VeltrixDrive

Legal

Privacy Policy

Last updated: April 2026

VeltrixDrive provides AI-based informational estimates only and is not responsible for financial decisions made by users.

1. Who we are

VeltrixDrive (KVK: 99933098) is the data controller for personal data processed through this Service. You can reach us at info@bedrijfsnaam.com.

2. What we collect

  • Account data: email address, authentication identifiers (Supabase), credit balance, and account creation date.
  • Analysis inputs: the car listing URLs or descriptions you submit, together with the language selected.
  • Analysis outputs: the structured results produced by our AI, stored in your account history.
  • Technical data: limited server logs (IP, user agent, timestamps) necessary to operate and secure the Service.

3. Why we process it (legal bases)

  • Performance of a contract (Art. 6(1)(b) GDPR) — to provide the Service you request.
  • Legitimate interests (Art. 6(1)(f) GDPR) — to secure the Service and prevent abuse.
  • Consent (Art. 6(1)(a) GDPR) — for optional analytics cookies.
  • Legal obligation (Art. 6(1)(c) GDPR) — where law requires retention.

4. How AI processing works

Your input is sent to our AI provider (OpenAI) strictly server-side through our backend. We do not share your account data with the AI provider beyond the content of your analysis request. Please avoid pasting personal data of third parties (e.g. full names, phone numbers) when describing a car.

5. Sharing with processors

We share personal data only with the service providers needed to operate VeltrixDrive:

  • Supabase — authentication and database hosting.
  • OpenAI — AI analysis execution.
  • Hosting provider — infrastructure.
  • Stripe (if enabled) — payment processing.

Where these processors are located outside the EU/EEA, transfers rely on Standard Contractual Clauses or equivalent safeguards.

6. Retention

We keep account data while your account is active. Analysis history is kept so you can revisit previous results. You may delete your account or specific analyses at any time by contacting us; we will remove your data within 30 days unless retention is legally required.

7. Your rights

Under the GDPR you have the right to:

  • Access the personal data we hold about you.
  • Request correction or deletion.
  • Restrict or object to certain processing.
  • Request data portability.
  • Withdraw consent where processing is based on consent.
  • Lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).

To exercise your rights, email info@bedrijfsnaam.com.

8. Security

We use row-level security in our database, encrypted transport (HTTPS), secure authentication, and store the OpenAI API key only on the server in protected environment variables.

9. Children

The Service is not directed to individuals under 18. We do not knowingly collect data from children.

10. Changes

We may update this policy as the Service evolves. Material changes will be communicated via email or in-app notice.

VeltrixDrive

KVK: 99933098

Email: info@bedrijfsnaam.com