Vee3

Privacy Policy

Last updated: May 25, 2026

1. Introduction

This Privacy Policy explains how Vee3 ("Vee3", "we", "us", or "our") collects, uses, stores, and shares personal data when you use our website at vee3.io, our customer application at app.vee3.io, our API at api.vee3.io, and our hosted MCP endpoint at mcp.vee3.io (together, the "Service").

Vee3 is operated from Poland. We serve customers worldwide. If you do not agree with this Privacy Policy, please do not use the Service.

2. Who we are

Data controller: Vee3
Website: vee3.io
Privacy contact: contact@vee3.io
Support: support@vee3.io

3. Scope

This Privacy Policy applies to:

  • Visitors to our marketing website
  • Registered users of the customer dashboard
  • Anyone who uses our API or hosted MCP with an API key

The Service supports both human and automated use. You may sign in to the dashboard with Clerk, call the API directly, or connect tools such as Cursor via our hosted MCP. API keys may be used by humans, software agents, or integrations you configure. You are responsible for all activity performed with your API keys.

4. Information we collect

4.1 Account and identity information

When you create an account through our dashboard, we collect and store:

  • Name and email address (provided through our authentication provider, Clerk)
  • Clerk user identifier linked to your Vee3 account
  • Authentication provider information (for example, email sign-in or social login)
  • Account status, billing plan, and subscription status

4.2 Billing information

Paid subscriptions are processed by Stripe. We store Stripe customer and subscription identifiers in our database. We do not store full payment card numbers. Stripe collects and processes payment details according to its own privacy policy.

4.3 API keys and usage data

When you create or use API keys, we collect:

  • API key name, prefix, and a secure hash of the key (not the full key after creation)
  • Key status, creation time, revocation time, and last used time
  • Per-request usage logs, including endpoint, HTTP method, status code, error code, duration, token count, request identifier, screenshot identifier, and the target URL you submit for screenshot capture

Usage logs are retained indefinitely for billing reconciliation, abuse prevention, support, and service improvement unless deletion is required by law or you delete your account.

4.4 Screenshot content

When you request a screenshot, we capture a PNG image of the requested public web page and store it in Google Cloud Storage. We generate time-limited signed download URLs (typically valid for one hour). Screenshot files are deleted within 30 days of creation.

4.5 Technical, analytics, and log data

We also collect:

  • Browser and device information when you use our website or dashboard
  • Session and authentication cookies managed by Clerk on app.vee3.io
  • Page view and performance data through Vercel Analytics and Vercel Speed Insights on our website and dashboard
  • Advertising and conversion measurement through Google Ads tags when enabled (for example, to measure sign-ups from ad campaigns)
  • Server and application logs, including request identifiers, timestamps, and operational error information

4.6 Information we do not collect

  • Full API keys after the one-time display at key creation
  • Passwords (authentication is handled by Clerk)
  • Full payment card numbers (handled by Stripe)

5. How we use information

We use personal data to:

  • Provide, operate, maintain, and improve the Service
  • Authenticate dashboard users and validate API requests
  • Meter usage, enforce token quotas, and manage subscriptions
  • Process payments and send billing-related communications
  • Provide customer support and respond to inquiries
  • Detect, prevent, and investigate abuse, fraud, and security incidents
  • Comply with legal obligations and enforce our Terms of Service
  • Analyze aggregate usage and website performance

6. Legal bases for processing (EEA, UK, and Switzerland)

If you are located in the European Economic Area, the United Kingdom, or Switzerland, we process personal data on the following bases:

  • Contract: processing necessary to provide the Service you request, including account management, API access, and billing
  • Legitimate interests: securing the Service, preventing abuse, maintaining logs, improving reliability, and analyzing performance, balanced against your rights
  • Legal obligation: where required by applicable law, such as tax or accounting rules
  • Consent: where required for non-essential cookies or similar technologies, or where you have given explicit consent

7. Sharing and subprocessors

We do not sell your personal information. We share data with service providers ("subprocessors") that help us operate the Service:

  • Clerk - authentication, session management, and account security
  • Stripe - payment processing, subscriptions, and customer billing portal
  • Google Cloud - cloud hosting, database, object storage, logging, and related infrastructure
  • Vercel - website and dashboard hosting, analytics, and performance monitoring
  • Google Ads - advertising conversion measurement when we run paid campaigns

These providers process data on our instructions and under contractual safeguards. We may also disclose information if required by law, to protect rights and safety, or in connection with a merger, acquisition, or asset sale, subject to appropriate protections.

8. International transfers

We are based in Poland and use providers that may process data in the European Union, the United States, and other countries. When personal data is transferred outside the EEA, UK, or Switzerland, we rely on appropriate safeguards such as:

  • European Commission adequacy decisions, where applicable
  • Standard Contractual Clauses approved by the European Commission
  • Equivalent transfer mechanisms required under UK or Swiss law

Where we act as a data processor on your behalf (for example, when you submit URLs that contain personal data belonging to third parties), a Data Processing Agreement may be available on request for business customers. Contact contact@vee3.io.

9. Retention

  • Account data: retained while your account is active and as needed afterward for legal, tax, and dispute purposes
  • Usage logs: retained indefinitely unless deletion is required by law or triggered by account deletion
  • Screenshot PNG files: deleted within 30 days of capture
  • Billing records: retained as required by applicable accounting and tax law
  • Server logs: retained for a limited operational period, then deleted or aggregated

10. Security

We implement technical and organizational measures designed to protect personal data, including encryption in transit (HTTPS), hashed storage of API keys, access controls, and infrastructure security provided by our cloud providers. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

11. Your rights

Depending on your location, you may have the right to access, correct, delete, restrict, object to, or port your personal data, and to withdraw consent where processing is based on consent.

You can update profile information and delete your account from the dashboard under Manage account. Account deletion removes or anonymizes associated account data subject to legal retention requirements. Some usage or billing records may be retained where required by law or for legitimate business purposes such as fraud prevention and billing disputes.

To exercise privacy rights, contact contact@vee3.io. We may need to verify your identity before responding. You also have the right to lodge a complaint with your local supervisory authority.

12. California privacy rights

If you are a California resident, you may have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), including the right to know what personal information we collect, request deletion or correction, and opt out of the sale or sharing of personal information.

We do not sell or share personal information for cross-context behavioral advertising. To submit a California privacy request, email contact@vee3.io.

13. Children

The Service is not directed at children under 16 years of age. You must be at least 16 to create an account or use the Service. If you are under 16, you may use the Service only with verifiable consent from a parent or legal guardian. If we learn that we have collected personal data from a child under 16 without appropriate consent, we will delete it.

14. Cookies and analytics

Our dashboard uses cookies and similar technologies required for authentication and security through Clerk. Our website and dashboard use Vercel Analytics and Speed Insights to understand page usage and performance. When we run Google Ads campaigns, Google may set cookies or use similar technologies to measure ad performance and conversions. Where required by law, we will request your consent before placing non-essential cookies or similar technologies.

You can control cookies through your browser settings. Disabling essential authentication cookies may prevent you from signing in.

15. Automated decision-making

We use automated systems to enforce token quotas, rate limits, and security controls such as blocking requests to private or internal network addresses. These systems may prevent specific API requests from completing. We do not make solely automated decisions that produce legal or similarly significant effects about you without appropriate safeguards.

16. Third-party websites and content

When you submit a URL for screenshot capture, we access that third-party website on your behalf. We are not responsible for the privacy practices of websites you request. Those sites may contain personal data belonging to third parties. You are responsible for having a lawful basis to request and use such content.

17. Changes to this policy

We may update this Privacy Policy from time to time. We will post the updated version on this page and change the "Last updated" date. If changes are material, we may provide additional notice by email or through the dashboard.

18. Contact

Questions about this Privacy Policy or our data practices:
contact@vee3.io

Support:
support@vee3.io