AirVeto
Legal

Privacy policy.

How we collect, use, and protect your information.

Last updated: April 9, 2026

This Privacy Policy explains how AirVeto.com ("we", "us", or "the App") collects, uses, and protects information when you use our website.

1. Overview

AirVeto.com is a web application that visualizes wind, airflow, and aircraft data. The App uses automated processes and third-party weather models, which may produce inaccuracies. We are committed to data minimization and privacy by design.

2. Data Controller

The data controller responsible for this website is:

AirVeto
Contact: hello@airveto.com (or via the contact page)
Jurisdiction: European Union

3. Information We Collect

a) Automatically Collected Information

When you visit the site, we collect technical information through analytics services:

  • IP address (temporarily stored)
  • City-level location (anonymized)
  • Device and browser type
  • General usage patterns (e.g. pages viewed, interaction timing)

Analytics data is anonymized and aggregated. We do not use this data to identify or track individuals.

b) Account Information

When you sign in using Google, we receive and store:

  • Your name and email address
  • Your Google profile picture
  • A unique account identifier

This information is used to authenticate your account and manage your subscription. We do not access your Google contacts, files, or any other Google account data.

When you sign in, we store your account data including login streaks and session statistics. This data is used to provide personalized features and track your activity.

c) Payment Information

Payments are processed by Stripe. We do not store or have access to your full credit card number, CVV, or other sensitive payment details. Stripe may collect and process payment data in accordance with their own Privacy Policy. We receive only a confirmation of payment status, subscription tier, and transaction identifiers.

d) Information You Voluntarily Provide

If you choose to use the contact form, we collect:

  • Your email address
  • Your message content

Providing this information is voluntary and used solely for responding to your inquiry.

4. Legal Basis for Processing (GDPR Article 6)

We process personal data under the following legal bases:

  • Legitimate interest: for anonymous analytics necessary to understand usage, maintain functionality, and improve the App. Also for sending product updates to existing users about similar features and services (you may opt out at any time).
  • Performance of a contract: for processing account and payment data necessary to provide paid services you have subscribed to, and for sending transactional communications (payment receipts, subscription changes).
  • Consent: for processing information submitted via the contact form. Consent can be withdrawn at any time.

5. How We Use Information

Collected information is used solely to:

  • Operate and improve the App
  • Authenticate users and manage accounts
  • Process payments and manage subscriptions
  • Monitor technical performance and stability
  • Respond to your messages and inquiries
  • Send account-related communications (subscription confirmations, payment receipts, service changes)
  • Send product updates and feature announcements (you may opt out at any time)
  • Prevent spam, abuse, and misuse

We do not use personal data for profiling or advertising.

6. Cookies and Local Storage

The App uses essential cookies required for basic functionality, such as session management and authentication. We also use browser sessionStorage and localStorage to remember your selected country, preferences, and custom data sources during a session. We do not use Google Analytics or any third-party advertising or tracking cookies. Third-party services (Stripe) may set their own cookies in accordance with their respective policies when you interact with payment flows.

7. Analytics and Tracking

We operate first-party, server-side analytics. No third-party analytics scripts, no tracking pixels, no advertising identifiers, and no cross-site tracking. For each page request our server records the path, the country derived from your IP (via geolocation headers), the device class (desktop / tablet / mobile) inferred from the User-Agent string, and the referring domain (without path or query string). To estimate unique daily visitors we hash IP + User-Agent with a server-side salt that rotates every 24 hours; the resulting 64-bit hash cannot be reversed and resets each day, so visitors cannot be tracked across days. Your raw IP address is never stored. We also record account-lifecycle events (sign-up, sign-in, subscription change, deletion) in the same database for product metrics.

8. Data Sharing

We do not sell or rent personal data.

Data may be processed by third-party service providers (hosting, authentication, payment processing) under appropriate data protection safeguards. Key third-party processors include Google (authentication via Google Sign-In), Stripe (payments), Open-Meteo (weather data), OpenFreeMap (map tiles), Digitraffic (maritime AIS data), and TLE/satellite tracking APIs.

The App connects to third-party data providers to display weather, aviation, maritime, satellite, and map information. These connections may expose your IP address to those providers. When using Custom API connectors (Pro feature), your browser connects directly to URLs you configure — we do not proxy or store this data.

Data may be disclosed if required by law, or where necessary to protect our rights, safety, or property.

9. International Data Transfers

Some of our third-party service providers, including Google and Stripe, are based outside the European Economic Area. Where personal data is transferred outside the EEA, we rely on appropriate safeguards such as Standard Contractual Clauses or the service provider's compliance with applicable data protection frameworks.

10. Data Retention

  • Account data is retained for as long as your account is active. You may request account deletion at any time.
  • Payment records are retained as required by applicable tax and financial regulations.
  • Analytics data is retained according to each service provider's retention policies.
  • Contact form data is retained only as long as necessary to respond to your inquiry, or until deletion is requested.

11. Data Security

We apply reasonable technical and organizational measures to protect data. Payment data is handled entirely by Stripe and never touches our servers. However, no system can guarantee absolute security.

12. Your Rights Under GDPR

You have the right to:

  • Access your personal data
  • Request correction of inaccurate data
  • Request deletion of your data and account
  • Request data portability
  • Withdraw consent at any time
  • Lodge a complaint with your local data protection authority

Requests can be made by emailing hello@airveto.com or via the contact page.

13. Children's Privacy

The App is not intended for children under 16, and we do not knowingly collect personal data from children. If you believe a child under 16 has provided us with personal data, please email hello@airveto.com so we can delete it.

14. Changes to This Policy

This Privacy Policy may be updated. We will update the "Last updated" date at the top of this page. Continued use of the App constitutes acceptance of the updated policy.

15. Contact Us

For inquiries or any other questions, email us at hello@airveto.com or use the contact page.