Vehicle Privacy Notice

2.1. Processing of personal data while you drive

2.1.1. Vehicle data analytics

We process vehicle data (listed below) in order to obtain statistical information about our vehicles and how they are used. We use this information for product research and development purposes, in particular to improve and monitor the quality of vehicles and their safety features. This also serves to manage Volvo Cars’ warranty commitments and to comply with our legal requirements relating to emissions monitoring.

Data categories used:

Volvo cars also collects the following information on the vehicle’s high-voltage battery (where applicable):

The legal basis for the processing of the data mentioned above is your consent.

The data Vehicle identification number (VIN), Identifiers of the vehicle’s hardware and software versions, and Diagnostic trouble codes (DTC), are retained for 2 years, while the information on the vehicle’s high-voltage battery is retained for the lifetime of the battery.

In the case of hybrid or electric vehicles, Volvo Cars and Polestar Performance AB (a Swedish company headquartered in Göteborg, Assar Gabrielssons Väg 9, SE-405 31, Sweden, hereinafter referred to as “Polestar”) share analysis data from their respective vehicles. The analysis data exchanged between Volvo Cars and Polestar, as listed above, is of a purely technical nature and does not involve actual customer data. The analysis data collected via the Volvo Cars and Polestar platforms is exchanged between the two companies for the purposes of improving and monitoring the quality of the vehicle, the performance of the electric and hybrid features, and the safety features.

2.1.2. Over the air software updates

In order to be able to maintain the vehicle software and provide necessary software updates directly, we process the following data:

We process the data mentioned above if you consent to this. If you refuse over the air software updates, this will prevent you from being able to use our updated services, or you will not be able to use them fully. Failure to update may also increase the risk of cybersecurity incidents, much like in the case of all other smart devices. Note that you can also opt to have the updates installed in one of our workshops.

We will retain records of the software updates made to the car for the entire vehicle lifetime.

2.1.3. Connected Safety

Our vehicles are equipped with the additional safety function Connected Safety, which informs you about current traffic situations on their route. This information is based on communication between your car and other vehicles in which Connected Safety is also activated (Volvo cars and trucks). This information is used to alert the driver to changing road conditions early on by displaying appropriate warnings, allowing them to adapt their driving style accordingly. Information involving personal data, in particular the driver’s identity, is not exchanged between vehicles. However, if your own vehicle’s hazard warning lights are activated or your vehicle detects reduced friction between your tyres and the road, information about this can be sent to vehicles approaching your own vehicle’s position.

The Connected Safety service will both provide you with alerts about upcoming hazards on the road (e.g. slippery road, hazard light alerts), as well as collect data from your own car and contribute to the service:

We process the data mentioned above in the course of performing a service to you. You can switch the service on and off at any time.

In addition, the aforementioned data is processed anonymously and transmitted to Volvo Trucks (to create the Connected Safety service) and traffic agencies (in order to avert and reduce dangers posed by road traffic).

We will keep the data for 1 week before we delete or anonymize it.

2.1.4. Real-time Traffic Information

The Real Time Traffic Information service receives information about road traffic information from a 3rd party service provider.

The data we collect from the car are:

Car models equipped with sensors that can identify traffic signs in real time as you drive do this through local processing (in the car) only.

We process the data mentioned above in the course of performing a service to you. You can switch the service on and off at any time.

The data will be stored by Volvo Cars as long as the subscription is active. Once the subscription is inactive, VIN, speed and position are stored for maximum of 90 days, unless a longer time is required under local applicable law.

2.1.5. Speech Messaging

The Speech Messaging is a feature specific to the car models that are not equipped with In Vehicle Infotainment system – these newer cars do not have a speech messaging service provided by Volvo Cars, but rather you have the option to activate SKT NUGU Digital Assistant. Speech Messaging is part of a larger voice command system with which you can control features of your infotainment system, and lets you create and send SMS messages by giving verbal instructions. Speech Messaging uses a 3rd party service provider, which is why this processing is not possible in the car. To initiate a dialogue using voice commands, you first need to activate this function. Voice control will remain activated until you deliberately stop it or until you have not responded to three prompts from the system.

The following data is processing when using the voice control system:

The processing of your data is necessary to provide the voice control system and associated services, and therefore to perform the contract concluded with you. If you do not provide your data, it will not be possible to use the voice control system.

The recorded voice data will be shared with the 3rd party service provider, in order to provide the service to you. The resulting text message is shared by the 3rd party service provider with us, and then passed to your vehicle. The 3rd party service provider is a separate controller for this data.

2.2. Processing in the event of an incident

In the event of an incident or (near) accident, personal data will be processed for the following purposes for a certain period of time:

2.2.1. Active Safety Data Recorder (ASDR)

The “Active Safety Data Recorder” (ASDR) primary purpose is to record data related to traffic accidents or collision-like situations. This information will be processed by our research and development department to help us better understand the circumstances in which traffic accidents, injuries, and damage occur.

If you enable this service, Volvo Cars collects and processes the following data for future development purposes and active safety-related complaints:

This function only records data when a non-trivial collision situation occurs. It does not record any data during normal driving conditions.

We collect the data mentioned above based on your consent, and we keep it for 10 years before we delete or anonymise it.

2.2.2. Event Data Recorder (EDR)

The vehicle stores safety-related information relating to crash or near-crash situations in an Event Data Recorder (EDR) – also known as the car’s “black box”. The safety-related information includes data such as:

The period recorded is usually up to 30 seconds. Recording only takes place if a non-trivial collision situation occurs. No data is recorded under normal driving conditions. Furthermore, the recording does not include who is driving the vehicle or the geographical location of the (near) crash.

The data recorded is also needed to allow Volvo Cars to comply with its legal requirements specified in laws and by government authorities. The provision of personal data is thus required by law.

2.2.3. Emergency Call (eCall)

The Emergency Call (eCall) is a mandatory service all modern cars sold In the European Economic Area are equipped with. eCall means that an emergency call is made automatically in the event of a severe accident, detected by activation of one or more sensors within the vehicle; that means an eCall will be made by the car automatically even if all occupants in the car are unconscious, and the data mentioned below is automatically transmitted to the call centre. This function can also be triggered manually by pushing and holding the SOS button for at least 2 seconds; please be mindful that this is not recommended unless you are experiencing an emergency, and abuse is sanctioned under applicable laws.

When an emergency call is made, the following data is processed:

By default, the “eCall” service in Volvo vehicles is routed to a third party services provider (this is called a third party service eCall or TPS eCall); this supplier varies by region, and you can get more information by contacting us. You can at any time choose to have the call routed to the public emergency service 112, by modifying your car settings accordingly.

The data is only collected when the eCall is made, and the only entities having access to it are Volvo Cars and the third party providing the service (or the emergency service itself, if selected). However, they may forward this data to specialised emergency services (for example ambulance) if necessary.

We process this data for the purpose of protecting the vital interests of the driver and of other occupants in the car, as well as under a legal obligation.

The personal data will be retained for a period of 90 days, and the processing is limited to the emergency situations referred to above.

2.2.4. Roadside Assistance

Our roadside assistance service helps you in the event of a flat tyre, breakdown or accident. By activating the black On Call button in the car or using the contact feature in the Volvo Cars App (previously Volvo on Call App), the car makes a call to the roadside assistance service. This service is subscription-based. Roadside assistance support will be able to send suitable help to the driver of the vehicle whenever the driver may need assistance, such as sending out a tow truck.

The Roadside Assistance service is offered in partnership with insurance companies that vary by country - you can get more information by contacting us. These insurance companies operate the call center that takes your call.

In order to provide you with the service, we will process the following data:

The data is collected automatically, but only when the request for roadside assistance is made. The only entities having access to it are Volvo Cars and the third party providing the service, but the latter will forward some of this data to the specialised services you request (for example tow services).

We process this data in the course of providing the roadside assistance service to you.

We will process the data for a period of 8 years, except for geolocation data that is deleted after 90 days.

2.3. Processing of data related to maintenance and repairs

2.3.1. Service planning

The service planning feature is an optional service that helps you keep your car in good condition and observe the vehicle’s warranty conditions by prompting you to schedule your visits to a workshop. For example, with service planning you may be prompted to change certain filters earlier or later than at the recommended fixed period of time, if their actual wear and tear requires this. Service planning works by continuously collecting and analysing certain vehicle diagnostic-related information to predict early signs of vehicle issues and then helping you to set up a maintenance programme before you visit a workshop. The service planning feature also helps us schedule production and delivery of spare parts, which is an important component in our sustainability goals and also in our endeavour to provide you with a premium service and repair experience by optimizing content, logistics and workshop utilization.

In order to provide you with the service planning feature, the following data will be collected:

We process the data mentioned above in the course of performing a service to you. You can switch the service on and off at any time.

The data will be shared with our national sales company in your country, in order to administer deliveries and bookings, as well as to tailor special offers for you (note that you will only receive special offers where you have agreed to this separately). Service planning will not directly perform bookings, thus the data is not shared with workshops.

We will store data connected to the car high voltage battery and VIN for 10 years, in order follow up on the battery state of health. The other data will be kept for 3 years. Data connected to the car high voltage battery will be kept in relation to the VIN for 10 years in order follow up on the battery state of health.

2.3.2. Connected Service Booking

You can send a booking request directly from the vehicle to your workshop to make an appointment to have your vehicle serviced or repaired. To use this service, you will need to create a Volvo ID and register it for your vehicle, and also connect your vehicle to the internet. You can read more about how your data is processed when you create a Volvo ID here.

You can send a booking request directly from the vehicle to your workshop to make an appointment to have your vehicle serviced or repaired. To use this service, you will need to create a Volvo ID and register it for your vehicle, and also connect your vehicle to the internet. You can read more about how your data is processed when you create a Volvo ID here.

The Connected Service Booking service is similar to the Digital Service Booking service available in the Volvo Cars App.

The following data is processed when sending a booking request:

which will be shared with our national sales company in your country and the retailer selected (which might be service/repair workshop, body paint workshop, car reconditioning specialists and car logistics services).

The data will be used to book the service, organise performance, contact you in matters regarding the service booked or as direct consequences of using the service such as sending confirmations and notifications. This data is processed in order to perform the booking you request (in other words, our legal basis for this processing is your contract with us).

We will store your data for a period of 15 months, however please note that the Volvo service partner retailer providing the service is subject to various retention and documentation obligations and may also be required by law to disclose personal data to authorities. This information can be found in the privacy policy of the service partner.

2.3.3. Diagnostic read-out in workshops

If servicing or repairs are carried out on your vehicle by one of our authorised service centres or partners, your vehicle is connected to the Vehicle Information Diagnostic for Aftersales system (“VIDA”) for this purpose, and we will receive the following information about the problem:

This data is of purely technical nature and we process it in order to follow up on the quality of our cars and manage our product manufacturer obligations, for product development as well as safety follow-up purposes (if necessary). This data is kept for the lifetime of the vehicle.

We process this data in our legitimate interests mentioned previously, and where applicable also to fulfil legal and other official requirements, such as safety-related recalls.

2.3.4. Bug Reporting

This function helps Volvo Cars to collect the report of the software bugs. This data collection occurs when you visit an authorised Volvo workshop or service partner. With this report, we can generate a fix for theses bugs and to maintain our software in good health. The report will then be processed internally by Volvo Cars, to understand the impact of the bugs.

By enabling this function, Volvo Cars will collect and process the data below:

We process the data mentioned above if you consent to this. After we have processed the data above, we will delete or anonymize your data in our server after 90 days.

2.4. Third Party Apps

The infotainment system of new car models runs on the FLO. In this regard, SKT is an independent controller when it comes to processing your personal data.

Third party apps you download in the car are also offered by independent controllers, similarly with how they operate on a smartphone. For further information, please refer to the individual service providers’ own terms and conditions as well as their privacy notices.

2.5. Law enforcement requests

Every once in a while we receive requests from law enforcement agencies (police, customs authorities, etc) to provide various types of data related to our cars. As a general approach, we only provide personal data when legally required. We do provide data that is technical in nature and which does not in itself reveal a link with an individual (e.g., serial number of a car part connected to a VIN number, service history for a VIN number, etc.).

When we are presented with a request from a law enforcement authority that includes personal data, we will only comply with such request to the extent permitted or required under applicable laws and regulations in Korea.

We keep records of the requests received and responses provided, without the actual data provided (where applicable), however this is not an additional processing of personal data.

3.1. Your rights

As a data subject you have specific legal rights granted by applicable laws and regulations in Korea relating to the personal data we process about you. These are briefly explained below, and you can exercise them by filling out the dedicated form indicated below.

You can exercise your rights in relation to us by filling out this form, which will help us to deal with your request properly. The online form contains the information that we need to verify your identity and review your request. For requests submitted by telephone or email, you will need to provide us with sufficient information that allows us to reasonably verify that you are the person whose personal data we collected and describe your request in sufficient detail to allow us to properly evaluate and respond to it. If we are not able to verify your identity for access and deletion requests with the information provided, we may ask you for additional pieces of information.