How we collect, use, and protect your information when you use HazmatBOL and PlacardPro.
Account Information. When a fleet administrator registers a carrier account, we collect the company name, administrator email address, and billing information. Billing card data is tokenized by Square and never stored on our servers.
Driver Records. Fleet administrators provide driver names and mobile phone numbers when provisioning driver accounts. This information is stored in our database and associated with your carrier account.
Scan Records. When a driver scans a Bill of Lading, we store the extracted text fields (shipper name, UN numbers, hazard classes, etc.), the validation result, timestamp, and which driver performed the scan. We do not store the original photograph of the BOL.
Usage Data. We collect basic usage logs including API request timestamps, scan counts, and error events for system reliability and debugging purposes.
We do not use your information for advertising, marketing profiling, or any purpose beyond operating the HazmatBOL service.
BOL photographs are processed entirely on the driver's device using on-device OCR. The photo itself is never transmitted to or stored on our servers. Only the extracted text is sent to our API.
We do not collect:
Your data is stored in a PostgreSQL database hosted on Render's cloud infrastructure in the United States. All data transmission uses HTTPS/TLS encryption. Database access is restricted to authenticated application services only.
Driver authentication uses 6-digit one-time activation codes rather than passwords, reducing credential-related security risks. We do not store plaintext passwords — all passwords are hashed using bcrypt.
Payment card data is processed by Square and subject to Square's PCI DSS compliance standards. We never receive or store full card numbers.
We use the following third-party services to operate HazmatBOL. Each has its own privacy practices:
We do not sell, rent, or share your personal information with any third parties for their own commercial purposes.
Driver phone numbers are collected by fleet administrators and used solely to send SMS activation codes via Twilio. Drivers are informed by their employer before their number is entered into the system.
Driver phone numbers are never used for marketing, never shared with third parties beyond Twilio for message delivery, and are removed from our systems upon account termination.
Drivers may reply STOP to any SMS to opt out of further messages. See our SMS Terms for full details.
Scan records are retained for the duration of the carrier account's active subscription and for a reasonable period following account termination to support audit and dispute resolution needs.
Driver records are removed upon request or upon account termination. Billing records are retained as required by applicable law and Square's payment processing requirements.
Fleet administrators may request access to, correction of, or deletion of their account data by contacting us at support@placardpro.ai. We will respond to verified requests within 30 days.
Drivers wishing to have their records removed should contact their fleet administrator, or contact us directly and we will coordinate with the carrier account holder.
We may update this Privacy Policy from time to time. Material changes will be communicated to fleet administrators via email. The effective date at the top of this page will always reflect the most recent revision. Continued use of the service after changes take effect constitutes acceptance of the updated policy.
Questions about this Privacy Policy or your data:
Mile Marker Technologies
Oxford, Mississippi
support@placardpro.ai
placardpro.ai