What is Connected Car Privacy?

Your car is one of the most invasive surveillance devices you own — and unlike your phone, you can't turn it off while driving.

What Modern Cars Collect

A 2023 Mozilla Foundation study found that every major car brand (25 tested) failed basic privacy standards. Cars collect:

• Location: GPS tracking, often transmitted continuously to the manufacturer
• Driving behavior: Speed, braking, acceleration, steering patterns
• Voice recordings: Microphones for voice assistants capture cabin conversations
• Camera footage: Interior and exterior cameras (Tesla records cabin video)
• Biometric data: Seat sensors (weight), facial recognition (driver monitoring), heart rate (some models)
• Connected phone data: Contacts, call logs, messages synced via Bluetooth/CarPlay/Android Auto
• Media habits: What you listen to, radio stations, podcasts
• Passenger information: Number of passengers, seating positions
• Diagnostic data: Engine status, battery health, maintenance needs

Who Gets the Data

• Manufacturers: GM, Ford, Toyota, Tesla, etc. — all collect and store vehicle data
• Insurance companies: Progressive, Allstate, and others offer "telematics" discounts in exchange for driving data. GM was caught selling driving data to insurers without clear consumer consent.
• Law enforcement: Can obtain data with warrants (or sometimes without)
• Data brokers: Vehicle data is sold to marketers and analytics companies
• Dealerships: Have access to connected vehicle data
• App developers: Third-party car apps access vehicle data via manufacturer APIs

Real-World Examples

• GM sold driver behavior data to LexisNexis, which sold it to insurance companies — causing rate increases
• Tesla employees shared private customer camera footage internally
• Nissan privacy policy allows collection of "sexual activity" data
• Hyundai/Kia privacy policy permits sharing data with "affiliates" and "business partners"
• Police have obtained months of location data from car manufacturers via warrants

How to Protect Your Car Privacy

1. Read the privacy policy before buying — Mozilla's "Privacy Not Included" rates car brands
2. Don't connect your phone via Bluetooth if possible — Use a separate aux cable for audio
3. Opt out of telematics — Contact your manufacturer to disable data transmission (not always possible)
4. Decline insurance telematics programs — The discount isn't worth the surveillance
5. Factory reset rental cars — Delete your phone data from rental vehicle infotainment systems
6. Buy older vehicles — Pre-2015 cars have significantly less connected technology
7. Disable OnStar/connected services — If you don't use them, turn them off
8. Support right-to-repair legislation that gives consumers control over vehicle data