Privacy Policy
Effective June 16, 2026
This Privacy Policy explains how Wooch OÜ (“we,” “us”) handles information in connection with XDate Alert (the “Service”). It covers two distinct kinds of data: (1) information about you, our subscriber, and (2) the public motor-carrier records the Service surfaces.
1. Subscriber information we collect
- Account & contact: your email address (used for sign-in and to deliver alerts) and the U.S. states you subscribe to.
- Payment: your subscription payments are processed by Stripe. We do not receive or store your full card number. We retain limited billing metadata (e.g., Stripe customer and subscription identifiers, plan, status).
- Usage & technical: IP address (used for rate-limiting and abuse prevention), basic log data, and your activity within the dashboard (e.g., which leads you mark as contacted, quoted, won, or ignored).
2. How we use subscriber information
- to provide the Service — authenticate you, deliver daily alerts, and run your dashboard;
- to process subscriptions, trials, renewals, and refunds;
- to send service-related email (sign-in links, alerts, billing notices);
- to prevent abuse, enforce our Terms, and secure the Service;
- to comply with legal obligations.
We do not sell your subscriber information. We do not use it for third-party advertising.
3. The carrier data we surface comes from public records
The motor-carrier information in the Service — including carrier names, USDOT numbers, locations, insurance filings, cancellation dates, insurer names, and the associated contact details (such as phone numbers and email addresses on file) — is collected from publicly available U.S. government records, principally the FMCSA Licensing & Insurance system, the FMCSA/MOTUS registration and insurance datasets, the SAFER system, and the U.S. DOT open-data portal.
During the validation phase, the Service does not use Google Places, website scraping, or any other external enrichment. It displays only fields derived from public FMCSA government records and internal normalization. External enrichment may be re-enabled later with a policy update and counsel review.
This data concerns businesses and the contact information they have filed in public registries. If you are a carrier and have a question about your record, the authoritative source is the FMCSA; we reflect public data and can address questions at support@xdatealert.com.
4. Service providers we share data with
We use a small set of trusted processors to run the Service:
- Stripe — payment processing.
- Resend — sending transactional and alert email.
- Vercel — application hosting (United States region).
- Neon — database hosting (United States region).
- Google Places API — available for optional contact enrichment, but not used during the validation phase.
Each processes data only as needed to provide its function. We may also disclose information if required by law or to protect our rights, users, or the public.
5. Data retention
We keep subscriber information for as long as your account is active and as needed for legal, accounting, and dispute-resolution purposes. Public carrier records are retained as part of the Service’s historical dataset. You may request deletion of your subscriber account as described below.
6. Your rights
Depending on where you live, you may have rights to access, correct, delete, or port your personal information, and to opt out of certain processing. California residents have rights under the CCPA/CPRA, including the right to know, the right to delete, and the right to opt out of “sale” or “sharing” (we do not sell or share subscriber data for cross-context behavioral advertising). To exercise any right, email support@xdatealert.com. You can unsubscribe from alert emails at any time via the link in every email or by cancelling your subscription.
6a. GDPR — EU/UK individuals
Wooch OÜ is established in Estonia and acts as the data controller for personal data processed through the Service. Where the GDPR applies:
- Subscriber data is processed to perform our contract with you (Art. 6(1)(b)) and to meet legal obligations (Art. 6(1)(c)).
- Carrier business-contact data from public registries is processed on the basis of our legitimate interests (Art. 6(1)(f)) in operating a B2B prospecting tool, balanced against the rights of the individuals concerned — noting that the data is professional/business contact information the carrier filed in public government records.
- You may access, rectify, erase, restrict, object to, or port your personal data — email support@xdatealert.com. You may also complain to your supervisory authority (in Estonia, the Andmekaitse Inspektsioon).
6b. Carrier records — public origin & deletion requests
The carrier records in the Service originate from publicly available U.S. government records. We note this origin for transparency, but we do not rely on “publicly available” status as the sole basis for any exemption from data-broker or privacy law, and we honor valid deletion requests.
If you are a carrier — or an individual whose contact information appears in a carrier record — and want it removed from the Service, email support@xdatealert.com with the USDOT or MC number and we will remove it from our delivered data within a reasonable time. The authoritative public record is held by the FMCSA and is outside our control.
We do not collect or store carrier data for California, Oregon, Vermont, or Connecticut; records for those states are excluded at the point of ingestion.
7. Security
We use industry-standard measures to protect data, including encrypted connections, signed sessions, and passwordless authentication. No method of transmission or storage is perfectly secure, but we work to protect your information.
8. International users
We operate from Estonia and host data in the United States. By using the Service you understand your information may be processed in the United States and other locations where our providers operate.
9. Changes
We may update this Policy from time to time. Material changes will be reflected by a new effective date.
10. Contact
Privacy questions or requests: support@xdatealert.com.
Data source: FMCSA public records. Not affiliated with FMCSA, any government agency, or any insurer.