Privacy Policy

Last updated: 17 February 2026

HybridHub ("we", "us", "the app") is a diagnostic toolkit for working mechanics. This policy explains what data we collect, how we use it, and how it is protected. Plain language, no fluff.

1. Information we collect

Account info — your email address and a password (or anonymous guest token) when you create an account.
Workshop profile — workshop name, contact details, ABN, and logo, if you choose to enter them. Used to brand customer reports.
Vehicle records — VIN, registration, make/model and any free-form notes you save in your Garage. Stored locally on your device and (when signed in) synced to our secure Firebase backend.
Diagnostic queries — OBD-II codes you look up and symptom descriptions you submit. These are sent to our AI provider (Anthropic Claude via Google Cloud) to generate explanations.
Crash and usage analytics — anonymised analytics via Firebase to help us fix bugs and prioritise features.

2. How we use it

To operate the AI features (OBD-II explanations, symptom diagnosis).
To sync your Garage and Workshop Profile across your devices.
To brand customer-facing reports with your workshop details.
To send service-related emails (e.g. password reset).

We do not sell your data. We do not share it with marketers. We do not use it for advertising profiling.

3. End-to-end encrypted Vault & Messaging

HybridHub's Vault and mechanic-to-mechanic messaging are end-to-end encrypted on your device using AES-256-GCM. Per-conversation keys are derived via ECDH key exchange between users — the private keys never leave your device. Even we cannot read your Vault contents or messages. The Vault is additionally protected by a PIN or your device biometrics.

4. Workshop manuals

The Manuals library indexes publicly-available repair and service manuals (e.g. from Internet Archive and other open sources). HybridHub does not host or distribute copyrighted material — links point to the original public source. If you are the rights holder of any material indexed and want it removed, email service@hybridhubapp.com.

5. Third parties we use

Firebase (Google) — authentication, Firestore database, cloud storage. Firebase privacy.
Anthropic Claude — powers the AI diagnostic explanations. Your queries are processed by Claude under Anthropic's commercial terms; queries are not used to train Anthropic models.
Google AdMob — ad delivery (production). Ads use standard mobile advertising identifiers.
NHTSA Vehicle API — public US government VIN decode service. No personal data sent — just the VIN.

6. Data retention

Account and Garage data is retained while your account is active. If you delete your account (via the in-app option or by emailing us), all server-side data is deleted within 30 days. Local-only data lives on your device until you remove the app.

7. Your rights

You can request a copy of your data, request deletion, or correct inaccuracies at any time. Email service@hybridhubapp.com.

8. Children

HybridHub is a tool for working mechanics and is not intended for users under 16. We do not knowingly collect data from anyone under 16.

9. Changes

If we materially change this policy, we'll update the "Last updated" date and notify signed-in users via an in-app banner.

10. Contact

Questions? service@hybridhubapp.com. HybridHub, Perth, Western Australia.

← Back to home