Carmakers Set Vehicle Data Privacy Rules

Eleven carmakers have agreed to standardize the way they collect and use data about where customer vehicles are and how they're being used.

The principles were developed by the Alliance of Automobile Manufacturers and Assn. of Global Automakers. The guidelines are intended to normalize the use and privacy of data generated by connected-car technologies.

Group members who have pledged to adopt the measures are BMW, Chrysler, Ford, General Motors, Mazda, Mercedes-Benz, Mitsubishi, Porsche, Toyota, Volkswagen and Volvo. The two associations note that their other members may opt to adopt all, some or none of the guidelines.

The protocols dictate that companies must advise customers they could collect information and ask permission to do so. It notes that some safety, compliance and warranty information could be collected without driver choice.

The principles say carmakers must protect the security of the data they obtain, scrub links to the actual drivers in most cases and use the information only for "legitimate business purposes."

The rules are to take effect no later than the 2017 model year. They focus on information intended to provide vehicle services, monitor vehicle technologies and provide subscriptions to in-car services.

The principles require manufacturers to obtain driver consent to use such data as vehicle location, driving behavior and operator biometics.