Privacy
CSA Sentry Privacy Policy
This Privacy Policy explains how CSA Sentry collects, uses, and protects information when you visit, create an account, subscribe, import a carrier roster, monitor carriers, contact support, or otherwise use the product.
CSA Sentry collects information needed to create your account, manage your subscription, monitor your carriers, provide support, and improve the product. This policy also explains how CSA Sentry handles the public FMCSA carrier-safety data it monitors for you.
CSA Sentry is operated by CSA Sentry LLC, a New Jersey limited liability company (971 US Highway 202N, Ste N, Branchburg, NJ 08876), which is responsible for the information described in this policy. You can reach us through the support page or at support@csasentry.com.
Information we collect
Account and authentication information, such as your name if provided, email address, login method, authentication identifiers, account status, and security events.
Phone and text-alert information, if you turn on SMS alerts: your mobile number, whether it has been verified, and the date you consented to texts. Providing a phone number is optional, and you can remove it anytime by turning text alerts off.
Agency and roster information, such as your agency name, the carriers you monitor (USDOT/MC numbers, carrier names, renewal dates), alert preferences, and alert-outcome feedback.
Subscription and billing-status information, such as plan, renewal status, invoices, receipts, cancellation status, payment processor customer identifiers, and limited billing metadata. Full payment card details are handled by our payment processor.
Product usage, analytics, and technical information, such as pages viewed, actions taken, feature usage, notification preferences, device and browser information, IP-derived approximate location, error logs, diagnostics, and cookie or similar identifiers.
Support and communications information, such as support requests, messages, email preferences, replies, attachments you provide, and administrative notes needed to resolve your request.
How we use information
Provide, operate, secure, and troubleshoot CSA Sentry, including account access, authentication, subscriptions, support, notifications, and service reliability.
Monitor your carriers against FMCSA safety data, generate drift alerts, build renewal files, send your monthly book digest, and use alert-outcome feedback to improve alert relevance.
Analyze product performance, measure feature quality, debug errors, prevent abuse, enforce our Terms, protect users and the service, and comply with legal obligations.
Develop and improve CSA Sentry, including threshold rules, alert logic, FMCSA source coverage, quality checks, and new features. We may use aggregated or de-identified information for these purposes.
Send transactional messages, product notices, support replies, billing notices, security notices, and optional marketing or product updates where permitted.
If you opt in and verify your number, send critical carrier alerts by text message (SMS) and a one-time code to confirm your phone. Message and data rates may apply; reply STOP to opt out or HELP for help. We do not send marketing texts.
FMCSA and source data
CSA Sentry collects and processes carrier safety data from FMCSA public APIs and open datasets (such as the QCMobile API and FMCSA open data) for the carriers on your roster. Carrier safety data sourced from the U.S. Federal Motor Carrier Safety Administration (FMCSA). CSA Sentry is not affiliated with, endorsed by, or sponsored by FMCSA or the U.S. DOT.
Carrier safety records may include USDOT/MC numbers, carrier names, the FMCSA intervention-prioritization flag, public absolute measures, safety rating, out-of-service rates, authority and insurance status, snapshot dates, source labels, and the fields needed to verify or explain a standing change.
Snapshot history is retained so we can show how a carrier’s standing has moved over time and date each change.
FMCSA safety data is public federal data, but it is not a safety rating under 49 U.S.C. 31144. Per FMCSA, readers should not draw conclusions about a carrier’s overall safety condition from this data. Source material belongs to FMCSA. If a source changes access, removes content, limits use, or requires deletion, CSA Sentry may remove, update, or stop using related data.
Automated processing
CSA Sentry uses automated rules to compare a carrier’s public FMCSA measures against FMCSA’s published intervention thresholds, classify each carrier’s standing band, and generate drift alerts in plain renewal language.
Automated outputs may be incomplete, inaccurate, or outdated, and are not underwriting, insurance, coverage, or legal advice, and do not predict any insurer’s decision. You should verify FMCSA data directly and exercise your own judgment before acting on an alert.
CSA Sentry may use de-identified, aggregated, or operational data to improve threshold logic, alert quality, and product reliability.
How we share information
We share information with service providers that help operate CSA Sentry, such as hosting, database, authentication, payment processing, email, text-message (SMS/telephony), monitoring, and customer support providers. Product analytics are first-party and self-hosted — usage events are processed on our own servers, not shared with a third-party analytics provider.
We may share information when required by law, legal process, security obligations, rights enforcement, fraud prevention, source-provider compliance, or protection of CSA Sentry, users, or others.
If CSA Sentry is involved in a merger, financing, acquisition, reorganization, sale of assets, or similar transaction, information may be transferred as part of that transaction, subject to appropriate confidentiality and privacy protections.
We do not sell personal information in the ordinary meaning of selling a customer list for money. Some privacy laws define "sale" or "sharing" more broadly, and you may contact us to exercise rights that apply where you live.
Cookies and local storage
CSA Sentry uses one strictly necessary first-party cookie, named “refresh_token”, to help keep you signed in. It is set HttpOnly, Secure, and SameSite=Strict, is scoped to our authentication routes, and expires after about seven days. Clearing it signs you out.
For the app to work, CSA Sentry also keeps a small amount of information in your browser’s local and session storage — your basic profile (such as your name and email), your saved preferences, and a short-lived flag used to complete checkout. Your session access token is held only in your browser’s memory while a tab is open; it is never written to browser storage, and it is dropped when you close or reload the tab and re-issued from the secure cookie above. This information is first-party and functional: it is not shared with third parties and is not used for advertising. As good practice, sign out when you finish on a shared or public device.
For product analytics, CSA Sentry stores a random first-party identifier in your browser’s local storage (key “csasentry:anonymousId”) and sends usage events to our own servers to understand how the product is used. We do not use Google Analytics, advertising pixels, or other third-party tracking technologies, and we do not use cookies or local storage for advertising.
You can clear cookies and local storage at any time through your browser settings. Some browsers send a “Do Not Track” signal; there is no industry-standard way to respond to these signals, so CSA Sentry does not respond to them. Either way, we do not track your activity across third-party websites and do not allow third parties to collect your activity on our site for advertising.
Your choices and rights
You may update account information, change notification settings, and cancel your subscription at any time. You can also permanently delete your account and all associated data yourself from Settings — this cancels any active subscription and removes your login and records. You can still contact support for help with access, correction, export, deletion, or account closure.
You may unsubscribe from optional marketing emails using the unsubscribe link or by contacting support. We may still send transactional, account, billing, support, or security messages.
Depending on where you live, you may have rights to access, correct, delete, port, restrict, or object to certain processing of personal information, or to opt out of certain data uses. We will respond to valid requests as required by law.
Requests can be sent through the support page or to support@csasentry.com. We may need to verify your identity before completing a request.
If we decline your request, you may appeal by replying to our decision or emailing support@csasentry.com with “Privacy Appeal” in the subject line. We will respond within the time your state’s law requires, and if we deny the appeal we will tell you how to contact your state Attorney General to submit a complaint.
Retention
We keep account, roster, alert-feedback, and billing-status information for as long as your account is active, and for up to 12 months after cancellation unless you ask us to delete it earlier, so we can reinstate your account, resolve disputes, and meet tax and recordkeeping obligations.
We retain carrier safety snapshots for the life of the related monitoring history, so CSA Sentry can show how a carrier’s standing has moved over time and date each change, subject to source-provider requirements.
Backup copies are purged on a rolling basis, typically within 30 to 90 days. We retain limited information longer only where required by law or to establish, exercise, or defend legal claims.
When information is no longer needed, we delete, aggregate, or de-identify it.
Security
We use reasonable administrative, technical, and organizational safeguards designed to protect personal information, including access controls, authentication, monitoring, and separation of production secrets from public client code.
No internet service can guarantee perfect security. You are responsible for protecting your account credentials and for promptly reporting suspected unauthorized access.
Children, international use, and changes
CSA Sentry is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child provided information to CSA Sentry, contact us so we can take appropriate action.
CSA Sentry is operated from the United States. If you use CSA Sentry from another location, your information may be transferred to, processed in, and stored in the United States or other countries where our providers operate.
CSA Sentry is a US service intended for licensed US insurance producers and is not directed to or marketed in the European Economic Area, the United Kingdom, or Switzerland. If you access CSA Sentry from one of those regions, you may contact us at support@csasentry.com to exercise any data-protection rights available to you, and we will respond as required by applicable law.
We may update this Privacy Policy as the product, law, source integrations, or data practices change. When changes are material, we will use reasonable efforts to provide notice, such as by updating the date on this page, showing an in-product notice, or sending an email. Changes take effect when posted, and your continued use of CSA Sentry after the updated date means you accept the revised Privacy Policy.
Last updated: July 2, 2026