Affinity Automotive Group
Trust Center

Trust, security & privacy.

This page is maintained by Affinity Automotive Group to answer common security and privacy questions about this website and our customer enquiry process. It describes our current practices and is not an independent certification or audit attestation.

What this site does

AffinityAuto is a marketing and lead-capture site for the JMEV electric vehicle range in the Caribbean. Visitors browse vehicles and can request a test drive, brochure, or general contact via web forms.

Data we collect

When you submit a test-drive or contact form we collect:

  • Your name and email address (required)
  • Phone number (optional)
  • Vehicle of interest, preferred date/time, and any notes you choose to share

We do not use ad-tracking cookies, profile visitors across other sites, or sell personal data. Basic server logs may be retained for security and operational diagnostics.

How your data is used

Submissions are routed to our internal sales CRM so our team can reply, schedule your test drive, and follow up on your enquiry. We may also store a backup of the submission in a private spreadsheet used only by authorised AAG staff.

Access controls

  • Lead and customer records live in a managed Postgres database with row-level security enabled.
  • Only accounts with an explicit admin role can read or modify lead records.
  • Admin access is granted manually by AAG and protected by email/password (and optional Google) sign-in.
  • Service credentials and API keys are stored as server-side secrets and never shipped to the browser.

Platform & hosting

The site is built on the Lovable platform and hosted on its managed edge infrastructure. Authentication, database, and server functions are provided by Lovable Cloud (Supabase). Traffic to the site is served over HTTPS.

Subprocessors

  • Lovable Cloud — application hosting, database, authentication
  • Google Sheets — backup mirror of lead submissions (private, AAG-owned workspace)

Retention & deletion

Lead records are retained while we are in active conversation with you and for a reasonable period afterwards for follow-up and warranty/service context. You can request deletion of your enquiry at any time using the contact details below.

Privacy requests & contact

To request access to, correction of, or deletion of personal data you have submitted, please reach us via the Contact page. We aim to respond within one business day.

Reporting a security issue

If you believe you have found a security vulnerability affecting this site, please email us through the Contact page with the subject “Security report”. Please do not publicly disclose details until we have had a reasonable opportunity to investigate and respond.

Affinity Automotive Group is responsible for the accuracy of this page. Lovable platform capabilities referenced here describe enabled features and are not a Lovable-issued certification.