Privacy Policy

Effective date: January 27, 2026.

This Privacy Policy describes how VMS.ai collects, uses, and shares information when you access or use the VMS.ai website, applications including Connected Care, and related services (the Services).

1. Scope; business customer context

The Services are designed for business and professional use. Your organization may control information processed in the Services. In that case, we process information on behalf of the customer as a service provider or processor, and customer instructions and agreements may apply. This policy describes information we control (such as account data, website interactions, and service analytics) and explains our general practices.

2. SMS Messaging

VMS operates the Connected Care platform on behalf of participating automotive dealerships. When you enroll in Connected Care through a dealership's enrollment page (e.g., cc.vms.ai/[dealer-name]), the dealership identified on that page is the business you are consenting to receive messages from. VMS sends these messages as a technology service provider acting on behalf of that dealership. Your opt-in consent applies only to the specific dealership identified at the time of enrollment and is not transferable to other dealerships or third parties.

If you opt in to receive text messages, we may send you transactional messages related to vehicle health, diagnostics, and service notifications. Your mobile number is used solely for delivering these messages on behalf of your enrolled dealership and is not shared with third parties for marketing or promotional purposes. Message frequency varies. Message and data rates may apply. You may opt out at any time by replying STOP.

3. Information we collect

We collect the following categories of information:
  • Account and profile data (name, email address, organization, role, login credentials).
  • Billing and transaction data (billing contact details, plan, payment status; payment details typically handled by payment processors).
  • Service usage and device data (IP address, device identifiers, browser type, operating system, log data, feature usage, performance metrics, crash logs).
  • Customer Content and configuration data provided by you or your organization.
  • Communications (support requests, emails, chat messages, feedback).

4. How we use information

We use information to:
  • provide, secure, and maintain the Services;
  • create and administer accounts; authenticate and authorize users;
  • process payments and manage subscriptions;
  • respond to support requests and communicate about the Services;
  • monitor and improve performance, reliability, and user experience;
  • prevent fraud, abuse, and security incidents;
  • comply with legal obligations and enforce our agreements.

5. De-identified and aggregated data

We may create de-identified and aggregated data from information we collect (including service analytics). We may use such data to improve and develop the Services, for benchmarking and business analytics, and for research and development. De-identified/aggregated data is not intended to identify you or any individual.

6. How we share information

We may share information with:
  • service providers that support the Services (hosting, security, analytics, customer support, payment processing);
  • your organization’s administrators and authorized users (as part of normal Service functionality);
  • third-party integrations you enable (at your direction);
  • law enforcement, regulators, or others when required by law or to protect rights, safety, and security;
  • successors in connection with a merger, acquisition, financing, or sale of assets.
  • We will never sell your information to third parties.

7. Cookies and similar technologies

We use cookies and similar technologies for authentication, security, preferences, and analytics. For details and choices, see our Cookies Policy.

8. Data retention

We retain information as long as reasonably necessary to provide the Services, comply with law, resolve disputes, and enforce agreements. Business customers may control retention of Customer Content under applicable agreements. We may retain de-identified and aggregated data for longer periods.

9. Security

We use administrative, technical, and physical safeguards designed to protect information. No security measures are perfect; you are responsible for using strong passwords and protecting credentials.

10. Rights and choices

Depending on where you live, you may have rights to access, correct, delete, or restrict certain information, and to opt out of certain communications. If your information is processed on behalf of a business customer, direct requests to that customer first.

11. International transfers

We may process information in the United States and other countries where we or our service providers operate. These jurisdictions may have different data protection laws than your jurisdiction.

12. Children

The Services are not directed to children under 13, and we do not knowingly collect personal information from children under 13.

13. Changes

We may update this Privacy Policy from time to time. The effective date above indicates the latest revision. Continued use after an update means you accept the updated policy.

14. Contact

Privacy questions: privacy@vms.ai or text HELP via SMS.

Powered by VMS Logo