Privacy Policy

Last updated: January 2026

1. Data controller

The data controller responsible for your personal data is:

Asset Track Sp. z o.o.
ul. Marszalkowska 115/338
00-102 Warszawa, Poland

KRS: 0001072405
NIP: 5252982554
REGON: 527071236

Email: privacy@theassettrack.com

2. What data we collect

We collect and process the following categories of personal data:

2.1 Account data

  • Email address
  • Name (if provided)
  • Company name (if provided)
  • Wialon account credentials (encrypted tokens only)

2.2 Fleet telemetry data

  • GPS telemetry and position data from your Wialon account
  • Trip data (routes, distances, durations, speeds)
  • Fuel events (fill-ups, drains, consumption)
  • Geofence entry/exit events and zone metadata
  • Driver behavior scores and eco-driving metrics
  • Engine hours and maintenance alerts

2.3 Technical data

  • IP address
  • Browser type and version
  • Device information
  • Pages visited and features used

3. Legal basis for processing

We process your personal data based on:

  • Contract performance (Art. 6(1)(b) GDPR) — To provide FleetSQL services
  • Consent (Art. 6(1)(a) GDPR) — When you authorize Wialon data access
  • Legitimate interests (Art. 6(1)(f) GDPR) — For analytics, security, and service improvements
  • Legal obligation (Art. 6(1)(c) GDPR) — When required by law

4. How we use your data

We use your personal data to:

  • Extract and store fleet telemetry in your dedicated PostgreSQL database
  • Connect to your Wialon account securely via API tokens
  • Run daily data sync and historical backfill operations
  • Provide SQL access to your extracted fleet data
  • Process payments for subscription plans
  • Send service-related communications
  • Improve our platform and user experience
  • Ensure security and prevent abuse

5. Wialon integration

FleetSQL connects to your Wialon account to extract fleet telemetry data into your PostgreSQL database. Important points:

  • We use secure token-based authentication
  • We access trip, fuel, geofence, driver behavior, and unit data as configured by you
  • Your Wialon password is never stored by FleetSQL
  • You can revoke access at any time
  • FleetSQL is not affiliated with Wialon/Gurtam

6. Data sharing

We may share your data with:

  • Service providers — Hosting, analytics, payment processing (Paddle)
  • Wialon/Flespi — To retrieve your fleet data (as authorized by you)
  • Legal authorities — When required by law

We do not sell your personal data to third parties.

7. International transfers

Your data may be transferred outside the European Economic Area (EEA). When this occurs, we ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Transfers to countries with adequate data protection laws

8. Data retention

We retain your personal data for:

  • Account data — Duration of your account + 30 days
  • Extracted fleet data — Stored in your dedicated database for the duration of your subscription
  • Billing records — 5 years (legal requirement)
  • Analytics data — 26 months (anonymized)

9. Your rights

Under GDPR, you have the right to:

  • Access — Request a copy of your personal data
  • Rectification — Correct inaccurate or incomplete data
  • Erasure — Request deletion of your data ("right to be forgotten")
  • Restriction — Limit how we process your data
  • Portability — Receive your data in a machine-readable format
  • Objection — Object to processing based on legitimate interests
  • Withdraw consent — Withdraw consent at any time

To exercise these rights, contact us at privacy@theassettrack.com.

10. Cookies

FleetSQL uses cookies for:

  • Essential cookies — Authentication and session management
  • Preference cookies — Language and display settings
  • Analytics cookies — Privacy-focused usage analytics

You can control cookies through your browser settings.

11. Security

We implement appropriate technical and organizational measures to protect your data, including:

  • Encryption in transit (TLS/SSL) and at rest
  • Encrypted storage of authentication tokens
  • Database-per-tenant isolation for complete data separation
  • Access controls and authentication
  • Regular security assessments

12. Children's privacy

FleetSQL is a business service not intended for individuals under 18 years of age. We do not knowingly collect personal data from children.

13. Changes to this policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the new policy on this page and updating the "Last updated" date.

14. Complaints

If you believe your data protection rights have been violated, you have the right to lodge a complaint with the Polish Data Protection Authority:

Urząd Ochrony Danych Osobowych (UODO)
ul. Stawki 2
00-193 Warszawa, Poland
Website: uodo.gov.pl

15. Contact us

For any questions about this Privacy Policy or our data practices, please contact us: