Who we are
ShieldTag is a product of Kodetra Technologies (“ShieldTag,” “we,” “us”). ShieldTag makes a QR tag for your vehicle: when someone scans it, they can send you a message through a private relay without ever seeing your phone number. This policy explains what information we collect, how we use it, and the choices you have. It applies to shieldtag.app and the ShieldTag service generally.
Information we collect
We collect the following categories of information:
- Account information — the mobile phone number you verify by one-time passcode (OTP) when you claim a tag, and optionally your name and vehicle details (make, model, color).
- Visitor messages — the content of messages sent to you by someone who scans your tag, and any reply you send back through the relay.
- Scan events — when a tag is scanned, including coarse metadata such as timestamp and approximate location derived from IP address. We do not collect precise GPS location.
- Order & shipping details — if you buy a physical tag through shieldtag.app, we collect the shipping address and payment details needed to fulfill the order (payment is processed by our payment processor; we do not store full card numbers).
- Cookies & analytics — standard web analytics (page views, device type) to understand how the site is used and to keep it working correctly.
How we use your information
We use the information above to:
- Deliver the service: relay visitor messages to you and your replies back, anonymously in both directions.
- Send SMS verification codes when you claim or sign in to a tag, and tag-activity notifications (for example, “your tag was scanned”).
- Prevent fraud, abuse, and misuse of the relay (for example, spam or harassment sent through a tag).
- Fulfill and ship physical tag orders.
- Maintain, secure, and improve the service.
Text messaging (SMS)
No mobile information will be shared with third parties or affiliates for marketing or promotional purposes.
Text messaging originator opt-in data and consent will not be shared with any third parties, excluding aggregators and providers of the text message services.
Message frequency varies based on your account activity (for example, one code per sign-in, one alert per scan). Message and data rates may apply. Reply STOP to any ShieldTag text to opt out at any time, or reply HELP, or email support@kodetra.com, for help.
How we share information
We do not sell your personal information. We share information only with service providers who help us operate ShieldTag, under contracts that limit their use of it to providing that service:
- Our SMS carrier and messaging platform (Twilio), to deliver verification codes and notifications.
- Our hosting provider (AWS), to run the service and store data securely.
- Our payment processor, to process tag purchases once checkout is live.
Data retention
We keep account information for as long as your account is active, and visitor messages and scan events for as long as reasonably needed to provide the service and resolve disputes or abuse reports. When you delete your account, we delete or anonymize your personal information within a reasonable time, except where we must keep records to comply with law (for example, order/tax records).
Your privacy rights (CCPA/CPRA)
If you are a California resident, you have the right to:
- Access the personal information we hold about you.
- Delete your personal information. You can delete your own account directly from your dashboard’s Settings page at any time — no need to contact us.
- Correct inaccurate personal information.
- Know that we do not sell your personal information, and we will not do so in the future.
To exercise any of these rights, email support@kodetra.com. We will not discriminate against you for exercising these rights.
Security
We use reasonable administrative, technical, and physical safeguards to protect your information, including encryption in transit and access controls limiting who can view visitor messages and account data. No method of transmission or storage is 100% secure, so we cannot guarantee absolute security.
Children’s privacy
ShieldTag is not directed at children under 16, and we do not knowingly collect personal information from them. If you believe a child has provided us with personal information, contact us and we will delete it.
Changes to this policy
We may update this policy from time to time. If we make material changes, we will update the effective date above and, where appropriate, notify you directly (for example, by SMS or email).
Contact us
Questions about this policy or your data? Email support@kodetra.com. ShieldTag is operated by Kodetra Technologies (kodetra.com).