Privacy Policy

This Privacy Policy describes the personal information Three Dollar Easy Traffic School collects from students and visitors, how that information is used and shared, and the rights available to California residents under the California Consumer Privacy Act of 2018 (CCPA), Civil Code §§1798.100–1798.199.100, and other applicable California and federal law.

Note: Three Dollar Easy Traffic School is a Traffic Violator School applicant pending California DMV approval. Certain student records may be retained and reported to the DMV after approval is issued and TVCC access is complete. Nothing in this policy restricts the school from meeting those regulatory obligations.

Personal Information We Collect

We collect personal information that you provide directly to us when you create a student account, enroll in a course, complete course activities, or contact customer service. The categories of personal information collected include the following.

Identifiers: Full legal name (as printed on the driver license), California driver license number, date of birth, email address, telephone number, and mailing address.
Citation and court information: Citation number, court name, county, and citation date, which are required for completion reporting under California Vehicle Code §11209.
Payment information: Billing name and address and the last four digits of the payment card used. The full card number, expiration date, and security code are transmitted directly to our payment processor and are not stored on our servers.
Course activity: Module start and completion timestamps, time spent on each module, answers submitted to personal validation questions and quiz items, final examination responses and score, and certificate issuance records.
Technical information: IP address, browser type and version, operating system, device identifiers, approximate geographic region, referring URL, and pages visited on this site.
Communications: Records of email correspondence, support tickets, and telephone calls with customer service, which may be retained for quality assurance and regulatory audit purposes.

We do not knowingly collect Social Security numbers, driver's license images, government-issued photo identification, precise geolocation data, or sensitive personal information as defined in Civil Code §1798.140(ae), except where the last four digits of a driver license number are required for DMV reporting.

How We Use Information

Personal information is used only for the business purposes set out below, consistent with Civil Code §1798.140(e).

Course delivery: Creating and authenticating your student account, providing access to course content, administering personal validation questions and the final examination, and tracking progress toward completion.
Certificate issuance: Generating the certificate of completion and delivering it to the enrolled student.
DMV reporting: Electronically reporting course completion information to the California DMV and the citing court through the DMV Traffic Violator Course Completion (TVCC) database, as required by California Vehicle Code §1675 and §11209 and California Code of Regulations (CCR) Title 13 §345.40.
Payment processing: Charging the course fee and responding to chargeback or refund requests.
Customer service: Responding to your questions, resolving technical issues, and sending required communications about your enrollment, examination results, and certificate status.
Security and fraud prevention: Detecting and preventing unauthorized access, account sharing, impersonation, and other conduct that would violate our Conditions of Use or DMV course integrity requirements.
Legal and regulatory compliance: Responding to DMV audits, court orders, subpoenas, and other lawful requests, and retaining records for the periods required by law.
Service improvement: Aggregating course activity data in a de-identified form to evaluate course effectiveness and to refine instructional content.

Information Sharing

We do not sell personal information, and we do not share personal information for cross-context behavioral advertising, as those terms are defined in Civil Code §1798.140. Personal information is disclosed only to the recipients listed below.

California DMV and the citing court: After DMV approval and TVCC access are complete, student identifiers, citation information, and course completion records are transmitted to the DMV and the citing court through the TVCC database as required by California Vehicle Code §11209.
Payment processor (Stripe, Inc.): Payment card information is submitted directly to Stripe, which acts as our service provider for payment processing under a written contract that restricts use of the information to processing the transaction. Stripe's privacy practices are described at stripe.com/privacy.
Service providers: Cloud hosting providers, email delivery providers, customer service platforms, and analytics providers that process data on our behalf under written contracts that prohibit the use or disclosure of personal information for any purpose other than providing the contracted service.
Legal and regulatory authorities: Law enforcement, regulators, courts, and other government agencies in response to a subpoena, search warrant, DMV audit request, or other lawful process, or where disclosure is required to investigate fraud or protect the rights or safety of the school, our students, or the public.
Successor in interest: An acquirer of all or substantially all of the school's assets, subject to the protections of this policy.

We have not sold or shared the personal information of any student for purposes of cross-context behavioral advertising in the preceding 12 months, and we do not have actual knowledge of selling or sharing the personal information of any consumer under 16 years of age.

Your Rights Under California Law

California residents have the following rights under the California Consumer Privacy Act of 2018, as amended by the California Privacy Rights Act of 2020 (Civil Code §§1798.100 et seq.).

Right to know: The right to request that we disclose the categories and specific pieces of personal information we have collected about you, the categories of sources from which that information was collected, the business purposes for collecting or sharing it, and the categories of third parties with whom we share it (Civil Code §1798.110).
Right to delete: The right to request deletion of the personal information we have collected from you, subject to the exceptions in Civil Code §1798.105(d), including our obligation to retain records required by the DMV under California Vehicle Code §11209 and CCR Title 13.
Right to correct: The right to request correction of inaccurate personal information we maintain about you (Civil Code §1798.106).
Right to limit use and disclosure of sensitive personal information: We do not use sensitive personal information for purposes that trigger this right; however, you may still submit a limitation request (Civil Code §1798.121).
Right to opt out of sale or sharing: We do not sell or share personal information for cross-context behavioral advertising, but you retain the right to direct us not to do so (Civil Code §1798.120).
Right to non-discrimination: We will not deny course access, charge a different price, or provide a different level of service because you have exercised a CCPA right (Civil Code §1798.125).

To exercise any of these rights, submit a request to [email protected] or call (805) 258-4697. We will respond within 45 days as required by Civil Code §1798.130(a)(2), with a one-time extension of up to 45 additional days where necessary. To protect your information, we will verify your identity before fulfilling the request, generally by matching two or three pieces of information you provided at enrollment.

If we deny your request, you may appeal by replying to our response within 60 days. Unresolved complaints may be directed to the California Privacy Protection Agency at cppa.ca.gov or to the California Attorney General's office at oag.ca.gov/privacy.

Data Retention

We retain personal information only for as long as reasonably necessary for the purposes described in this policy or for the period required by law. Retention periods for the principal record categories are set out below.

Student enrollment and completion records: Three years from the date of course completion or cancellation, in accordance with the record-keeping requirements of CCR Title 13 §345.50 for DMV-licensed Traffic Violator Schools.
Financial records (transaction logs, refunds, chargebacks): Seven years from the date of transaction, consistent with generally accepted accounting and tax record-keeping standards.
Customer service communications: Two years from the date of the last contact, unless a longer period is required for a pending dispute.
Technical and audit logs: Twelve months from the date of creation, unless required for an active security investigation.

When a retention period ends, the personal information is deleted or irreversibly de-identified. If deletion is not technically feasible at the time (for example, in backup media retained for disaster recovery), the information is isolated and protected from further processing until deletion can be completed.

Cookies and Tracking Technologies

We use a limited set of cookies and similar technologies to operate the site. The categories used are listed below.

Strictly necessary cookies: Required to authenticate your student account, preserve your course progress, and prevent cross-site request forgery. These cookies cannot be disabled without rendering the course unusable.
Functional cookies: Remember accessibility preferences such as high contrast mode, increased font size, and the OpenDyslexic font option.
Analytics cookies: Collect aggregate information about how students use the site so that we can measure course completion rates and identify technical issues. Analytics data is retained in a form that does not identify individual students.

We do not use cookies for targeted advertising, do not participate in third-party advertising networks, and do not use cross-site trackers for behavioral profiling. Most modern browsers allow you to block or delete cookies through the browser's settings; blocking strictly necessary cookies will prevent you from signing in or completing the course. This site does not respond to Do Not Track browser signals at this time, consistent with Business and Professions Code §22575(b)(5), because no uniform standard for those signals has been adopted.

Children's Privacy

The California Traffic Violator School program is available only to individuals who hold a valid California driver license (California Vehicle Code §1808.7). Accordingly, this site is not directed to children under the age of 18, and a student must be at least 18 years of age to enroll. We do not knowingly collect personal information from children under 13 in violation of the Children's Online Privacy Protection Act (COPPA), 15 U.S.C. §§6501–6506. If we become aware that we have collected personal information from a child under 13, we will delete that information promptly. A parent or legal guardian who believes a child under 13 has submitted personal information to us may contact [email protected] to request deletion.

Security Measures

We maintain administrative, physical, and technical safeguards designed to protect personal information from unauthorized access, use, alteration, and disclosure, as required by Civil Code §1798.81.5. The principal safeguards include the following.

Encryption in transit: All connections between your browser and our servers use Transport Layer Security (TLS) version 1.2 or higher.
Encryption at rest: Student records and payment-related data are stored in encrypted database volumes.
Secure payment processing: Payment card information is transmitted directly to our PCI DSS Level 1 certified payment processor and is not stored on our systems.
Access controls: Personal information is accessible only to staff members and service providers with a need to access the information to perform their assigned duties, and all access is logged and periodically reviewed.
Password security: Student passwords are stored only as salted hashes, and we impose minimum password complexity requirements.
Monitoring and incident response: Security logs are monitored for unauthorized access attempts, and a documented incident response plan governs the investigation and notification of suspected security incidents.

No method of transmission over the Internet or method of electronic storage is completely secure. In the event of a security breach affecting personal information, we will notify affected individuals and, where required, the California Attorney General, consistent with Civil Code §1798.29 and §1798.82.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, our course offerings, or applicable law. When we make a material change, we will post the revised policy on this page and update the "Last updated" date at the bottom. If the change materially affects how we use previously collected personal information, we will provide additional notice by email or through the student dashboard or by email. Continued use of the site after the effective date of a change indicates acceptance of the revised policy.

Contact for Privacy Questions

Questions about this Privacy Policy or about the information we hold about you may be directed to the school's privacy officer.

Email: [email protected]
Telephone: (805) 258-4697, Monday through Friday, 9:00 AM to 4:00 PM Pacific Time, excluding state holidays.
Mail: Three Dollar Easy Traffic School, Attn: Privacy Officer, 3800 Market Street, Unit K, Ventura, CA 93003.

For general questions about the course, see the Contact page or the Frequently Asked Questions.

Last updated: April 2026.