We’re committed to your data privacy.

Updated May 2020

Passport is committed to protecting the privacy of our clients and our users. When we facilitate transactions on behalf of our clients (cities), we act as their trusted agents, collecting for them only the aggregated and anonymized data they requested. This data helps our clients deliver beneficial outcomes including improved urban planning, congestion relief and easy access to parking.

When Passport facilitates transactions, users agree to provide information such as name, email and phone number so that Passport can deliver parking, permitting and transit services. Passport can also use this information to provide useful notifications, for example, when a parking session is about to expire or a permit needs to be renewed.

We protect personal information

  • We understand that any data we collect must be used carefully. We only collect data that is voluntarily submitted by users when engaging in transportation services, such as parking, micro-mobility and permitting. All data provided by users remains private except for the anonymized or necessary data shared with the client city. Credit card and transaction data is never sold or privatized.
  • We won’t use personally identifiable information for any purpose other than to support the services authorized by our clients and to deliver and improve Passport products and services. We will not sell personally identifiable information to any third parties under any circumstances.
  • We do not share any city data or user transaction data with any third party not directly affiliated with our applications offerings.

We ensure privacy and security

  • We comply with all applicable laws and regulations concerning privacy and data protection including the California Consumer Privacy Act (CCPA) and the EU General Data Protection Regulation (GDPR).
  • We take all reasonable steps to protect the security of data, utilize reputable third party security testing and intrusion prevention services to audit and validate our efforts, and maintain certifications and/or compliance with all applicable industry payments and data standards including PCI-DSS Level 1 and SSAE-18.

We deliver a digital infrastructure that supports open APIs 

  • We provide open API access allowing only authorized third party service providers to assist customers in transacting with our clients (for example, a map application from which a motorist can initiate a parking transaction). We believe that our clients benefit from simplified integrations that avoid vendor lock-in and promote user freedom of choice.
  • Any authorized third party affiliated with our applications will have access only to the data needed to complete its part of any relevant transactions. Passport’s use of such data will continue to be governed by these principles.
  • We are committed to the development and integration of commonly accepted data standards that support data portability, simplify integrations, and avoid data-based vendor lock-in. We believe in freedom of choice for our users.

We support client right of use to inform policy and planning

  • We provide access to aggregated and anonymized data to our clients for municipal planning, program management, public engagement, and any other municipal purpose to the extent consistent with Passport’s Privacy Policy, and support our clients in making data-driven decisions and policies based on our expertise across more than 800 clients of all sizes and mobility environments.
  • In connection with this purpose, we work to build bridges with academic or other researchers with appropriate safeguards for privacy.