Vetra logo Vetra ← Back to site

Privacy Policy

Last updated: May 8, 2026  ·  Effective immediately

Vetra, LLC ("Vetra," "we," "us," or "our") operates the Vetra Virtual Advisor widget platform and the website located at usevetra.com. This Privacy Policy explains what information we collect, how we use it, and your choices and rights regarding that information.

By using our website or services, you agree to the practices described in this Privacy Policy. If you do not agree, please do not use our services.

1. Who This Policy Covers

This policy covers two categories of individuals:

2. Information We Collect

A. From Shop Owners (Subscribers)

B. From End Users (Widget Visitors)

When a customer interacts with the Vetra Virtual Advisor widget embedded on an auto shop's website, the following information may be collected:

C. Automatically Collected Data

3. How We Use Your Information

For Shop Owners

For End Users (Widget Visitors)

4. SMS Communications and TCPA Compliance

Vetra operates under the requirements of the Telephone Consumer Protection Act (TCPA) and applicable FCC regulations. Please read this section carefully.

SMS to Shop Owners

Shop owners who subscribe to Vetra services consent to receive automated SMS notifications — the “SMS handoff” messages — containing lead details from widget interactions. These messages are operational in nature (not marketing) and are a core feature of the subscribed service. Messages are delivered via Telnyx, Inc., our telecommunications carrier, using a toll-free number registered to Vetra / Vetra. Message frequency varies based on widget traffic. Standard message and data rates may apply.

Consent to receive SMS from Vetra is not required to browse our public website, but is required for full use of SMS-dependent lead handoff features. Shop owners may opt out by replying STOP, and may request assistance by replying HELP or contacting legal@usevetra.com. Participating carriers are not liable for delayed or undelivered messages.

SMS Involving End Users (Widget Visitors)

The Vetra Virtual Advisor widget collects a phone number from the end user as part of the soft quote flow. By providing their phone number within the widget, the end user acknowledges that:

Shop owners who use the Vetra platform are solely responsible for ensuring their own customer follow-up communications (calls, texts, emails) are compliant with the TCPA, including obtaining proper written consent before sending marketing or promotional text messages to end users.

Automated Workflow Timing

Retention workflow timing (including 3-month and 9-month reminders) may be calculated using interaction dates, service history fields, and workflow logic configured by the subscribing shop. Vetra provides workflow tooling and infrastructure support, but the subscribing shop controls campaign rules, eligibility, and message approvals.

Opt-Out

Shop owners receiving operational SMS notifications may reply STOP to unsubscribe or contact us at legal@usevetra.com. Unsubscribing from SMS may affect platform functionality.

5. Secure AI Processing

A core design principle of the Vetra platform is that AI inference — the analysis of vehicle symptoms and generation of estimates — is performed securely using enterprise-grade providers (such as Google AI Studio) with strict data privacy standards. This means:

6. Payment Processing (Stripe)

All payment processing is handled by Stripe, Inc., a PCI-DSS Level 1 certified payment processor. When you complete checkout, you are interacting directly with Stripe's secure infrastructure. Vetra does not receive, store, or have access to your full payment card number, bank account number, or CVV. Stripe's privacy policy is available at stripe.com/privacy.

For ACH payments, Stripe processes your bank account information under its own privacy and security standards, including Nacha Operating Rules compliance.

7. Data Sharing and Disclosure

We do not sell, rent, or trade your personal information to third parties for marketing purposes. We may share information in the following limited circumstances:

Mobile privacy commitment: Mobile phone numbers, SMS consent records, and SMS opt-in data are not shared with third parties or affiliates for their own marketing or promotional use.

8. Data Retention & Deletion Policy

Vetra retains different categories of data for varying durations based on regulatory obligations and operational necessity. This policy is reviewed annually or upon material change in applicable privacy law (CCPA, GDPR, state-level privacy acts).

Retention Schedule by Data Category

Deletion Rights and Procedures

Subscribers and end users may request deletion of their personal data by emailing legal@usevetra.com. Vetra honors deletion requests within 30 days unless legal, tax, or regulatory retention obligations require longer holding (e.g., 7-year IRS contractor records, 4-year TCPA SMS logs). When a deletion request is partially fulfilled, the requester is notified which data was deleted and which remains under regulatory hold, with the basis for retention.

Deletion is performed across all primary stores (Supabase database, file storage, application caches) and propagated to downstream third-party processors (Stripe, Resend, Customer.io, Telnyx, Vapi) as their APIs permit.

Policy Review and Enforcement

This retention policy is reviewed at least annually and is enforced through automated retention windows in our Supabase database and periodic manual review of third-party processor retention settings. Material changes to this policy will be communicated to subscribers via email and reflected in the “Last updated” date at the top of this Privacy Policy.

9. Your Rights

All Users

California Residents (CCPA / CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

To submit a request, contact us at legal@usevetra.com. We will respond within 45 days.

10. Children's Privacy

Our services are intended for use by auto repair shop businesses and adult consumers. We do not knowingly collect personal information from children under the age of 13. If we become aware that a child under 13 has provided us with personal information, we will delete it promptly.

11. Security

We implement technical and organizational safeguards to protect personal information against unauthorized access, alteration, disclosure, or destruction. These include encrypted data transmission (HTTPS/TLS), secure enterprise AI processing, access controls, and secure payment processing via Stripe. No method of transmission over the internet is 100% secure, however, and we cannot guarantee absolute security.

12. Cookies and Tracking Technologies

Our website uses standard browser cookies and local storage solely to support core site functionality (such as remembering widget session state). We do not use third-party advertising or behavioral tracking cookies. We do not share cookie-derived data with third parties for marketing purposes.

Do Not Track: Our website does not alter its behavior in response to browser Do Not Track (DNT) signals, as no universal standard for DNT compliance currently exists.

13. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of those sites and encourage you to review their privacy policies.

14. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. For material changes, we will notify active subscribers via email. Continued use of the service after any changes constitutes your acceptance of the updated policy.

15. Contact Us

For privacy-related inquiries, requests, or complaints: