Privacy Policy
Last updated: April 3, 2026
1. Introduction
VettHost (“we,” “us,” or “our”) operates the VettHost platform (the “Service”). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.
2. Information We Collect
2.1 Information from Hosts (our customers)
- Account information: name, email address, payment information
- Property information: listing details, property addresses
- Usage data: how you interact with our Service
2.2 Information about Guests (data subjects)
- Guest names and profile information as provided by our host customers
- Guest review content from publicly available sources
- AI-generated risk scores based on review analysis
3. Legal Basis for Processing (GDPR — EU Users)
| Data | Legal Basis |
|---|---|
| Host account data | Contract performance (Art. 6.1.b) |
| Host payment data | Contract performance + legal obligation (Art. 6.1.b/c) |
| Guest review data | Legitimate interest (Art. 6.1.f) |
| Guest risk scores | Legitimate interest (Art. 6.1.f) |
3.1 Legitimate Interest Assessment
We have conducted a Legitimate Interest Assessment for the processing of guest data. Our legitimate interest is to help property hosts protect their properties from damage. We have determined that this interest is not overridden by the fundamental rights and freedoms of the data subjects, considering that:
- We process only publicly available review data
- We implement data minimization practices
- We provide mechanisms for data subjects to exercise their rights
- Risk scores are provided as advisory information only, not automated decisions
4. How We Use Your Information
- To provide and maintain our Service
- To generate guest risk assessments for host customers
- To process payments
- To communicate with you about the Service
- To comply with legal obligations
5. Data Sharing
We do not sell personal data. We may share data with:
- Payment processors (Stripe) for transaction processing
- Cloud hosting providers for Service delivery
- Law enforcement when required by law
6. Data Retention
- Host data: retained while account is active + 2 years
- Guest data: retained for a maximum of 12 months from collection, then anonymized or deleted
- Payment records: retained as required by law (typically 7 years)
7. Your Rights
If you are in the EU/EEA, you have the right to:
- Access your personal data (Art. 15)
- Rectify inaccurate data (Art. 16)
- Eraseyour data (“right to be forgotten”) (Art. 17)
- Restrict processing (Art. 18)
- Data portability (Art. 20)
- Object to processing based on legitimate interest (Art. 21)
- Not be subject to automated decision-making (Art. 22)
For guests who have been scored: You may request access to your risk score, an explanation of the factors considered, and correction or deletion of your data by contacting us at privacy@vetthost.com.
8. International Data Transfers
If your data is transferred outside the EU/EEA, we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission.
9. Data Security
We implement appropriate technical and organizational measures to protect your personal data, including encryption in transit and at rest, access controls, and regular security assessments.
10. Children's Privacy
Our Service is not directed to individuals under 18. We do not knowingly collect data from minors.
11. Changes to This Policy
We will notify you of material changes by email or through the Service at least 30 days before they take effect.
12. Contact Us
For privacy inquiries or to exercise your rights:
- Email: privacy@vetthost.com
You have the right to lodge a complaint with a supervisory authority.