Yes. CarBuddii is built from the ground up to comply with the strict data protection guidelines set by the EU General Data Protection Regulation (GDPR) and the Danish Data Protection Agency (Datatilsynet).

For automotive businesses, handling sensitive customer information—such as driver's licenses, contact details, and signed rental contracts—is a daily necessity. CarBuddii digitizes these manual workflows to ensure that all personal data is collected, stored, and managed securely and legally.

How CarBuddii Protects Customer Data

CarBuddii employs multiple layers of security to ensure data privacy:

• Encryption: All sensitive data in transit is protected using industry-standard encryption protocols.

• Data Minimization: The platform only collects the minimum amount of sensitive data necessary to provide its services (such as generating a test drive or rental agreement) and only stores it for as long as required.

• Explicit Consent: The app makes it easy to securely gather explicit consent from customers before their data is collected or used for marketing (e.g., "Follow-up Consents").

• Role-Based Access Control (RBAC): Dealerships can assign strict user roles (Admin, Normal, Light) to their staff. This ensures that employees only have access to the specific customer data they need to perform their jobs, minimizing the risk of internal data breaches.

Understanding Your Legal Role: Controller vs. Processor

When using CarBuddii, it is important to understand how the GDPR views the relationship between your dealership and the software.

• You are the Data Controller: Under GDPR, your dealership, garage, or rental business is the "Data Controller." This means you are ultimately legally responsible for the customer data you collect, and you decide why and how that data is processed.

• CarBuddii is the Data Processor: CarBuddii acts as your "Data Processor." They provide the secure digital infrastructure for you to store and manage this data, acting strictly on your behalf and in accordance with the Data Processor Agreement you accept when setting up your account.

Key GDPR Features for Daily Use

By using CarBuddii, you eliminate the risks associated with paper documents left on desks or physical copies of driver's licenses getting lost. The platform helps you stay compliant through:

• Secure Driver's License Scanning: Rather than making physical photocopies, staff can scan a customer's ID securely into the app to generate an agreement in under 20 seconds.

• Digital "Solemn Declarations": Customers sign declarations regarding reckless driving digitally, ensuring you have legally binding proof without managing physical paperwork.

• Centralized Data Deletion: Under GDPR, customers have the "right to be forgotten." CarBuddii’s digital ecosystem allows admins to quickly locate and delete a specific customer's data upon request, which is incredibly difficult to do with physical filing cabinets. You can read more on manual and automatic Deletions here. 

Important Note: As the Data Controller, it is still your dealership's responsibility to ensure that you are legally storing test-drive and rental documents for the appropriate retention periods mandated by local law or insurance policies. CarBuddii provides the secure vault, but your management team dictates the internal policies!