Privacy Policy for

APP: OptiLedger (Cloud, Android and iOS)

Revision: A

Date: 2026-01-30

Introduction & Scope

Datavärde Teknik Norden AB is a registered company, organisation number 559452-1477; VAT number SE559452147701, in Sweden, with administration, sales, and development located at Neongatan 5, SE43153 Mölndal. Our company website is https://datavardeteknik.se, email address privacy@datavarde.se, and contact phone +46722322112.

This statement covers the OptiLedger app's data (privacy) practices.

Datavärde Teknik Norden AB has developed the OptiLedger app. The purpose of the app is to enable our customers to access technical data from cars and vehicles they wish to analyse.

Primarily, data is accessed using:

1. CAN to Bluetooth adapter
2. Interaction between the user and the OptiLedger app on the phone or tablet
3. Interaction between the OptiLedger storage cloud and the OptiLedger app on the phone or tablet.

Information Collected

Login/Authentication Data

User login and password are required to access the OptiLedger app. The login and password are required only for provisioning and configuration purposes. Authentication data is deleted within one year after the service contract expires.

Organisation Data

The app is sold exclusively as a tool for use with the OptiLedger cloud solution, which is intended solely for B2B purposes. In the OptiLedger cloud, company names and addresses are stored. Company address and sales contacts are stored for renewal and sales purposes; other company data is deleted within one year after the contract expires.

Usage Data

All results are read from cars and vehicles. The data collected is automatically read from the car databus (CAN) or prompted to be entered by the user from car observations.

Data collected:

1. Battery status data from vehicle (may include: voltage, current, temperature, SOC, SOH, fault codes)
2. CAN to BLE/Bluetooth adapter serial number/MAC address
3. Identity of the phone where the app is installed All data read and stored in the cloud is timestamped and sorted so that the organisation or local office can access its own results using the OptiLedger Cloud.

Communication log data is stored for maxiumum year after contract expired.

Car identities are stored maximum one year after contract expired.

Car model statistics are collected for future product improvement and analytics innovation.

OS/Client Data

The apps are built to support Android and iOS. The specific tablet/phone type or OS versions are not currently collected.

How Data Is Used

Service Provision

When the service is started, personal data is used to distribute login and passwords so that the user can access the services. Similarly, the user receives a physical adapter for CAN readout.

Personalisation

Every device using the login belongs to an organisation. The organisation has access to the result data. If needed, the organisation can assign logins to groups within the organisation. The data is thus sorted and presented as part of the organisation or the organisation plus group.

Analytics

The data analysed is used to create a vehicle identity health report.

Marketing

Customer organisation addresses and contacts can be used for product feedback and/or new product features and sales.

Third-Party Sharing

The OptiLedger product is sold through:

• Directly from Datavärde Teknik Norden AB (not third-party)
• Or through partner resellers/integrators who incorporate the above-mentioned information into their software solutions. This means the reseller/integrator incorporates the above information into their solution, which is then presented to the user. In this case, the user purchases the reseller/integrator product through the reseller/integrator. The information communicated between the reseller/integrator and Datavärde Teknik Norden AB is the same as described above or less.

Data Security

The app can only operate if all of the following is true:

1. Proper initial authentication (only allowed during a limited time period 14 days after purchase)
2. Preselected adapters are used (physical hardware with unique serial number stored inside hw that is read from the adapter during operation)
3. Periodic checkout new authentication tokens using the refresh token.

Communication and storage :

4. User data is protected by secure servers on Google Cloud located in Europe/Finland.
5. Communication between servers and clients (phones/tablets and computers) uses encrypted data with time-limited tokens that need to be periodically updated.
6. The phone and tablet apps only have restricted access to information on the server. (All data analysis functions are done in the cloud)
7. Web interface data and internal communication is protected by TLS 1.2+ All transactions use JWT refresh token and JWT current token (RFC7519/RFC 9068/OAuth 2.0).

Data Breach

The system built by Datavärde Teknik Norden AB is deemed safe and secure. In the unlikely event of a data breach, DPA/DPSA/IMY.SE will be notified within three Swedish workdays.

User Rights

The organisation that has purchased the service can, by contacting our sales/support, change or delete any client login/password-related information. Datavärde Teknik Norden AB does, however, retain the right to the technical data collection in order to create better analytics and products for our customers.

Policy Updates

Policy updates are distributed using email or in-app notifications.