Privacy Policy
CA Fleet Management — Connect Auz Pty Ltd (ACN 52 616 631 577)
Last updated: May 2026
1 About this policy
Connect Auz Pty Ltd and its related entities ("Connect Auz", "CA Fleet", "we", "us", "our") are committed to protecting the privacy of individuals who use CA Fleet Management. We comply with Australia's Privacy Act 1988 (Cth), the EU/UK General Data Protection Regulation (GDPR), and the California Consumer Privacy Act 2018 (CCPA).
This Privacy Policy applies to your use of CA Fleet Management — including all related websites, mobile and desktop applications, APIs, telematics integrations, and associated support services (together, the "Services").
This policy does not apply to third-party websites or applications that integrate with the Services, or to Connect Auz employees, contractors, or job applicants, who are covered by a separate internal notice.
2 Who this policy applies to
This policy applies to all individuals whose personal information is processed through CA Fleet Management, including fleet managers, drivers, operators, administrators, and any other authorised users of the Services.
CA Fleet Management is intended for business use only. If the Services are provided to your employer, your employer controls your instance of the Services and many privacy rights may be more appropriately directed to your employer in the first instance. CA Fleet will advise you accordingly if you contact us.
3 Information we collect
CA Fleet Management collects the following types of personal information:
| Type | Examples |
|---|---|
| Identity & contact details | Name, job title, email address, phone number, postal address, profile photo |
| Account information | Username, password, user role, organisation details, account preferences |
| Driver information | Licence number, licence class and expiry, driving history, certifications, employment details |
| Vehicle information | Vehicle registration, make, model, VIN, asset ID, compliance and service records |
| Location & telematics data | GPS coordinates, real-time vehicle location, routes travelled, speed, idle time, trip history, geofence events |
| Operational data | Job assignments, delivery records, route logs, fuel usage, maintenance schedules and records |
| Compliance data | Fatigue management records, pre-start check results, incident reports, regulatory documentation |
| Usage & device information | IP address, browser type, operating system, device identifiers, login times, session data |
| Financial information | Billing details, transaction history, subscription information |
| Support information | Contact details, issue descriptions, documents, images, and recordings provided to our support team |
CA Fleet Management collects real-time location and telematics data as a core function of the Service. Please refer to Section 6 for full details of how this data is collected and used.
4 How we collect your information
We collect personal information:
- Directly from you — when you register, use the Services, or contact us
- From your employer — who may provide your details to set up your account and manage your access
- Automatically — via GPS devices, telematics hardware, mobile apps, and usage logs when you or your vehicle interacts with the Services
- From third-party integrations — such as connected telematics providers, mapping services, or compliance platforms enabled by your employer
- From third-party sources — such as credit information agencies or public registries where relevant
5 How we use your information
We use personal information for the following purposes:
- To provide, deliver, and improve CA Fleet Management and related Services
- To authenticate your access and manage your account
- To enable fleet tracking, route planning, job dispatch, and asset management
- To manage driver compliance, fatigue monitoring, and regulatory reporting
- To monitor vehicle performance, maintenance schedules, and operational efficiency
- To process payments and manage billing
- To provide customer support and respond to requests or complaints
- To detect, prevent, and address fraud, security incidents, and technical issues
- To comply with our legal obligations and defend legal claims
- To conduct research, analytics, and product development
- To generate de-identified statistical insights about fleet and service usage
- For other purposes where you have given your express consent
6 Location and telematics data
CA Fleet Management collects real-time GPS location and telematics data as a core function of the Service. This includes vehicle position, speed, route history, idle time, geofence events, and driving behaviour data.
Location and telematics data may be collected continuously while a vehicle or device is active in the system. This data is accessible to your employer or fleet manager as the controller of your CA Fleet instance.
How location data is used
- To track vehicle and asset location in real time
- To generate trip history, route logs, and performance reports
- To enforce geofence rules and notify administrators of exceptions
- To support fatigue management and hours-of-service compliance
- To assist with incident investigation and insurance purposes
- To optimise routing, dispatch, and operational efficiency
Your employer's role
If the Services are provided by your employer, your employer determines what telematics features are enabled, what data is collected, and who has access to it. Questions about monitoring policies or data access should be directed to your employer in the first instance.
Driver privacy
Where required by law, we rely on your employer having obtained appropriate consent or having a lawful basis for monitoring your location and driving behaviour. If you have concerns about monitoring practices, please contact your employer or our Data Protection Officer.
7 Sharing and disclosure
We do not sell your personal information. We may share it with:
- Your employer or fleet operator, as the controller of your CA Fleet instance
- Our related Connect Auz entities, for internal operations and service delivery
- Technology and infrastructure providers (cloud hosting, GPS/telematics providers, data storage, APIs, payment gateways)
- Mapping and routing service providers
- Third-party applications your employer connects to the Services (e.g. MYOB, Xero, compliance platforms)
- Our lawyers, accountants, and professional advisors
- Law enforcement and government agencies where required by law or regulation
- Any third party your employer directs us to share your information with
- Acquirers in the event of a merger, acquisition, or business sale
Connect Auz operates in Australia, New Zealand, USA, Canada, the United Kingdom, the EU, and the Philippines. Your data may be transferred to and processed in these countries.
8 International transfers
Where personal information is transferred outside your country of residence, we ensure the transfer complies with all applicable laws. For EU/UK transfers, we rely on Standard Contractual Clauses (SCCs) or other approved mechanisms. You may request details of the safeguards in place by contacting our Data Protection Officer (see Section 19).
9 Security
We implement industry-standard technical and organisational security measures to protect your personal information from unauthorised access, disclosure, loss, or destruction. For details of our security practices, visit connectauz.com.au/security-features.
No security system is impenetrable. You are also responsible for maintaining the security of your account credentials and must notify us immediately of any suspected unauthorised access.
In the event of a data breach, we will notify the relevant data protection authority and affected individuals as required by applicable law.
10 Retention
We retain personal information only for as long as necessary to fulfil the purposes for which it was collected, or as required by law. This includes telematics and location history, which may be retained for operational, compliance, or legal purposes for the period specified by your employer or applicable regulation.
When personal information is no longer needed, we securely delete or anonymise it in accordance with our data retention policy.
11 Cookies and online tracking
Our websites and web applications use cookies and similar technologies to improve functionality and understand usage patterns:
- Session cookies — to maintain your login session (expire within 24 hours by default)
- Persistent cookies — to remember your preferences across sessions
- Analytics tools — to understand how users interact with the Services
You can configure your browser to stop accepting cookies, though this may affect some features. Our Services do not currently respond to "Do Not Track" browser signals.
12 Marketing
We may send you direct marketing communications about our Services by email, through the Services, or by mail, unless you opt out. You may opt out at any time by contacting us using the details in Section 19 or by using the opt-out mechanism in our marketing messages.
13 Your rights
Subject to applicable law, you may have the right to:
- Access personal information we hold about you
- Know what information we collect and how it is used and shared
- Correct inaccurate or incomplete information
- Request deletion of your personal information ("right to be forgotten")
- Object to or restrict our processing of your information
- Receive your data in a portable format
- Withdraw consent where processing is based on consent
To exercise any of these rights, contact our Data Protection Officer using the details in Section 19. We will verify your identity before processing your request and respond within applicable legal timeframes.
Where the Services are provided by your employer, some rights may be more appropriately directed to your employer in the first instance. We will advise you if this is the case.
14 Account deletion
You have the right to request deletion of your account and all associated personal data at any time. To submit a deletion request, email us at casupport@connectauz.com.au with the subject line "Account Deletion Request", including your full name and the email address linked to your account.
We will confirm receipt within 24 hours and process the deletion within 30 days. Note that some data — including telematics and compliance records — may be retained where required by law or regulation.
15 EU and UK residents
Lawful basis for processing
Where we act as a controller, we process your personal information on one or more of the following lawful bases:
- Contract — to perform our obligations under a contract with you or your employer
- Legitimate interests — to operate and improve the Services, ensure security, and support fleet operations, where these interests are not overridden by your rights
- Consent — where you have opted in to specific activities such as marketing
- Legal obligation — where required by applicable law or regulation, including transport and fatigue management laws
Automated decision-making
We will only subject your personal data to automated decision-making where we have notified you and given you 21 days to request reconsideration, where it is necessary to perform a contract with appropriate safeguards, or where you have given explicit written consent.
EU representative
CA Fleet has appointed European Data Protection Office (EDPO) as its EU GDPR representative. You may contact EDPO at Avenue Huart Hamoir 71, 1030 Brussels, Belgium. Our UK representative is CA Workforce EMEA Limited, Herschel House, 58 Herschel Street, Slough, Berkshire, SL1 1PG, United Kingdom.
16 California residents
In the past 12 months, we have collected and disclosed (but not sold) personal information in the following CCPA categories: identifiers; customer records; commercial information; geolocation data; internet or electronic network activity; professional or employment-related information; and inferences drawn to create a profile.
You have the right not to be discriminated against for exercising your privacy rights under the CCPA.
California residents may contact us at privacy@connectauz.com.au or call 1-888-532-4785.
17 Complaints
We take privacy concerns seriously. If you have a complaint, contact our Data Protection Officer using the details in Section 19. We will confirm receipt, open an investigation where appropriate, and respond as soon as practicable.
If we are unable to resolve your complaint, you may lodge one with your local data protection authority:
- Australia: Office of the Australian Information Commissioner — oaic.gov.au
- United Kingdom: Information Commissioner's Office — ico.org.uk
- EU: Your national data protection authority — edpb.europa.eu
- United States: Your state Attorney General's office
18 Changes to this policy
We may update this Privacy Policy at any time. Where changes are material, we will notify you by email or via in-app notification. The latest version will always be available at connectauz.com.au/privacy-policy. Continued use of the Services after the effective date constitutes your acceptance of the updated policy.
19 Contact us
For privacy-related questions, requests, or complaints relating to CA Fleet Management:
Data Protection Officer
ConnectAuz Software Limited
600 Sneydes Road, Werribee
VIC 3030, Australia
600 Sneydes Road, Werribee VIC 3030, Australia
Governed by the laws of Victoria, Australia