NextNRG, Inc., Privacy Policy
NEXTNRG PRIVACY POLICY
EzFill is a service of NextNRG, Inc. (formerly EzFill Holdings, Inc.)
Effective date: June 2016 Last updated: June 16, 2026
NextNRG, Inc. (formerly EzFill Holdings, Inc.), together with its subsidiaries, affiliates, and related entities (collectively, “NextNRG,” “EzFill,” “we,” “us,” or “our”), respects your privacy. This Privacy Policy (the “Policy”) explains how we collect, use, disclose, and protect personal information when you use our mobile applications, websites, and related products and services (collectively, the “Services”), and describes the privacy rights and choices available to you, including rights under the laws of California and other U.S. states.
This Policy is incorporated into and subject to our Terms of Use. By using the Services, you acknowledge that you have read this Policy. Where required by law, we will obtain your consent before engaging in certain processing.
1. Scope of This Policy
This Policy applies to personal information we collect through the Services and in the course of our interactions and communications with you. It does not apply to information collected by third parties, including third‑party websites, platforms, payment processors, or advertising partners that we do not own or control, whose practices are governed by their own privacy policies.
2. Notice at Collection (Summary)
At or before the point of collection, we provide this notice of the categories of personal information we collect and the purposes for which we use it. The table in Section 3 lists the categories of personal information and sensitive personal information we collect. We use this information for the business and commercial purposes described in Section 6. The retention periods that apply are described in Section 9. We do not use or disclose sensitive personal information for purposes other than those permitted under applicable law without offering you the right to limit such use (see Section 12).
We do not sell or share your personal information. We do not sell your personal information, and we do not share it for cross‑context behavioral advertising, as those terms are defined under California and other state privacy laws. We use personal information only to provide and support the Services and for the related purposes described in this Policy. The third‑party tools integrated into the Services act as our service providers and may use the information only to perform services on our behalf. If our practices change, we will update this Policy and provide any opt‑out mechanism required by law.
3. Personal Information We Collect
Over the past 12 months, we have collected the following categories of personal information, depending on how you interact with the Services:
Statutory category | Examples of data we may collect | Sold / shared? |
A. Identifiers | Name, email address, phone number, postal/billing address, account username, profile photo, device identifiers, IP address, and vehicle license plate number. | No |
B. Customer records / financial information (Cal. Civ. Code § 1798.80(e)) | Name, contact details, payment card number, card expiration date, and card security code (CVV). | No |
C. Commercial information | Fuel and service orders, transaction history, delivery notes, order requests, and products/services purchased or considered. | No |
D. Internet / network activity | App and website usage, interactions, features accessed, referring pages, and analytics data. | No |
E. Geolocation data | Precise geolocation from your mobile device (used to locate your vehicle for delivery). Also “sensitive personal information” (see below). | No |
F. Audio / visual information | Photographs of your vehicle that you choose to upload. | No – used only to fulfill your order |
G. Inferences | Preferences and characteristics derived from the above (e.g., service recommendations). | No |
H. Sensitive personal information (CPRA § 1798.140(ae)) | Precise geolocation; and account log‑in or financial account / payment card number in combination with a security or access code. | No – used only to provide the Services (see § 12) |
Sensitive personal information. Some of the information above — specifically precise geolocation and your payment card number combined with its security code — is “sensitive personal information” under California law. We use it only to provide and secure the Services and for other purposes permitted by law (such as preventing fraud), and not to infer characteristics about you. See Section 12 for the right to limit the use of sensitive personal information.
4. Sources of Personal Information
We collect personal information from the following categories of sources:
- Directly from you — when you create or modify an account, place or modify orders, upload a vehicle photo, contact customer support, or otherwise communicate with us.
- Automatically from your device — when you use the Services, including geolocation, device type, device identifiers, IP address, and usage data collected through cookies and similar technologies.
- From service providers and partners — such as payment processors, analytics providers, hosting providers, and advertising partners.
- From drivers and operational systems — in connection with fulfilling and supporting your deliveries.
5. Cookies, Analytics, and Similar Technologies
We and our partners use cookies, software development kits (SDKs), pixels, web beacons, and similar technologies to operate and secure the Services, remember your preferences, measure performance, and conduct analytics. Third‑party providers that support these functions as well as other analytics and infrastructure services act as our service providers and are permitted to use information only to perform services on our behalf, and not for their own purposes. Each provider’s use of information is also governed by its own privacy policy.
Advertising measurement. On our marketing websites, we use analytics to measure the performance and return on investment of our own advertising — for example, by counting website visits and conversions resulting from our ad campaigns. We use this information only to evaluate and improve our marketing, not to build profiles of you or to deliver advertising to you across other unaffiliated websites or apps. We do not use customer account information for advertising.
You can manage cookies through your browser settings and manage advertising identifiers through your device settings. Where required by law, we obtain your consent before deploying non‑essential analytics technologies. Disabling certain technologies may affect the functionality of the Services.
Opt‑out preference signals (Global Privacy Control). Although we do not sell or share personal information, where applicable we honor opt‑out preference signals such as the Global Privacy Control (GPC) transmitted by your browser or device.
“Do Not Track.” Because there is no common industry standard for “Do Not Track” signals, we do not currently respond to them, except to the extent we honor recognized opt‑out preference signals as described above.
6. How We Use Personal Information
We use personal information for the following business and commercial purposes:
- Provide, operate, maintain, and improve the Services, including locating your vehicle and fulfilling fuel deliveries;
- Process transactions, facilitate payments, and send receipts and confirmations;
- Create and manage your account and verify your identity;
- Communicate with you, including service‑related announcements, customer support, and (where permitted) marketing;
- Enable communications between you and a driver, such as estimated times of arrival;
- Develop new features and personalize and recommend content and features;
- Conduct analytics, testing, and research, and monitor usage and trends;
- Detect, prevent, and address fraud, abuse, security incidents, and other harmful or unlawful activity;
- Perform internal operations and troubleshoot software and operational problems;
- Measure the performance and return on investment of our own marketing and advertising (for example, by analyzing visits and conversions on our marketing websites); and
- Comply with legal obligations and enforce our agreements.
We will not collect additional categories of personal information or use the personal information we collected for materially different, unrelated, or incompatible purposes without providing you notice.
7. How We Disclose Personal Information
We may disclose each category of personal information described in Section 3 to the following categories of recipients:
- Service providers and contractors that perform services on our behalf — such as payment processing, hosting, customer support, analytics, mapping, communications, and platform maintenance — and that are contractually limited to using the information only to provide those services and not for their own purposes.
- Drivers and delivery personnel who need your location and vehicle information to fulfill your order.
- Government, law enforcement, and private parties, when we believe in good faith that disclosure is necessary or appropriate to comply with the law or legal process (including subpoenas), to protect our rights or property or those of others, to protect the safety of any person, or to prevent or address illegal, unethical, or actionable activity.
- Corporate transactions — in connection with a merger, acquisition, financing, reorganization, or sale of assets, in which case we will provide notice as required by law.
- Aggregated or de‑identified information, which is not subject to this Policy, may be disclosed for any lawful purpose.
We do not disclose your personal information to third parties for their own purposes, and we do not disclose it to third parties for their own marketing.
8. We Do Not Sell or Share Personal Information
We do not sell your personal information, and we do not share it for cross‑context behavioral advertising, as the terms “sell” and “share” are defined under California and other state privacy laws. We have not sold or shared personal information in the preceding 12 months. We also do not sell or share sensitive personal information, and we do not knowingly sell or share the personal information of consumers under 16 years of age.
The third‑party tools integrated into the Services function as our service providers and are permitted to use personal information only to perform services on our behalf. Because we do not sell or share personal information, we are not required to provide a “Do Not Sell or Share My Personal Information” link; if our practices change, we will update this Policy and provide any opt‑out mechanism required by law. You may still exercise the other privacy rights described in Section 11.
9. Data Retention
We retain personal information only for as long as reasonably necessary to fulfill the purposes described in this Policy, unless a longer retention period is required or permitted by law. We determine retention periods based on the type of information, the purpose for which it was collected, and applicable legal, tax, accounting, and regulatory requirements. When information is no longer needed, we delete, anonymize, or de‑identify it.
Category of data | Retention period / criteria |
Account and profile information | For the life of your account and for 5 years afterward, or as needed to resolve disputes, enforce our agreements, or comply with legal obligations. |
Order, transaction, and payment records | For at least 5 years following the transaction to satisfy tax, accounting, audit, and consumer‑protection recordkeeping obligations. |
Geolocation data | Retained only as long as needed to complete and support the delivery, then deleted or de‑identified unless required for fraud prevention or legal compliance. |
Vehicle photos | If any, until you remove them or close your account. |
Device, usage, and analytics data | For up to 36 months, after which it is deleted or aggregated/de‑identified unless needed for fraud prevention or legal compliance. |
Marketing preferences and suppression lists | For as long as needed to honor your choices (e.g., opt‑out and “do not sell/share” records are kept indefinitely so we can continue to respect them). |
10. Data Security
We maintain commercially reasonable administrative, technical, and physical safeguards designed to protect personal information, including encryption, firewalls, and Secure Sockets Layer (SSL)/Transport Layer Security (TLS) technology for sensitive data such as payment card and geolocation information. No method of transmission or storage is completely secure, however, and we cannot guarantee absolute security. You are responsible for keeping your account credentials confidential; please notify us promptly if you believe your account has been compromised.
11. Your Privacy Rights
Depending on where you live, you may have some or all of the rights described below. We will not discriminate against you for exercising any of these rights.
11.1 California Residents (CCPA, as amended by the CPRA)
If you are a California resident, you have the following rights, subject to certain exceptions:
- Right to know / access. Request the categories and specific pieces of personal information we have collected about you, the categories of sources, the business or commercial purposes for collecting, selling, or sharing it, and the categories of third parties to whom we disclose it.
- Right to delete. Request deletion of personal information we collected from you, subject to legal exceptions.
- Right to correct. Request correction of inaccurate personal information we maintain about you.
- Right to opt out of sale/sharing. Direct us not to sell or share your personal information. Because we do not sell or share personal information, there is currently nothing to opt out of; if our practices change, we will provide the required opt‑out (see Section 8).
- Right to limit use of sensitive personal information. Direct us to limit our use of your sensitive personal information to what is necessary to provide the Services (see Section 12).
- Right to non‑discrimination. Not be discriminated or retaliated against for exercising your rights.
Shine the Light (Cal. Civ. Code § 1798.83)
California residents may request information about our disclosure of personal information to third parties for their own direct marketing purposes. To make such a request, contact us using the information in Section 18.
11.2 Residents of Other U.S. States
If you are a resident of a state with a comprehensive consumer privacy law — including, as of the date of this Policy, Colorado, Connecticut, Delaware, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, Virginia, and Washington (for consumer health data) — you may have the following rights, subject to that state’s specific law and exceptions:
Right | What it means |
Right to access / know | Confirm whether we process your personal data and obtain a copy of it. |
Right to correct | Request correction of inaccurate personal data. |
Right to delete | Request deletion of personal data you provided or that we obtained about you. |
Right to data portability | Obtain your personal data in a portable, readily usable format where technically feasible. |
Right to opt out | Opt out of (i) the sale of personal data, (ii) targeted advertising, and (iii) certain profiling that produces legal or similarly significant effects. |
Right against discrimination | Not receive discriminatory treatment for exercising your rights. |
Right to appeal | Appeal a refusal to act on your request (we will respond within the period required by your state’s law). |
Note: Because we do not sell personal data, engage in targeted advertising, or conduct profiling that produces legal or similarly significant effects, the opt‑out rights above do not currently apply to our processing. The remaining rights (access, correction, deletion, and portability) are available as described.
Appeals. If we decline to act on your request, you may appeal our decision by contacting us at privacy@ezfl.com. If your appeal is denied, you may contact your state Attorney General to submit a complaint.
11.3 Nevada Residents
Nevada residents have the right to direct us not to sell certain personal information we have collected or will collect about them to a third party that will license or sell it. To submit such a request, contact us using the information in Section 18.
12. Right to Limit the Use of Sensitive Personal Information
We collect precise geolocation and payment card information that qualifies as “sensitive personal information.” We use this information only for purposes permitted under California law — such as providing the Services you request, processing payments, ensuring security and integrity, and preventing fraud — and not to infer characteristics about you. Because of this, the right to limit may not apply to our current uses. To the extent we use sensitive personal information for other purposes, you may direct us to limit such use through the “Limit the Use of My Sensitive Personal Information” link available [at URL / in the app settings], or by contacting us as described in Section 13.
13. How to Submit a Request and How We Verify It
You may submit a privacy rights request by:
- Email: privacy@ezfl.com
- Web form: ezfl.com
Verification. To protect your information, we will take reasonable steps to verify your identity before responding, which may include matching information you provide against information we maintain. We may decline requests we cannot verify.
Authorized agents. You may use an authorized agent to submit a request on your behalf. We may require the agent to provide proof of authorization and may require you to verify your identity directly or confirm that you authorized the request.
Timing and fees. We will respond within the timeframe required by applicable law (generally 45 days, extendable as permitted). We do not charge a fee to process most requests unless they are excessive, repetitive, or manifestly unfounded, as permitted by law.
14. Children’s and Minors’ Privacy
The Services are not directed to children, and we do not knowingly collect personal information from children under 13 without verifiable parental consent as required by the Children’s Online Privacy Protection Act (COPPA). If you are under 18, you may use the Services only with the involvement of a parent or legal guardian. We do not knowingly sell or share the personal information of consumers under 16 years of age without the affirmative authorization required by law. If you believe a child has provided us personal information, please contact us so we can delete it.
15. International Users and Data Transfers
The Services are intended for users in the United States, and we process and store information in the United States. If you access the Services from outside the United States, you understand that your information may be transferred to and processed in the United States, where data‑protection laws may differ from those in your jurisdiction.
16. Third‑Party Links and Services
The Services may contain links to, or integrate with, third‑party websites, applications, and social‑sharing features. We are not responsible for the privacy practices of those third parties. We encourage you to review their privacy policies before providing them with personal information.
17. Changes to This Policy
We may update this Policy from time to time. If we make material changes, we will notify you through the Services or by other means (such as email or text message) as required by law, and we will update the “Last updated” date above. We review and update this Policy at least once every 12 months. Your continued use of the Services after the effective date of an updated Policy constitutes acceptance of the changes to the extent permitted by law.
18. Contact Us
If you have questions about this Policy or our privacy practices, or to exercise your rights, contact us at:
NextNRG, Inc.
Email: privacy@ezfl.com
Website: ezfl.com or nextnrg.com
