so. If we learn that a person who is underage according to the law applicable to him or her is using the Services, we will make reasonable efforts to promptly delete any Personal Data stored with us with regard to such a child. If you believe that we might have any such Personal Data, please contact us by e-mail at [email protected].
Data Protection Officer: PlaxidityX has appointed Jacob Avidar as our Data Protection Officer (DPO), for monitoring and advising on PlaxidityX’s ongoing privacy compliance and serving as a point of contact on privacy matters for Data Subjects and supervisory authorities. If you have any comments or questions regarding this Policy, if you have any concerns regarding your privacy, or if you wish to make a complaint about how your Personal Data is being processed by PlaxidityX Cyber, you can contact our DPO at [email protected].
Questions, Concerns, or Complaints: If you have any comments or questions regarding this Policy, or if you have any concerns or complaints regarding your Personal Data held with us, please contact us at [email protected].