Data protection

How GRS handles tracking and camera data.

Plain-English summary of how location, behaviour and camera data is processed across the GRS platform, and where customer responsibility starts.

Data governance summary

  • Roles
    Role-based access controls who sees which vehicles and features.
  • Retention
    Configured to your operational, evidential and legal needs.
  • Driver communication
    Customer-led, supported by GRS guidance.
  • Providers
    ISO27001-certified or aligned infrastructure providers.

Shared responsibility for fleet data

This page provides general information about how GRS Fleet Telematics supports responsible use of fleet tracking and camera data. Customer-specific legal obligations, driver communications and retention policies remain the responsibility of each fleet operator.

Tracking data

GRS processes vehicle location, journey, geofence and driver-behaviour data so authorised users can manage fleet visibility, reporting, security and operational performance.

Camera data

Where Vision or Vision AI is used, camera footage and event data can support incident review, driver coaching and evidence workflows. Access should be limited to authorised users with a clear business purpose.

Role-based access

Platform permissions can be configured so users see only the vehicles, data and features relevant to their role.

Retention principles

Retention should be configured around operational, evidential, contractual and legal requirements. GRS can support platform configuration, but each customer remains responsible for its own retention policy.

Driver communication

Fleet operators should explain to drivers what data is collected, why it is used, who can access it and how long it is kept.

Customer responsibility

Each fleet operator remains responsible for its own driver privacy notices, internal acceptable-use policies and lawful basis for using tracking or camera data.

Built on infrastructure and software/platform providers with ISO27001-certified or ISO27001-aligned controls. Role-based access controls and GDPR-aware data handling apply across the GRS platform. Security and compliance statements refer to GRS's selected infrastructure and software/platform providers unless otherwise stated.

Frequently asked

Questions, answered.

What data does GRS collect?
GRS collects vehicle location and journey data from telematics hardware. Vision and Vision AI vehicles also generate camera footage and AI safety events.
How long is data retained?
Retention is configured to match each customer's operational, evidential and legal needs. Customers should reflect retention in their own driver and data policies.
Are drivers told they are tracked?
Driver communication is the fleet customer's responsibility. GRS provides guidance and supports customer-led driver communication practices.

Data protection

Need a DPA, subprocessor list or retention review?

Contact GRS to coordinate documentation with your data protection team.