Veztra
01

Overview

Veztra provides a business-to-business logistics operations platform for monitoring shipments, preparing carrier follow-ups, packaging claims, generating commercial invoices, and coordinating workspace activity. This Privacy Policy explains how we collect, use, disclose, and protect information when organizations and their authorized users use the service.

This draft is written for a United States and Canada B2B SaaS launch. Where a privacy law gives an individual or organization additional rights, we will honor those rights as required by that law.

02

Information We Collect

We collect account and workspace information such as names, business email addresses, roles, workspace names, authentication identifiers, plan information, workspace settings, branding settings, and user activity in the service.

Customers may upload, enter, or connect logistics data, including shipment tracking numbers, carriers, order numbers, recipient names, recipient contact details, shipping addresses, product details, HS codes, invoice and claim details, support ticket content, notes, CSV files, and related operational records.

We also collect technical and usage information such as device and browser information, IP address, pages viewed, actions taken, session events, errors, diagnostics, and information stored through cookies, localStorage, or sessionStorage.

03

How We Use Information

  • *Provide, secure, maintain, and improve the service.
  • *Authenticate users, manage workspaces, roles, invitations, and access controls.
  • *Process CSV imports, normalize logistics records, and maintain workspace-scoped operational data.
  • *Draft carrier follow-ups, claim packages, commercial invoices, morning briefs, and shipment summaries for human review.
  • *Operate billing, subscription, entitlement, quota, and customer support workflows.
  • *Send service communications, transactional email, workspace notifications, and operational alerts.
  • *Detect, investigate, and prevent abuse, security incidents, unauthorized access, and violations of our Terms.
  • *Comply with legal, tax, accounting, regulatory, and dispute-resolution obligations.
04

AI Processing

The service may use AI providers, including Anthropic, to generate drafts, summaries, recommendations, and structured outputs from workspace context. AI output is designed to be reviewed and approved by authorized users before any external action is taken.

Customer Data is processed to provide the service and AI drafts; it is not used to train Veztra models. We do not sell Customer Data. Customers should not rely on AI output as legal, customs, tax, brokerage, or compliance advice.

05

Service Providers and Integrations

We may disclose information to service providers that help us run the service, such as hosting, database, authentication, billing, AI, email, analytics, observability, customer support, and security providers. Current or planned providers may include Supabase, Clerk-related authentication infrastructure, Stripe, Anthropic, Resend, PostHog, Sentry, Vercel, and similar vendors.

Customers may connect third-party integrations such as carrier systems, ticketing systems, messaging tools, email providers, and commerce systems. Examples include FedEx, UPS, DHL, Zendesk, Freshdesk, Gorgias, Slack, Resend, Shopify, and generic email routing. When a customer connects an integration, we process credentials, configuration data, sync events, and operational data needed to provide that connection.

06

Cookies and Local Storage

We use cookies and similar technologies for authentication, session management, security, preferences, product functionality, analytics, diagnostics, and remembering choices such as selected workspace or landing page theme.

The service may use browser localStorage and sessionStorage in development, demo, or product workflows to persist session state, selected organization, dashboard preferences, collapsed panels, and temporary workspace data. Browser storage can usually be cleared through browser settings.

07

How We Share Information

We share information with authorized users in the same customer workspace, with service providers acting on our behalf, with integrations enabled by the customer, and with professional advisors or authorities when needed to comply with law, protect rights, prevent harm, or complete a corporate transaction.

We do not sell personal information. We do not disclose Customer Data for cross-context behavioral advertising. If our practices change, we will update this Privacy Policy and provide any legally required choices.

08

Security and Retention

We use administrative, technical, and organizational safeguards designed to protect information, including workspace-scoped access controls, tenant isolation, encrypted credential storage where applicable, audit logging, and telemetry sanitization. No system can be guaranteed perfectly secure.

We retain information for as long as needed to provide the service, meet legal and accounting obligations, resolve disputes, enforce agreements, maintain security, and support backups or audit records. Customers may request deletion or export of Customer Data, subject to legal, security, and contractual limits.

09

Cross-Border Processing

We may process and store information in the United States, Canada, and other countries where we or our service providers operate. These countries may have privacy laws that differ from the laws where a user or customer is located.

Where required, we use contractual, technical, and organizational measures intended to protect information transferred across borders.

10

Privacy Rights

Depending on location and applicable law, individuals may have rights to request access, correction, deletion, portability, restriction, objection, withdrawal of consent, or information about how personal information is used and disclosed. California residents may have additional rights under California privacy laws where those laws apply. Canadian individuals may have rights under PIPEDA or substantially similar provincial privacy laws.

To exercise rights, contact us at privacy@getveztra.com. We may need to verify the request and may refer workspace-level requests to the customer organization that administers the account.

11

Children

The service is intended for business use and is not directed to children. We do not knowingly collect personal information from children under 13 or the age required by applicable law.

12

Changes and Contact

This Privacy Policy is effective as of May 31, 2026. We may update it from time to time, and will revise the effective date when material changes are made.

For privacy questions or requests, contact privacy@getveztra.com.