Privacy Policy

Last updated December 2, 2025

1. Introduction

Veeper ("we," "us," "our," or "Company"), a company organized and existing under the laws of the State of Delaware, United States, is committed to protecting your privacy and ensuring transparency regarding how we collect, use, process, and protect your personal data. This Privacy Policy describes our data practices for our website, application, software, and related services (collectively, the "Service").

This Privacy Policy applies to all users of the Service, including visitors to our website, registered account holders, and any individuals whose data we process. If you do not agree with this Privacy Policy, please do not use the Service.

2. Definitions

In this Privacy Policy:

  • "Personal Data" means any information that identifies or can reasonably identify an individual, including name, email address, IP address, device identifiers, usage data, and any other information linked to a specific person.
  • "Processing" means any operation performed on personal data, including collection, use, storage, transmission, or deletion.
  • "Data Subject" means any individual to whom personal data relates.
  • "Data Controller" means Veeper, which determines the purposes and means of processing personal data.
  • "Data Processor" means any third-party service provider that processes personal data on our behalf.
  • "Legitimate Interests" means our interest in conducting business operations and improving the Service, balanced against your rights and interests.

3. Legal Basis for Processing

We process personal data only when we have a lawful basis under applicable data protection laws, including:

3.1 Consent

You have explicitly provided consent for processing of your personal data for specific purposes. You may withdraw consent at any time by contacting us at jordan@veeper.com.

3.2 Contract Performance

Processing is necessary to perform our contractual obligations to you, including providing the Service, processing payments, and fulfilling your requests.

3.3 Legal Obligation

We are required by applicable law to process certain personal data for regulatory compliance, tax obligations, or legal proceedings.

3.4 Legitimate Interests

We process personal data where necessary for our legitimate business interests, including:

  • Improving and optimizing the Service
  • Detecting, preventing, or addressing fraud, security issues, or technical problems
  • Conducting business analytics and research
  • Marketing and promotional communications (with your consent where required)
  • Enforcing our Terms and Conditions

3.5 Vital Interests

Processing is necessary to protect your vital interests or the vital interests of others in exceptional circumstances.

4. What Personal Data We Collect

We collect personal data in the following categories:

4.1 Information You Provide Directly

  • Account Registration: Name, email address, company name, phone number, billing address, and password
  • Payment Information: Credit card details (processed through secure third-party payment processors; we do not store full card numbers)
  • Communication Data: Messages, inquiries, support requests, and feedback you send us
  • Profile Data: Profile information, preferences, and account settings

4.2 Information Collected Automatically

  • Device Information: Device type, operating system, browser type, unique device identifiers, and device settings
  • Usage Data: Pages visited, features used, clicks, session duration, referral sources, and interaction patterns
  • Location Data: IP address, approximate geographic location (country, city level), and location inferred from device settings
  • Cookies and Tracking Technologies: Cookies, web beacons, pixels, and similar tracking technologies to remember preferences and analyze usage
  • Log Data: Server logs containing IP addresses, access times, pages viewed, and error information

4.3 Information From Third Parties

  • Service Providers: Analytics providers, payment processors, and customer support platforms may provide data about interactions with the Service
  • Business Partners: Referral partners or integrations may share limited user information with your consent
  • Publicly Available Sources: Information from public records or directories (if applicable to your jurisdiction)

4.4 Sensitive or Special Category Data

We do not intentionally collect sensitive personal data such as racial or ethnic origin, political opinions, religious beliefs, trade union membership, genetic data, biometric data, or health data, unless you explicitly provide such information for specific purposes. If you do provide sensitive data, you consent to us processing it for the stated purpose.

5. How We Use Your Personal Data

We use personal data for the following purposes:

5.1 Providing and Improving the Service

  • Creating and managing your account
  • Delivering the Service features and functionality
  • Processing transactions and payments
  • Providing customer support and technical assistance
  • Conducting system maintenance and troubleshooting
  • Analyzing usage patterns to improve features and performance
  • Personalizing your experience

5.2 Security and Fraud Prevention

  • Detecting, investigating, and preventing fraudulent transactions
  • Monitoring for unauthorized access attempts
  • Protecting against malicious, deceptive, or illegal activity
  • Enforcing our Terms and Conditions

5.3 Marketing and Communications

  • Sending promotional materials, newsletters, and updates (with your consent where required)
  • Communicating about new features, services, or changes to our policies
  • Conducting surveys, questionnaires, and market research
  • Personalizing marketing messages based on your interests

5.4 Legal Compliance and Protection

  • Complying with legal obligations and regulatory requirements
  • Responding to lawful requests from governmental authorities
  • Defending against legal claims or disputes
  • Establishing, exercising, or defending legal rights

5.5 Business Analytics and Research

  • Analyzing trends and patterns in user behavior
  • Measuring the effectiveness of marketing campaigns
  • Conducting business and statistical analysis
  • Developing new products or services

5.6 Legitimate Business Operations

  • Managing business relationships and communications
  • Maintaining accurate records
  • Conducting internal operations and administration

6. How We Share Your Personal Data

We may share personal data with the following parties:

6.1 Service Providers and Sub-Processors

We engage third-party service providers to process personal data on our behalf, including:

  • Cloud Hosting Providers: Amazon Web Services (AWS), Google Cloud Platform (GCP), or similar services for data storage and infrastructure
  • Payment Processors: Stripe, PayPal, or other payment processing companies
  • Analytics Providers: Google Analytics, Segment, or similar platforms for usage analysis
  • Customer Support Platforms: Intercom, Zendesk, or similar tools for customer communications
  • Email Marketing Services: Mailchimp, HubSpot, or similar platforms for communications
  • Security and Monitoring Services: Providers specializing in cybersecurity and fraud detection

All service providers are contractually obligated to process data only for specified purposes and must maintain appropriate security measures.

6.2 Business Partners and Integrations

With your consent, we may share limited data with business partners or third-party applications you integrate with the Service, such as CRM systems or analytics platforms.

6.3 Legal Authorities and Compliance

We may disclose personal data when required by law or when we believe in good faith that disclosure is necessary to:

  • Comply with legal obligations, court orders, or government requests
  • Enforce our Terms and Conditions
  • Protect our rights, privacy, safety, or property
  • Protect the rights, privacy, safety, or property of users or the public

6.4 Business Transfers

If Veeper is involved in a merger, acquisition, bankruptcy, dissolution, reorganization, or similar transaction or proceeding, your personal data may be transferred as part of that transaction. We will provide notice before your personal data becomes subject to a different privacy policy.

6.5 Aggregated and Anonymized Data

We may share aggregated, de-identified, or anonymized data that cannot reasonably identify you with third parties for research, marketing, analytics, and other purposes without restriction.

6.6 With Your Explicit Consent

We will not share personal data for purposes other than those described in this Privacy Policy without obtaining your prior written consent.

7. Data Retention

We retain personal data only for the period necessary to achieve the purposes for which it was collected, unless longer retention is required by applicable law or for legitimate business reasons.

7.1 Retention Periods

  • Account Data: Retained for the duration of your account and [12 months] after account termination (unless longer retention is required by law)
  • Transaction and Payment Data: Retained for [7 years] to comply with financial and tax regulations
  • Support and Communication Data: Retained for [2 years] after the final communication (unless longer retention is needed to resolve disputes)
  • Marketing Communication Preferences: Retained until you unsubscribe or request deletion
  • Website Analytics Data: Retained for [24 months] unless aggregated or anonymized
  • Log Data: Retained for [90 days] unless needed for security investigations

7.2 Deletion Upon Request

You may request deletion of your personal data at any time by contacting jordan@veeper.com, subject to:

  • Legal obligations requiring longer retention
  • Active disputes or litigation
  • The need to maintain records for legitimate business purposes
  • The necessity of data for fraud detection or security purposes

8. Your Rights Under GDPR and CCPA

8.1 GDPR Data Subject Rights (EU/EEA Residents)

If you are located in the European Union, European Economic Area, or United Kingdom, you have the following rights:

  • Right to Be Informed (Article 14): You have the right to know what personal data we collect, why we collect it, and how we use it
  • Right of Access (Article 15): You may request a copy of your personal data in a structured, commonly-used, machine-readable format within 30 days
  • Right to Rectification (Article 16): You may request correction or updating of inaccurate personal data
  • Right to Erasure (Article 17): You may request deletion of your personal data, subject to legal exceptions
  • Right to Restrict Processing (Article 18): You may request limitation of how we process your data during verification or legal challenges
  • Right to Data Portability (Article 20): You may request your personal data in a portable format for transfer to another service provider
  • Right to Object (Article 21): You may object to processing for marketing purposes or based on legitimate interests
  • Rights Related to Automated Decision-Making (Article 22): You have the right not to be subject to decisions based solely on automated processing that produce legal effects
  • Right to Lodge a Complaint (Article 77): You may lodge a complaint with your national data protection authority

8.2 CCPA Rights (California Residents)

If you are a California resident, you have the following rights under the California Consumer Privacy Act:

  • Right to Know (§1798.100): You may request what personal information we collect, use, share, and sell
  • Right to Delete (§1798.105): You may request deletion of personal information collected from you
  • Right to Opt-Out (§1798.120): You may opt out of the "sale" or "sharing" of your personal information
  • Right to Correct (§1798.100): You may request correction of inaccurate personal information
  • Right to Non-Discrimination (§1798.125): We will not discriminate against you for exercising your CCPA rights
  • Authorized Agent (§1798.100): You may designate an authorized agent to make CCPA requests on your behalf

8.3 How to Exercise Your Rights

To exercise any of your privacy rights, contact us at:

Email: jordan@veeper.com

Mailing Address: [Your Company Address]

We will respond to your request within:

  • 30 days for most requests (GDPR and CCPA standard)
  • 60 days for complex requests (may be extended for legitimate reasons)
  • 45 days for California residents (with possible extension to 90 days)

We may request reasonable verification of your identity before processing your request to protect your privacy and security.

9. International Data Transfers

Veeper is a U.S.-based company. Your personal data may be transferred to, stored in, and processed in the United States or other countries where we or our service providers operate.

9.1 Transfers to the United States

If you are located in the European Union or European Economic Area, transferring your data to the U.S. involves transferring it to a jurisdiction without equivalent data protection laws. We implement the following safeguards:

  • Standard Contractual Clauses (SCCs): We use EU-approved Standard Contractual Clauses with service providers to establish adequate safeguards
  • Supplementary Measures: We conduct Transfer Impact Assessments (TIAs) and implement supplementary technical and organizational measures
  • Data Minimization: We transfer only personal data necessary to provide the Service
  • Encryption: Data is encrypted in transit and at rest to protect it during transfer

9.2 Other International Transfers

For transfers to other countries, we rely on:

  • Adequacy decisions from relevant authorities
  • Standard Contractual Clauses or equivalent legal mechanisms
  • Your explicit consent where legally required

10. Data Security

We implement and maintain appropriate technical and organizational security measures to protect personal data from unauthorized access, alteration, disclosure, or destruction.

10.1 Security Measures

  • Encryption: Data in transit is protected using SSL/TLS encryption; data at rest is encrypted using AES-256 or equivalent
  • Access Controls: Role-based access controls restrict data access to authorized personnel only
  • Authentication: Multi-factor authentication and strong password requirements for account access
  • Regular Security Testing: Penetration testing, vulnerability assessments, and security audits conducted regularly
  • Incident Response: Incident response procedures to detect, investigate, and respond to security breaches
  • Employee Training: All employees receive data protection and security training
  • Vendor Management: Third-party service providers are vetted for security compliance and monitored continuously
  • Data Backup: Regular backups conducted with secure redundancy and disaster recovery procedures

10.2 Limitations

While we implement industry-standard security measures, no system is completely secure. We cannot guarantee absolute security of your personal data. You use the Service at your own risk, and you are responsible for maintaining the confidentiality of your account credentials.

11. Cookies and Tracking Technologies

We use cookies, web beacons, pixels, and similar tracking technologies to enhance your experience, analyze usage, and serve targeted content.

11.1 Types of Cookies

  • Essential Cookies: Required for basic functionality (authentication, session management)
  • Performance Cookies: Help us analyze usage and improve the Service
  • Analytics Cookies: Track user behavior for statistical analysis (Google Analytics)
  • Marketing Cookies: Enable personalized advertising and marketing communications
  • Third-Party Cookies: Set by external partners for analytics and advertising

11.2 Cookie Management

You can control cookies through:

  • Browser settings (block, delete, or manage cookies)
  • Cookie consent banner on our website
  • Opt-out mechanisms for specific tracking services

Please note that disabling certain cookies may affect Service functionality.

11.3 Do Not Track (DNT)

Some browsers include a "Do Not Track" (DNT) feature. We do not currently respond to DNT signals, but you can use browser settings to control tracking.

12. Third-Party Links and Services

Our Service may contain links to third-party websites, applications, and services that are not operated by us. We are not responsible for the privacy practices, content, accuracy, or security of third-party sites.

We encourage you to review the privacy policies of third-party services before providing personal information. Your use of third-party services is governed by their terms and privacy policies, not this Privacy Policy.

13. Children's Privacy

The Service is not intended for children under 13 years of age (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect personal data from children under 13.

If we become aware that we have collected personal data from a child under 13, we will delete such data immediately and terminate the child's account.

Parents or guardians who believe their child has provided personal data to us should contact us immediately at jordan@veeper.com.

14. Data Protection Officer

We maintain a Data Protection Officer (DPO) to oversee our data protection practices and compliance with GDPR and other data protection laws.

Contact our DPO: [insert DPO contact information]

You may contact our DPO with any data protection concerns, to exercise your data subject rights, or to report a data protection violation.

15. Data Breach Notification

In the event of a personal data breach affecting your personal information, we will:

15.1 Notification Procedures

  • Timing: Notify affected users without undue delay and, where feasible, within 72 hours of becoming aware of the breach
  • Notification Methods: Contact via email, phone, or other means as appropriate
  • Required Information:
    • Description of the breach and affected data categories
    • Likely consequences and potential impact
    • Measures taken or proposed to address the breach and mitigate harm
    • Contact information for further inquiries

15.2 Exceptions to Notification

We are not required to notify users if:

  • Personal data was encrypted or rendered unintelligible to unauthorized parties
  • We took subsequent measures to restore security before unauthorized access occurred
  • Notification would pose a risk to ongoing law enforcement investigation

15.3 Authority Notification

We will notify relevant data protection authorities of significant breaches as required by law within the specified timeframe.

16. Complaint Rights

If you believe we have violated your privacy rights, you have several options:

16.1 Contact Us First

Please contact us at jordan@veeper.com to discuss your concerns. We will attempt to resolve the matter promptly.

16.2 Lodge a Complaint with Authorities

You have the right to lodge a complaint with your local data protection authority:

  • EU/EEA Residents: Your national data protection authority (e.g., GDPR supervisory authority)
  • California Residents: California Attorney General's Office
  • Other Jurisdictions: Relevant data protection or privacy authority in your jurisdiction

Contact information for relevant authorities is available upon request.

17. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by:

  • Posting the updated Privacy Policy on our website with an updated "Last Updated" date
  • Sending you an email notification (if you have provided an email address)
  • Requiring your consent to new terms (where legally required)

Your continued use of the Service following notice of changes constitutes your acceptance of the updated Privacy Policy. We encourage you to review this Privacy Policy regularly to stay informed about how we protect your privacy.

18. Contact Information

For questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us at:

Veeper

Email: jordan@veeper.com

Mailing Address: 15517 Outlook St, Overland Park, KS 66223, United States

Data Protection Officer: Dr. Wasim Irshad, wasim@veeper.com

We will respond to your inquiry within 30 days or as required by applicable law.

Effective Date: December 2, 2025

Last Updated: December 2, 2025

Thank you for trusting Veeper with your personal data. We are committed to protecting your privacy and transparency in our data practices.

Stop coupon leaks permanently

Product

Coupon BlockerCoupon ScannerCampaign LinksSmart DiscountsBlocked Extensions

Resources

BlogWall of LoveCase StudiesFAQsBook DemoPricingVeeper vs. KeepCart

Legal

Data ProcessingPrivacy PolicyTerms of Service

Install

© 2026 Veeper, Inc. All rights reserved. Proudly built in 🇺🇸 by immigrants.