Privacy Policy

Last updated: May 1, 2026

TrafficPixel, Inc. ("TrafficPixel," "we," "us") provides a marketing-attribution and lead-management platform for automotive dealerships. This policy explains what information we collect, how we use it, and the choices available to you. If you have questions, write us at [email protected].

1. Who this policy covers

TrafficPixel is a business-to-business service. Our direct customers are car dealerships and dealer groups. This policy describes:

• Dealer users - the people at our customer dealerships who log into the TrafficPixel dashboard.
• Site visitors - people who visit a dealership's website where TrafficPixel's tracking script is installed. We process these visitors' data on behalf of the dealership.
• Callers - people who call a dealership through one of TrafficPixel's tracked phone numbers, including the AI Receptionist feature.
• Marketing prospects - visitors to our own website at trafficpixel.io.

2. Information we collect

From dealer users

• Account info: name, email, role, dealership affiliation.
• Authentication: hashed passwords, session tokens.
• Usage logs: pages viewed, features used, IP address, browser/OS, audit logs of changes you make in the dashboard.
• Billing info (handled by our payment processor; we store the last four digits and brand of the card only).

From site visitors (collected on behalf of the dealership)

• Pageviews, scroll depth, gallery interactions, payment-calculator inputs, and form-field engagement on the dealer's site.
• Referrer (where the visitor came from), UTM and click-ID parameters, search keywords supplied by the ad platform.
• IP address, approximate geolocation (city / region / country), device type, browser, operating system, screen size.
• A first-party cookie identifier we set on the dealer's domain (no cross-site tracking).
• Contact information you provide to the dealership through their forms - name, email, phone, vehicle of interest, message.

From callers

• Caller phone number, call duration, call recording (when the dealership has enabled recording and applicable consent rules permit it).
• For AI Receptionist calls: the audio of the conversation and an automated transcript, processed via our voice provider (Deepgram) and large-language-model provider (Anthropic) to route the call.

From advertising platforms

When the dealership authorizes us to connect their Google Ads, Microsoft Ads, or Meta (Facebook/Instagram) Business accounts, we read campaign-level reporting: campaign name, status, daily budget, spend, impressions, clicks, and conversion counts. We do not collect individual user identifiers from ad platforms. The Meta Marketing API integration uses a Business Manager System User token and accesses only ad accounts the dealership has shared with us through Meta's standard agency-partnership flow.

3. How we use information

• Provide the service. Show the dealership their visitor activity, leads, calls, and ad performance.
• Identity stitching. Connect a visitor's web sessions, form submissions, and phone calls into a single profile so the dealership sees the full journey to a lead.
• Bot and abuse detection. Identify automated traffic so the dealership's metrics aren't polluted.
• Send the lead. Forward inbound calls and form submissions to the dealership's CRM in the industry-standard ADF/XML format.
• AI features. Generate optional summaries of visitor activity, classify lead intent (sales / service / parts), and run the AI Receptionist.
• Improve the service. Aggregate, anonymized analytics about how dealerships use our platform.
• Legal and security. Comply with law, prevent abuse, secure our infrastructure.

4. Service providers we share with

We use the following service providers to operate TrafficPixel. Each receives only the data needed to perform its function:

• Cloudflare - content delivery and edge proxy.
• Twilio - phone number provisioning, call routing, SMS.
• Deepgram - speech-to-text transcription and voice synthesis for the AI Receptionist.
• Anthropic - the language model that powers the AI Receptionist and generates lead summaries. Anthropic does not retain TrafficPixel data for training.
• Meta Platforms, Google, Microsoft - for ad-platform reporting we ingest with the dealership's authorization.
• Vultr - primary hosting infrastructure.
• SendGrid - transactional email delivery.

We do not sell or rent personal information to third parties for advertising purposes.

5. Cookies and tracking

On a dealership's website, TrafficPixel sets a first-party cookie (tpx_cid) that identifies a visitor across sessions on that single dealership's domain. The cookie is scoped to the dealership's domain - it does not track visitors across other websites. The dealership is responsible for displaying any cookie banners or consent notices required in their jurisdiction.

On trafficpixel.io we use minimal first-party cookies for sign-in and basic analytics.

6. How long we keep data

• Visitor session and event data: 24 months by default; the dealership can request shorter retention.
• Call recordings: as configured by the dealership, default 12 months.
• AI Receptionist transcripts: 12 months.
• Lead and call records: retained for the life of the dealership's contract, then archived per their export request.
• Aggregate analytics (no personal identifiers): kept indefinitely.

7. Your rights

If you are a site visitor, caller, or lead whose information has been collected through one of our customer dealerships, the dealership is the data controller for your information. To request access, correction, or deletion of your data, you can:

• Contact the dealership directly, or
• Email us at [email protected] and we will route the request to the appropriate dealership and process it on their behalf.

California residents have rights under the CCPA / CPRA, and EU/UK residents have rights under GDPR. To exercise any of these (including the right to know, delete, correct, or opt out of sale), contact [email protected]. We will respond within 30 days.

8. Data deletion

To request deletion of personal data associated with your activity, email [email protected] with the subject "Data Deletion Request" and the dealership website where your activity occurred. We will process your request within 30 days and confirm completion in writing.

9. Children

TrafficPixel is not intended for children under 13 (or 16 in jurisdictions where that is the relevant age). We do not knowingly collect personal information from children. If you believe a child's data has been collected, contact us and we will delete it.

10. International transfers

TrafficPixel is operated in the United States. If you access the service from outside the U.S., your information will be transferred to and processed in the U.S. We rely on Standard Contractual Clauses for transfers from the EEA, UK, and Switzerland.

11. Security

We use TLS for data in transit, encryption at rest for backups, scoped database credentials, role-based access controls, and audit logging. No system is 100% secure; we work to maintain reasonable, industry-standard protections.

12. Changes to this policy

We will update this policy from time to time. The "Last updated" date at the top reflects the most recent change. Material changes will be communicated to dealer users through the dashboard.

13. Contact

TrafficPixel, Inc.
Privacy questions: [email protected]
General: [email protected]