This Privacy Policy explains what information Vesper collects, how we use it, and how we protect it. It applies to crematorium operators participating in the Vesper beta program, their staff, and pet owners who access a tracking page via SMS link. This is a beta product — if something is unclear, email us at privacy@vesperpet.com.
Vesper is an early-stage software company building a case management and pet owner communication platform for independent pet crematoria in the United States. We are in active development and operating a closed beta with a small number of invited operators.
Business name, address, and phone number. Your name, email address, and account password (stored encrypted). Equipment details (retort ID) and service types you configure. Logo and branding assets you upload. Billing information — processed by Stripe. We never see or store your full card number.
Pet information: name, species, breed, colour, approximate weight, microchip number (optional). Pet owner information: name and phone number (required for SMS), email address (optional). Case details: service type, status history, staff notes, and timestamps of all status changes. Referring vet clinic name and address, if applicable.
Pet owners receive an SMS magic link and do not create an account. When they open the tracking page, we log the access time and device type. We do not ask pet owners for any information beyond what the crematorium operator has already entered.
Browser type, operating system, and IP address. Which features you use and when — to understand what’s working during the beta, collected through our product analytics tool (PostHog). Error logs and crash reports.
Operate the platform — case management, QR scanning, status updates, certificate generation, SMS delivery. Send SMS notifications to pet owners on your behalf via Twilio. Send transactional emails via Resend (e.g., invite links, account notifications). Process payments via Stripe. Understand feature usage and debug issues during the beta period, using PostHog for in-product analytics. Respond to your support requests.
We do not sell your data. We do not use it for advertising. PostHog is used solely to understand how the product is used (e.g., which screens are visited, which features are adopted) so we can improve it — it is not an advertising or ad-retargeting tool, and we do not send data to Meta, Google Ads, or similar ad networks. We do not share your data with anyone except the sub-processors listed below, who help us operate the platform.
Vesper uses a small number of third-party services to operate the platform. Each is a reputable provider with its own security practices:
Database, authentication, and file storage.
All platform data is hosted in the US (or EU, for UK/EU customers in future). Supabase does not access your data except to provide the hosting service.
SMS delivery to pet owners.
Recipient phone number and message text.
Transactional email delivery.
Recipient email address and message content.
Application hosting and content delivery.
Standard web request metadata (IP address, request logs).
In-product analytics (feature usage, not advertising).
Anonymized or pseudonymized usage events — which screens and features are used and when.
Payment processing (post-beta, paid subscriptions).
Billing details. We never see or store full card numbers.
We do not use analytics platforms that track individual users for advertising purposes. No data is sent to Meta, Google Ads, or similar ad networks.
All data is stored on servers located in the United States. We use encryption in transit (TLS) and at rest. Access to the database is restricted by role — your crematorium’s data is only accessible to your own staff accounts, enforced at the database level.
This is a beta environment. It has not undergone formal penetration testing or third-party security audit. We take reasonable precautions, but we strongly recommend using test or anonymised data wherever possible during this period.
Authentication cookies — to keep you securely signed in to your account. Product analytics — PostHog sets a cookie or local identifier to understand feature usage within the app, as described in Section 4. This data is used internally to improve the product and is not shared with or used by any advertising network.
We do not use third-party advertising cookies, cross-site tracking pixels, or similar technologies. Pet owners accessing a tracking page via SMS link are not tracked beyond a basic access log (Section 2).
While you are an active user: we retain all data needed to operate the platform. If you end your beta participation: we will give you 60 days to export your data. After that, we delete it from our active systems. Audit logs: case event history is retained permanently and cannot be deleted — this is by design to maintain chain-of-custody integrity. Blockchain hashes: permanent. Cannot be deleted.
Ask what data we hold about you. Request correction of inaccurate data. Request deletion of your data (subject to the retention obligations above). Export your data at any time.
To exercise any of these rights, email privacy@vesperpet.com. We will respond within 10 business days.
We may update this policy as the product evolves. If we make a material change, we will notify you by email or in-platform notice. The date at the top of this page shows when it was last updated.
Email: privacy@vesperpet.com
We aim to respond to all privacy queries within 2 business days.