HomePrivacy Policy

Privacy Policy

Last updated: 17 May 2026

1. Data Controller

VeritasDrive is the data controller for personal data collected through veritasdrive.com. For payment data, our approved payment processor acts as an independent data controller for payment transactions.

2. What Data We Collect

Account data: Email address, full name, encrypted password.

Usage data: Vehicle searches, report history, purchase records, preferred unit (miles/km).

Technical data: IP address, browser type, device information, pages visited.

Payment data: Payment information is collected and processed by our approved payment provider. We do not store credit card numbers, bank details, or other financial information on our servers.

3. How We Use Your Data

We use your data to: provide and improve our service; manage your account; generate and store your vehicle reports; process purchases; send essential service communications; comply with legal obligations.

We do not sell, rent, or share your personal data with third parties for marketing purposes.

4. Legal Basis (UK GDPR / EU GDPR)

Contract performance: Account management, report generation, purchase processing.

Legitimate interests: Service improvement, security, fraud prevention.

Legal obligation: Tax records, compliance with applicable laws.

Consent: Optional marketing communications (opt out at any time).

5. Data Storage and Security

Data is stored on Supabase cloud infrastructure. We use encryption in transit (TLS/SSL) and at rest. Passwords are hashed and never stored in plain text.

6. Data Sharing

We share data only with: our payment processor (for transaction processing); our hosting provider (Vercel); our database provider (Supabase). We do not share data with any other third parties except where required by law.

7. Your Rights

Under UK GDPR and EU GDPR, you have the right to: access your personal data; rectify inaccurate data; erase your data; restrict processing; data portability; object to processing; withdraw consent at any time.

Contact: veritasdrivesupport@gmail.com. We will respond within 30 days.

8. Data Retention

We retain account data while your account is active. Upon deletion, personal data is erased within 30 days, except transaction records retained for up to 6 years as required by law.

9. Children

Our service is not intended for individuals under 18. We do not knowingly collect data from children.