Last updated 05-Apr-2023
Tesla-info.com is owned by Digital and Analytical Services Limited, a company listed in the UK.
As a general principal, our site is free to use and does not require an account to be created.
We use Google Analytics to capture generic information about users and user sessions for the purposes of monitoring the use of the site and helping us ensure content is developed accordingly.
We also directly capture IP addresses to understand the areas of the site users visit, search options entered and information on the browser size as we customise the delivery of content to fit the available browser space. One such example is to use the IP address to automatically provide a country filter for Tesla inventory.
This information may be used to limit excessive use and/or abuse of our services including detecting users who circumvent our web pages and directly attack or data crawl our content via our API web services. We can also use this data to help detect brute force attacks, and sql injection attempts. This data is purged periodically and not retained beyond 3 months.
We consider this to be a light touch approach, providing you with the maximum privacy, and consistent with the basic operation of the internet and its features.
We are under no obligation to provide these services to any user and if our minimal approach to capturing information is not acceptable to you then we respectfully request that you do not use our services.
We hold VIN records for cars. Under data protection legislation a VIN number can be used as an indirect identification of a person. The examples provided by the ICO in this area are on the premise that information related to the VIN can be associated with an individual as a connection, using other data, can be made between the car and the person. None of the data we hold in our listings, both current and historic, in our opinion. relates to information that constitutes personal information, the information relates to the sale of the car as an asset at the time, and the specification of the car. Our records are clearly date marked to show the time that record was created, and the data relates to publically available information at the time.
For the avoidance of doubt, we hold no information on the sales price of a car, or who bought the car. Seller information is restricted to either a company, or marked as Private Seller.
We offer a facility for users to generate a Tesla Token. We make use of a Tesla facility which generates an intermediary code which is then used to generate the tokens. We do not store this intermediary code. We have no ability to control Tesla's use of the information you provide to them.
We record a log that the request has been performed and the IP address of the user to detect attempts to exploit our service to launch a cyber-attack either on us or on Tesla via us. We also store a copy of the token in an encrypted database for diagnostic purposes including to detect inappropriate use and abuse.
We also off an API facility to send composite commands to your car through a simple request, an example would be to start a charging session. The composite command would include determining the car id, sending a wake up command, and then to start the charging session. This service requires a token to be sent to us each time as part of the request which we convert to an API token to enable the commands to be executed. For efficiency purposes, primarily for the user of our API service, we may maintain a secure cache of an active API token against the user token. At no time are these tokens publically exposed. Where an API token can not be generated, we delete the record. In the event that you feel we may have your token, you can either email us requesting its removal, or simply change your Tesla password which will expire the tokens and in due course result in the automtic removal of the data.
We may also secure these tokens for retrospective diagnostic purposes including to detect inappropriate use and abuse and change enabling us to maintain the website and for the multicar dashboard. The tokens are not available to any public facing service we provide, nor are they held in the same database instance as our inventory listings which are public facing. All our commands are passive and will not cause the car to wake except in the very specific instance of the API facility when a request to perform an action requires the car to be awake. We believe this software firewall between the databases, and the encryption of the data, provides appropriate security.
We offer an opt-in email notification service for car listings and price changes. The email address of the user is retained together with the criteria selected by the user. We offer the ability to delete from this service in every email we send, and such a deletion will remove the user completely from the database. These details may still persist in a historic off line backups until the backup is purged.
We offer an instant notification service for inventory listings through 3rd party applications, including Telegram and Discord. The third parties manage the subscription to and removal from the various information channels.
Multi-Car Dashboard: We are currently developing a multi car dashboard. This will store a cookie unique to the user. This cookie is generated fromt he token the user provided and is subsequently used to identify the appropriate token and api token. These in turn provide details of the car(s), in accordance with the services of the dashboard. The dashboard will also passively collect the current status when the dashboard is not active. The dashboard only reports the current, or last known state and performs no historical tracking. If this is to change, then any users of the service will be requested to opt in.
General Browsing: We ourselves do not use any cookies directly other than remembering if a notification has already been displayed.
Analytics: We use google analytics to track general activity on the website.
We reserve the right to refuse to serve any content to users who reject the use of all cookies, try to circumvent our website structure, and/or users who decide to use ad-blockers as we offer our service free, have no obligation to provide our services to any individual or organisation, and we wish to prevent malicious use of our site or plagiarism.
Finally, while cookies are set for varying durations on your device, you can manually delete them at any time. However, deleting cookies will not prevent the site from setting further cookies on your device unless you adjust the settings discussed above.
If you have any questions, comments, or concerns regarding this Cookies Policy, please contact us at:
privacy (at) tesla-info (dot) com
Ways you can support tesla-info