DOT IntelDOT Intel
Privacy

What we collect, what we don't, who we share with.

No lawyer bloat. This page tells you the truth about what happens to your data when you use DOT Intel.

Last updated: 2026-05-25

DOT Intel is operated by Seven16 Group. This policy covers dotintel.io, dotcarriers.io, and dotagencies.io. It does not cover FMCSA's public data sources (the underlying public records about motor carriers we surface) — that data is governed by the U.S. Department of Transportation, not us.

Data inventory

What we collect

Account. Email address and password (hashed). If you choose to add a profile, optionally your name, company, role, and phone number. Stored in Supabase Auth.

Activity inside the platform. Carriers you look up, prospecting filter selections, records you unlock, watchlists you save, history you review. Used to render your own dashboards and to enforce credit-pack metering.

Payments.Credit card data is processed by Stripe and never touches our servers. We retain Stripe's reference IDs + transaction metadata (amount, plan, date) for accounting + tax purposes.

Server logs. Standard request logs (IP, timestamp, URL, user agent) retained for security + debugging — typically 30–90 days at our hosting providers (Vercel + Supabase).

Anonymized analytics. Vercel Analytics and Speed Insights collect page-load + Core Web Vitals data. No cookies, no cross-site tracking; sampled at the edge.

Boundaries

What we DON'T collect

Third-party behavioral ad tracking.No Facebook Pixel, no Google Ads tag, no LinkedIn Insight, no retargeting pixels. We don't sell to ad networks.

Paid data-broker enrichment about you.We don't buy contact-enrichment APIs, lookup services, or DMV/VIN data about our users. The whole platform is built on free public FMCSA data plus what you self-report.

Phone-metadata. No commercial phone-validation services, no carrier lookup, no SIM-swap detection. If we ever add these, this page will say so first.

Your browsing outside our domains.Once you leave dotintel.io / dotcarriers.io / dotagencies.io, we don't follow you.

Subprocessors

Who we share with

We share the minimum data needed with three named subprocessors. No others.

  • Supabase — our database + auth provider. Stores your account record, hashed password, and all activity data. US-based; SOC 2 Type II.
  • Stripe— payment processor. Sees your card data (we don't); we see Stripe's reference IDs + transaction metadata.
  • Vercel — hosting + edge network + analytics. Serves the site and aggregates anonymized performance metrics.

We do not share, sell, rent, or trade your data with anyone else. Period. If law-enforcement compels disclosure with a valid legal process, we will comply, and we will tell you unless legally prohibited from doing so.

Retention

How long we keep it

Account + activity: as long as your account is active. If you close your account (see data deletion), we purge within 30 days.

Payment records:retained 7 years per US tax law (we can't purge these even on deletion request, but they only contain transaction metadata, not card data).

Server logs: 30–90 days at Vercel/Supabase, then rolled off automatically.

Aggregated analytics: anonymized at collection time and retained indefinitely as part of trend analysis.

Access + control

Your rights

Export. Email privacy@dotintel.io and we'll send you everything we have on you within 30 days.

Correct. Most account fields are editable in /account/profile. For anything else, email privacy@dotintel.io.

Delete. See /data-deletion for the process.

California (CCPA) and EU (GDPR) residents have additional rights. We honor all of them globally — meaning every user gets the same protections regardless of where you live.

What's stored locally

Cookies

We use the minimum cookies needed to run the app:

  • Auth session cookie — set by Supabase when you log in. HttpOnly, Secure, SameSite=Lax. Expires when you log out or after 30 days of inactivity.
  • Theme preference — remembers if you toggled light/dark mode. localStorage, not a cookie. Stripping it has no effect on functionality.

We do not use third-party tracking cookies. Vercel Analytics is cookie-free by design.

Age limit

Children

DOT Intel is built for insurance and transportation professionals. It's not for children. We do not knowingly collect data from anyone under 18. If you believe a minor has created an account, email privacy@dotintel.io and we'll delete it.

Versioning

Changes to this policy

If we materially change this policy, we'll update the "Last updated" date at the top and email everyone with an active account at least 14 days before the change takes effect. You'll always have the option to close your account before changes apply.

Get in touch

Contact

Questions or requests: privacy@dotintel.io

Postal: Seven16 Group, c/o DOT Intel Privacy. Email us for the current mailing address — we'd rather not put a home office address on a public web page.

Cross-references: Terms of Service · Delete my data

Questions about your data?

Email privacy@dotintel.io and a human will respond within 5 business days.