Privacy Policy
Last updated: February 27, 2025
🔒 TslaEye does not sell, share, or monetize your personal data. Your Tesla credentials are never stored on our servers.
1. Information We Collect
TslaEye collects only the minimum information necessary to provide its functionality:
- Tesla Account Authentication: When you sign in, we facilitate Tesla's official OAuth 2.0 flow. Your Tesla username and password are entered directly on Tesla's servers — never on ours. We receive and store OAuth access and refresh tokens on your device's secure keychain to maintain your session.
- Vehicle Data: We request vehicle data (location, speed, battery level, climate state, sentry status) from Tesla's Fleet API on your behalf. This data is displayed in the app and is not permanently stored on our servers.
- Push Notification Tokens: If you enable push notifications, your Apple Push Notification (APNs) device token is sent to our server so we can deliver alerts for sentry events and speed violations.
- Vehicle Identification Number (VIN): Your VIN is used to identify your vehicle when making API requests and for server-side monitoring features like Sentry Guard.
2. How We Use Your Information
- To display real-time vehicle data (speed, location, battery, climate)
- To execute remote commands you initiate (lock, unlock, honk, flash, climate)
- To send push notifications for sentry alerts and speed violations
- To run server-side monitoring (Sentry Guard, Speed Monitor) when enabled by you
3. Server-Side Features
When you enable Sentry Guard or Speed Monitor, our server periodically polls Tesla's API on your behalf to detect events while the app is closed. This requires temporarily storing your OAuth token and VIN on our server. This data is:
- Encrypted in transit (HTTPS/TLS)
- Used solely for the monitoring features you've enabled
- Deleted when you disable the feature
- Never shared with any third party
4. Data Storage & Security
- OAuth tokens are stored in your device's iOS Keychain, Apple's most secure storage mechanism
- All communication with Tesla's API and our server uses HTTPS encryption
- Server-side data is stored only for active monitoring sessions and is not backed up or archived
- We do not use analytics SDKs, advertising trackers, or any third-party data collection
5. Data Sharing
We do not sell, rent, trade, or share your personal information with any third parties. Period. Your vehicle data is only transmitted between your device, our server, and Tesla's API.
6. Your Rights & Control
- Revoke Access: You can revoke TslaEye's access at any time from your Tesla account settings at accounts.tesla.com.
- Disable Monitoring: Turn off Sentry Guard or Speed Monitor at any time to stop server-side polling and delete stored tokens.
- Sign Out: Signing out of TslaEye removes all locally stored tokens and data.
- Delete Data: Contact us to request deletion of any server-side data associated with your vehicle.
7. Children's Privacy
TslaEye is not intended for use by children under 13. We do not knowingly collect information from children.
8. Changes to This Policy
We may update this policy from time to time. Changes will be posted on this page with an updated revision date. Continued use of TslaEye after changes constitutes acceptance.
9. Contact
If you have any questions about this privacy policy or your data, contact us at:
Romeoz Apps
United States