Privacy Policy

Last updated: June 30, 2026

Summary

Drive Permit Test stores the minimum data needed to make practice tests work. We don't sell your data, run cross-site trackers, or fingerprint you across the web. We do use a single anonymous browser cookie so your test progress and missed-question library survive between visits.

What we collect

Browser cookies

• pr_fp — a random anonymous UUID we generate the first time you visit. Used to remember your missed-question library and test sessions across visits. Not linked to any personal info. Lifetime: 1 year. You can delete it anytime; the only effect is your Challenge Library is reset.
• lang_dev — only set in development environments to remember your EN/ES preference when there is no separate domain. Not used in production (production uses domain-based detection: drivepermittest.com = English, es.drivepermittest.com = Spanish).

Local storage

• test_timer_* — your current test session start time, so the timer survives a page refresh. Cleared when you finish the test.

Server-side records

• Your missed practice-test answers (linked only to the anonymous pr_fp UUID, never to identifiable info like email or IP).
• Standard nginx access logs (IP, user-agent, request path) retained for 30 days for security/abuse monitoring. Not linked to your tests.

What we do NOT collect

• No email, phone, name, or address — there is no signup form on the site.
• No third-party analytics scripts (Google Analytics, Facebook Pixel, etc.).
• No marketing automation (no CRM integration, no email tracking, no remarketing pixels).
• No location data beyond what you voluntarily type into the office search.

Third-party services we use

• Google Fonts — for the Inter, Lexend, Public Sans, and Material Symbols typefaces. Google may log your IP when fonts load. To opt out, browser extensions like uBlock Origin can block fonts.googleapis.com.
• OpenStreetMap tile servers — for the office location maps. OSM may log your IP when tiles load.
• Google AdSense (planned, not yet active) — once enabled, banner ads will load from Google's adsbygoogle.js. AdSense uses cookies for fraud prevention and (with your consent) personalized ads. Before serving ads to visitors in the EEA, UK or Switzerland we will publish a Consent Management Platform (CMP) message — Google's Funding Choices is the IAB-TCF-compliant CMP we plan to use; it must be configured and published in the AdSense Privacy & Messaging console before going live. Until ads are active, no AdSense or CMP script is loaded.

Children

DMV permit applicants are typically 14-18 years old. We do not knowingly collect personally identifiable information from anyone under 13 (per US COPPA), and the site has no signup, profile, or social features that would expose a minor's identity.

Your rights (GDPR / CCPA)

Since we don't collect personally identifiable info, there is typically nothing to delete or export. If you want to clear your anonymous test history, delete the pr_fp cookie in your browser settings — the corresponding server records are auto-purged after 90 days of inactivity.

Changes to this policy

We'll update this page (and the "Last updated" date at the top) when our data practices change. Material changes get an in-product banner notification.

Contact

Privacy questions: contact us.