VeeFive — Privacy Policy

Last updated: 25 June 2026

This policy explains what personal data VeeFive (“we”, “us”, the “app”) collects, why we collect it, who we share it with, and the rights you have over it. It applies to the VeeFive mobile and desktop apps and the VeeFive cloud service.

1. Who we are

The data controller responsible for your personal data is VeeFive LTD. You can contact us about privacy or to exercise your rights at privacy@veefive.com.

2. The short version

We collect what we need to run your garage, look up your vehicles, and let you book with dealers — not more.
Your data is hosted in the United Kingdom on Google Cloud.
We never sell your personal data, and we never use it for advertising.
We only share your details with a dealer when you choose to — and you can withdraw that at any time.
You can see your consent history in the app, and deleting your account erases your personal data.

3. What data we collect

Account & identity

Your name and email address.
Your password, which is never stored in readable form — it is protected using a strong one-way hash (Argon2id). You may optionally enable two-factor authentication (a time-based code from an authenticator app).
Authentication session tokens that keep you signed in.

Your vehicles

The vehicle registration mark (number plate / VRM) you add.
Vehicle information retrieved using that registration — for example make, model, colour, fuel type, and registration date.
MOT history and test results, vehicle tax status, outstanding safety recalls, and service / maintenance history.

Dealer interactions

Service or appointment bookings you make with a dealer, including the chosen service, date and time.
The contact and vehicle details you share with a dealer when you book or consent to share them.

Consent & audit trail

A record of the consents you give and withdraw (such as agreeing to share your data with a dealer), with timestamps, so both you and we have an accurate history. You can read this history in the app at any time.

Notifications

MOT and tax reminders are generated on your own device from your vehicles’ existing MOT and tax dates — we don’t create a separate profile to do this.

Technical & diagnostic data

Basic device and app information and diagnostic logs used to diagnose crashes, lock-ups and errors and to keep the service secure. You control when logs leave your device: you can export them, and where the app offers to send a log report for support, that is your choice.

4. Why we use your data, and our legal bases

Under UK GDPR we rely on the following legal bases:

Purpose	Legal basis
Creating and running your account; storing your garage; looking up vehicle data; making dealer bookings you request.	Performance of a contract with you.
Sharing your details with a specific dealer; (where offered) sending log reports for support or automated issue review.	Your consent — which you can withdraw at any time.
Keeping the service secure, preventing misuse and fraud, diagnosing faults, and improving the app.	Our legitimate interests, balanced against your rights.
Responding to lawful requests and meeting legal or regulatory duties.	Compliance with a legal obligation.

We do not make decisions that produce legal or similarly significant effects about you using solely automated processing.

5. Who we share it with

We share data only as needed to provide the service, with:

Our infrastructure provider. We host the app and database on Google Cloud (Google), which provides hosting (Cloud Run) and the database (Cloud SQL). Google acts as our processor under our instructions.
Automotive data providers. When you add a vehicle, we send its registration mark to third-party vehicle-data services to retrieve details, MOT and tax status, recalls, valuations and service history. We send the registration to obtain data, not your identity.
Dealers. When you book with, or consent to share your data with, a particular dealer, the relevant details are shared with that dealer so they can serve you. You choose this, and can withdraw it.
App stores. The app is distributed through Google Play, which processes data under its own privacy policy when you download or update the app.

We do not sell your personal data, and we do not share it for advertising.

6. Where your data is stored

Your data is stored and processed on Google Cloud infrastructure in the United Kingdom (London region). Where any provider processes data outside the UK, we rely on appropriate safeguards (such as adequacy decisions or standard contractual clauses) as required by UK data protection law.

7. How long we keep it

We keep your personal data for as long as you have an account, and only as long as needed for the purposes above. When you delete your account, we erase your personal data: your account and sign-in are removed, your active sessions are revoked, and your vehicle records are deleted. Where you had shared data with a dealer through a booking, that booking is anonymised — the dealer keeps a record that a service occurred, but your identifying details are removed. Diagnostic logs are retained only for as long as needed to investigate issues and keep the service secure, then deleted.

8. Your rights

Under UK GDPR you have the right to:

access the personal data we hold about you;
have inaccurate data corrected;
have your data erased;
restrict or object to certain processing;
receive your data in a portable format;
withdraw consent at any time (without affecting processing already carried out); and
complain to the ICO.

How to exercise these in VeeFive:

Access & consent history: view your consent and audit trail directly in the app.
Erasure: delete your account in the app — this removes your personal data as described in section 7.
Anything else (correction, portability, restriction, objection, or questions): contact us at privacy@veefive.com and we will respond within one month.

9. Sharing your data with dealers

VeeFive only shares your personal data with a dealer when you actively choose to — by booking with them or by giving consent to share. That consent is recorded with a timestamp in your audit trail. You can withdraw it at any time; withdrawing stops future sharing, and erasing your account anonymises the data previously shared through bookings.

10. Security

We protect your data with measures including hashed passwords (Argon2id), encryption of data in transit (HTTPS/TLS), session controls, and restricted access to production systems. No system is perfectly secure, but we work to protect your data and to limit what we collect in the first place.

11. Children

VeeFive is intended for users aged 18 and over and is not directed at children. We do not knowingly collect personal data from children.

12. Cookies & local storage

The sign-in page uses local storage that is strictly necessary to sign you in securely (our own email + password sign-in, with optional two-factor authentication). The app stores data locally on your device to work offline. We do not use advertising or cross-site tracking cookies.

13. Changes to this policy

We may update this policy from time to time. We will change the “Last updated” date above, and for significant changes we will provide a more prominent notice. Please check back periodically.

14. Contact & complaints

For any privacy question or to exercise your rights, contact privacy@veefive.com.

If you are unhappy with how we handle your data, you can complain to the Information Commissioner’s Office (ICO): ico.org.uk, helpline 0303 123 1113. We would, however, appreciate the chance to address your concerns first.