Lazi
Go Lazi

Privacy + control

Your data, your rules.

Lazi is a network; sharing happens when YOU decide. Defaults protect, settings open up. Every field below is controllable from the moment you create an org.

Start freeAbout Lazi →

Truck locations

Visible only to your org members + accepted-partner orgs on selected posts.

By default, your fleet’s live positions stay inside your org. When you set a post to network or direct visibility, the trusted partner you chose can see the relevant trucks for the duration of that match, never your whole fleet.

Driver licences + records

Restricted to owner / admin / dispatcher. Drivers see their own.

Licence numbers, expiry dates, medical certs, emergency contacts. Stored encrypted in NZ-hosted Supabase. Photos in a private bucket with short-TTL signed URLs, never publicly accessible.

Rate cards + per-partner pricing

Stays between you and that partner.

When you set custom rates for a specific partner (preferred-customer pricing), only that partner sees those rates. Your default rate card is your business, never shown to the wider network.

Load addresses

Three-way visibility: direct, network, public.

DIRECT: one specific partner sees the full address, nobody else. NETWORK: your trusted circle sees it. PUBLIC: the open marketplace. You pick per post; no field is exposed without you choosing the level.

Driver assignment

Your dispatcher decides who drives. Drivers see their own jobs only.

Drivers don’t see other drivers’ runs or company-wide load activity. Dispatchers can scope per-driver to keep visibility tight.

Payment + bank details

PCI scope on Stripe. Lazi never touches a card number or bank password.

Card capture happens on Stripe Checkout (hosted), bank account verified by Stripe Connect (NZBN / IRD KYC). We store only display fragments (brand, last 4 digits) on our side.

The promises behind the defaults

  • • We don't sell or share your data with carriers, insurers, or marketers.
  • • Row-level security on every table in the database, so even our own engineers can't read cross-org data without an explicit, audited service-role call.
  • • Every admin action on your org data is recorded in an audit log you can request a copy of.
  • • Delete-on-request, per the NZ Privacy Act 2020: request it in Settings → Account (or email us). We anonymise your personal information; the financial records we're legally required to retain for IRD (completed-match invoices + payments) are kept against the company, not you.