AVOMO

Operated by Moove Cars USA, Corp. 

Website: https://avomo.com  

TABLE OF CONTENTS

• 1. Introduction and Scope
• 2. Business Identification
• 3. Personal Information We Collect
  1. 3.1. Categories of Personal Information
  2. 3.2. Sources of Personal Information
  3. 3.3. Sensitive Personal Information
• 4. How We Use Personal Information
• 5. How We Disclose Personal Information
  1. 5.1. Service Providers and Contractors
  2. 5.2. Legal and Safety Disclosures
  3. 5.3. Corporate Transactions
  4. 5.4. With Your Consent
• 6. Sale and Sharing of Personal Information
• 7. Opt-Out Preference Signals (Global Privacy Control)
• 8. Your Privacy Rights Under U.S. State Laws
  1. 8.1. California (CCPA / CPRA)
  2. 8.2. Delaware (DPDPA)
  3. 8.3. Other States — Virginia-Model Rights
  4. 8.4. Summary of Rights by State
• 9. How to Exercise Your Rights
• 10. Data Retention
• 11. Data Security
• 12. Marketing Communications (CAN-SPAM / TCPA)
• 13. California “Shine the Light” Law
• 14. Children’s Privacy
• 15. Third-Party Links and Services
• 16. International Visitors (EEA / UK)
• 17. Changes to This Privacy Policy
• 18. Contact Information

  

1. Introduction and Scope 

Moove Cars USA, Corp., a Delaware corporation operating under the AVOMO brand (“AVOMO,” “we,” “us,” or “our”), respects your privacy and is committed to protecting your personal information. This Privacy Policy (the “Policy”) describes how we collect, use, disclose, and safeguard personal information obtained through our website https://avomo.com (the “Website”), our business communications, and our interactions with you as a visitor, prospective customer, business partner, job applicant, or vendor representative. 

This Policy applies to personal information we collect through the Website and through offline interactions that result from or are associated with the Website. It does not apply to personal information we collect in connection with the operation of autonomous vehicle fleets under agreements with Uber Technologies, Inc., Waymo LLC, or other mobility partners, which is governed by the separate privacy notices of those platforms. 

This Policy is designed to comply with applicable U.S. federal and state privacy laws, including but not limited to the California Consumer Privacy Act of 2018, as amended by the California Privacy Rights Act of 2020 (collectively, the “CCPA”); the Delaware Personal Data Privacy Act (DPDPA); and the comprehensive consumer privacy laws currently in effect in Colorado, Connecticut, Florida, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, and Virginia. 

Please read this Policy carefully. By using the Website or providing personal information to us, you acknowledge that you have read and understood this Policy. For information specifically about cookies and similar tracking technologies, please refer to our Cookie Notice. 

 

2. Business Identification 

The business responsible for the collection and use of your personal information is: 

 

3. Personal Information We Collect 

3.1. Categories of Personal Information 

In the preceding twelve (12) months, we may collect, and may have collected, the following categories of personal information, as defined by the CCPA and similar state laws. Specific categories actually collected depend on your interactions with us: 

 

3.2. Sources of Personal Information 

We obtain personal information from the following categories of sources: 

• Directly from you — for example, when you fill out a contact or business-inquiry form, subscribe to updates, apply for a position, attend an event, or contact us by email, telephone, or post. 

• Automatically, through your use of the Website — via cookies, log files, server logs, and similar technologies (see our Cookie Notice). 

• From third-party service providers — such as analytics, hosting, email, and recruitment platforms we use to operate the Website and our business. 

• From publicly available sources — such as business directories, professional networks (e.g., LinkedIn), and public records. 

 

3.3. Sensitive Personal Information 

We do not intentionally collect sensitive personal information (as defined under the CCPA and similar laws, including precise geolocation, government identification numbers, financial account credentials, genetic or biometric data, health information, racial or ethnic origin, religious beliefs, union membership, or the contents of private communications) through the Website for the purpose of inferring characteristics about you. 

If you voluntarily provide any such information (for example, in the context of a job application), we will use it only for the limited purposes permitted by applicable law, including the purposes specified in the notice you receive at the time of collection. Under the CCPA, you have the right to limit our use and disclosure of sensitive personal information to those purposes. 

 

4. How We Use Personal Information 

We use the personal information we collect for the following business and commercial purposes: 

• To operate, maintain, and improve the Website and our services. 

• To respond to inquiries, requests, and communications you direct to us. 

• To provide information about our services to prospective customers and business partners. 

• To evaluate job applications, candidates, and prospective vendors. 

• To send administrative communications (such as confirmations, technical notices, updates, security alerts, and support messages). 

• To send marketing and promotional communications, subject to your preferences and to applicable law (see Section 12). 

• To detect, investigate, and prevent security incidents, fraud, or other malicious, deceptive, or illegal activity. 

• To perform analytics, measure Website performance, and understand how visitors use the Website. 

• To comply with legal obligations, enforce our agreements, and defend our legal rights. 

• To carry out corporate transactions (e.g., mergers, acquisitions, financings, and due diligence), subject to appropriate confidentiality protections. 

• For any other purpose disclosed to you at the time of collection or with your consent. 

We will not use your personal information for materially different, unrelated, or incompatible purposes without providing you notice and, where required by law, obtaining your consent. 

 

5. How We Disclose Personal Information 

We may disclose personal information to the categories of recipients described below, in each case only for the purposes described in this Policy or as otherwise permitted or required by law. 

 

5.1. Service Providers and Contractors 

We disclose personal information to third-party service providers and contractors that perform services on our behalf, such as hosting, analytics, email delivery, recruitment technology, customer relationship management, cybersecurity, legal, accounting, and auditing services. These service providers are contractually required to use personal information only for the purposes for which we engage them and in accordance with applicable law. 

As of the publication of this version of the Policy, the following third-party service providers process personal information on the Website on our behalf: 

• Google LLC — provides Google Analytics 4 and Google Tag Manager. Used for aggregated website measurement and tag management. The Data Processing Amendment with Google has been accepted, and Google Analytics is configured with IP truncation, restricted data retention, Google Signals disabled, advertising features disabled, and Google Consent Mode V2 active. 

• CookieScript Ltd. (Cookie-Script) — provides the Consent Management Platform used to collect, store, and demonstrate cookie preferences and opt-out signals. 

Each provider operates under its own privacy notice and contractual privacy obligations. Additional details on cookies and similar technologies are available in our Cookie Notice. 

 

5.2. Legal and Safety Disclosures 

We may disclose personal information: 

• To comply with any court order, law, subpoena, or legal process, including responding to government or regulatory requests. 

• To enforce or apply our terms of use, contracts, and other agreements. 

• To protect the rights, property, or safety of AVOMO, our affiliates, our customers, our personnel, or others, including to prevent fraud, security incidents, or bodily harm. 

 

5.3. Corporate Transactions 

In the event of a merger, acquisition, reorganization, sale of assets, financing, joint venture, or similar transaction involving all or a portion of our business, personal information may be disclosed or transferred to the involved parties (including their advisors), subject to appropriate confidentiality obligations. 

 

5.4. With Your Consent 

We may disclose personal information to any other third party with your consent or at your direction. 

 

6. Sale and Sharing of Personal Information 

Under the CCPA and other U.S. state privacy laws, the terms “sale” and “sharing” of personal information are defined broadly. They may include, in certain circumstances, transfers of online identifiers or browsing information to third parties for cross-context behavioral advertising, even when no money changes hands. 

AVOMO does not sell personal information for monetary consideration and does not engage in cross-context behavioral advertising. The Website does not deploy advertising or retargeting pixels. The use of Google Analytics 4 is configured under conservative settings (IP truncation, Google Signals disabled, advertising features disabled, restricted data retention, and Google Consent Mode V2 with advertising-related flags denied by default), so that analytics data is not used by Google for advertising or for the building of cross-context advertising profiles linked to AVOMO visitors. 

AVOMO nonetheless treats analytics processing in a manner consistent with U.S. state privacy laws and offers users a “Do Not Sell or Share My Personal Information” link in the Website footer that opens the cookie preference center, where users may opt out of all non-strictly-necessary cookies, including analytics. If AVOMO later deploys advertising, retargeting, or third-party tracking technologies that constitute a sale or sharing of personal information under applicable state law, this Policy and the Cookie Notice will be updated and any required opt-out method will be reinforced before or at the time those technologies are activated. 

AVOMO does not knowingly sell or share the personal information of consumers it knows to be under 16 years of age without the affirmative opt-in consent required by applicable law, and does not sell or share the personal information of consumers it knows to be under 13 years of age without the verifiable consent of a parent or legal guardian. 

 

7. Opt-Out Preference Signals (Global Privacy Control) 

Several U.S. state privacy laws recognize universal opt-out mechanisms — such as the Global Privacy Control (GPC) — as valid methods for consumers to opt out of the sale or sharing of their personal information and, in some states, of targeted advertising. 

AVOMO recognizes and processes Global Privacy Control signals transmitted by the user’s browser. When a GPC signal is detected on the Website: 

• Non-strictly-necessary cookies (analytics, functional, targeting, and unclassified categories) are automatically declined without requiring further user interaction. 

• Cookies and similar technologies associated with the sale or sharing of personal information are not loaded. 

• AVOMO maintains records of received GPC signals for accountability purposes. 

Where applicable state law also requires a visible confirmation that the opt-out preference signal has been processed, AVOMO will display such confirmation in accordance with the relevant regulations. You can learn more about GPC at https://globalprivacycontrol.org. 

 

8. Your Privacy Rights Under U.S. State Laws 

Depending on your state of residence, you may have certain rights regarding the personal information we collect about you. This Section summarizes those rights. Residents of states not listed below may still have rights under general consumer protection principles, and we will respond to verifiable requests to the extent required by law. 

 

8.1. California (CCPA / CPRA) 

If you are a California resident, you have the following rights: 

• Right to know — request disclosure of the categories and specific pieces of personal information we collect, use, sell, share, or disclose, including the sources, purposes, and recipients. 

• Right to delete — request deletion of personal information we collected from you, subject to statutory exceptions. 

• Right to correct — request correction of inaccurate personal information. 

• Right to opt out of sale or sharing — including cross-context behavioral advertising. 

• Right to limit use and disclosure of sensitive personal information — direct us to use your sensitive personal information only for limited permitted purposes. 

• Right to non-discrimination — we will not discriminate against you for exercising these rights, including by charging different prices or providing a different level of service, except where permitted by law. 

 

8.2. Delaware (DPDPA) 

As Moove Cars USA, Corp. is a Delaware corporation, Delaware residents enjoy the full suite of rights recognized under the Delaware Personal Data Privacy Act, effective January 1, 2025: 

• Right to confirm processing and to access personal data. 

• Right to correct inaccuracies in personal data. 

• Right to delete personal data provided by, or obtained about, the consumer. 

• Right to obtain a portable copy of personal data. 

• Right to opt out of (i) targeted advertising, (ii) the sale of personal data, and (iii) profiling in furtherance of solely automated decisions producing legal or similarly significant effects. 

• Right to appeal a denial of a rights request. 

Delaware requires recognition of universal opt-out mechanisms such as GPC. 

 

8.3. Other States — Virginia-Model Rights 

Residents of Colorado, Connecticut, Florida, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, and Virginia generally have the following rights, subject to state-specific thresholds and exemptions: 

• Right to access or confirm processing of personal information. 

• Right to correct inaccuracies in personal information. 

• Right to delete personal information. 

• Right to a portable copy of personal information. 

• Right to opt out of targeted advertising, sale of personal data, and certain forms of profiling. 

• Right to appeal a denial of a rights request, generally within 45–60 days. 

The availability of each right varies by state. For example, Iowa, Utah, and Nebraska do not include a general right to correct in all circumstances; Rhode Island provides no statutory cure period and is enforced exclusively by the state attorney general. We respond to verifiable requests in accordance with the law applicable to the requesting consumer’s state of residence. 

 

8.4. Summary of Rights by State 

 

* Nebraska: under the Nebraska Data Privacy Act (NDPA), recognition of universal opt-out mechanisms such as Global Privacy Control is required when the controller is also required to recognize such signals under another state’s privacy law. AVOMO honors GPC signals across all U.S. residents on the basis of California (CCPA/CPRA) applicability. 

Sources: IAPP US State Privacy Legislation Tracker; MultiState 20 State Privacy Laws in Effect in 2026; state attorneys general guidance. Table reflects the position as of April 2026 and must be reviewed periodically as new laws take effect or existing ones are amended. 

 

9. How to Exercise Your Rights 

You — or an authorized agent acting on your behalf — may submit a verifiable consumer request through any of the following channels: 

• By email: dpo@moovecars.com. 

• By postal mail to: Moove Cars USA, Corp., Attn: Privacy Team, 3500 South Dupont Highway, Dover, DE 19901, United States. 

• Through the “Do Not Sell or Share My Personal Information” link available in the Website footer, which opens the cookie preference center where users may opt out of non-strictly-necessary cookies. 

• Through the “Cookie Preferences” link in the Website footer or the cookie banner, which allows users to review and modify their cookie choices at any time. 

To protect your information, we will verify your identity before responding to any request. Verification may involve matching information you provide to data we already hold about you, or asking for additional information sufficient to reasonably confirm your identity. Information provided for verification will not be used for any other purpose. 

Authorized agents must provide signed written permission from the consumer, and the consumer may be required to verify their identity directly with us or to confirm that they have granted the authorized agent permission to submit the request on their behalf. 

We will respond to verifiable requests within the timeframes required by applicable law (generally 45 days under the CCPA and Virginia-model laws, extendable by an additional 45 days where reasonably necessary). If we are unable to comply with a request in whole or in part, we will explain why and — where applicable — inform you of your right to appeal our decision. 

We will not discriminate against you or take any adverse action against you for exercising your rights under this Policy. 

 

10. Data Retention 

We retain personal information only for as long as necessary to fulfill the purposes described in this Policy, unless a longer retention period is required or permitted by law. The criteria we use to determine retention periods include: 

• The nature and sensitivity of the personal information. 

• The purposes for which the personal information is processed. 

• Applicable statutes of limitations and legal, accounting, or reporting obligations. 

• The potential risk of harm from unauthorized use or disclosure. 

• Whether we can achieve the purpose through other means. 

General retention periods (subject to legal requirements and specific circumstances): 

 

These periods are general guidelines. Specific retention requirements applicable to a particular processing activity will prevail. 

 

11. Data Security 

We maintain reasonable administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, disclosure, alteration, or destruction. These measures include: 

• Encryption of personal information in transit (TLS) and, where appropriate, at rest. 

• Access controls based on the principle of least privilege and need-to-know. 

• Multi-factor authentication for access to systems containing personal information. 

• Regular security monitoring, vulnerability assessments, and patching. 

• Employee training on privacy and information security. 

• Contractual obligations on service providers and contractors to implement appropriate security measures. 

• Incident response procedures and breach notification protocols consistent with applicable state breach notification laws. 

While we take security seriously, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security. If we become aware of a data breach that affects your personal information, we will notify you and the applicable regulators as required by law. 

 

12. Marketing Communications (CAN-SPAM / TCPA) 

If you have provided us with your contact information, we may send you marketing communications about our services, events, and updates, subject to applicable law. 

Email — CAN-SPAM Act 

Our commercial email messages comply with the CAN-SPAM Act of 2003. Every marketing email we send contains a clear and conspicuous unsubscribe mechanism. You can opt out of marketing emails at any time by clicking the “Unsubscribe” link at the bottom of any such email or by contacting us at dpo@moovecars.com. We will process unsubscribe requests within ten (10) business days as required by law. 

Telephone / SMS — TCPA 

We do not place automated marketing calls or send marketing text messages without your prior express written consent, as required by the Telephone Consumer Protection Act (TCPA). If you have consented to receive SMS messages, you may opt out at any time by replying “STOP” to any message or by contacting us at dpo@moovecars.com. 

Do Not Call / Do Not Track 

You may register your phone number on the National Do Not Call Registry (https://www.donotcall.gov) to reduce unwanted telemarketing calls. We honor the Do Not Call Registry and applicable state lists. Most modern browsers offer a “Do Not Track” feature; however, there is no uniform industry standard for responding to Do Not Track signals. We do respond to Global Privacy Control signals as described in Section 7. 

 

13. California “Shine the Light” Law 

California Civil Code Section 1798.83 (the “Shine the Light Law”) permits California residents who have an established business relationship with us to request, once per calendar year, information regarding our disclosure, if any, of personal information to third parties for their direct marketing purposes during the preceding calendar year. 

To make such a request, please contact us at dpo@moovecars.com with the subject line “Shine the Light Request.” We will respond within thirty (30) days as required by law. Please note that not all information-sharing activities are covered by the Shine the Light Law. 

 

14. Children’s Privacy 

The Website is not directed to children under the age of 13, and we do not knowingly collect personal information from children under 13, consistent with the Children’s Online Privacy Protection Act (COPPA). 

Under the CCPA and certain other state laws, we will not sell or share the personal information of consumers we know to be between the ages of 13 and 15 without affirmative opt-in consent from the minor, and we will not sell or share the personal information of consumers we know to be under 13 without opt-in consent from the minor’s parent or legal guardian. 

If you believe that a child under the age of 13 has provided us with personal information through the Website, please contact us at dpo@moovecars.com and we will take appropriate steps to delete such information. 

 

15. Third-Party Links and Services 

The Website may contain links to third-party websites, applications, and services, and may integrate plug-ins, widgets, or embedded content from third parties (such as social-media platforms, video hosts, or map providers). We do not control these third parties, and we are not responsible for their privacy practices or content. 

Clicking on such links or interacting with such embedded content may allow third parties to collect or share data about you. Please review the privacy policies of any third-party websites, applications, or services you visit to learn about their data practices. 

 

16. International Visitors (EEA / United Kingdom) 

The Website is directed to residents of the United States. If you are accessing the Website from the European Economic Area (EEA), the United Kingdom, or another jurisdiction with data protection laws that differ from those of the United States, please be aware that your personal information may be transferred to, stored, and processed in the United States, where data protection laws may not offer the same level of protection as those in your jurisdiction. 

To the extent that the EU General Data Protection Regulation (GDPR) or the UK GDPR applies to our processing of your personal information, you may have additional rights, including: 

• The right to access, rectify, erase, restrict, or object to the processing of your personal data. 

• The right to data portability. 

• The right to withdraw any consent you have given at any time. 

• The right to lodge a complaint with your local data protection authority. 

Where we rely on your consent as the legal basis for processing, withdrawing your consent will not affect the lawfulness of processing based on consent before its withdrawal. You may contact us at dpo@moovecars.com for any questions regarding GDPR- or UK GDPR-related matters. 

 

17. Changes to This Privacy Policy 

We may update this Policy from time to time to reflect changes in our practices, the technologies we use, legal requirements, or for other operational reasons. When we make material changes, we will notify you by updating the “Last Updated” date at the top of this Policy and, where required by law, by providing a more prominent notice (such as a banner on the Website or an email notification). 

Please review this Policy periodically to stay informed. Your continued use of the Website after the effective date of an updated Policy constitutes your acknowledgment of the changes. 

 

 

18. Contact Information 

For any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: 

 

— End of Privacy Policy —