Privacy Notice
Last updated: 6/4/2025
Quick Navigation
This Privacy Notice explains how Velox collects, uses, discloses, and safeguards your personal information when you use our multi-route optimization delivery application with escrow features in Canada and the United Kingdom. This Notice complies with the Personal Information Protection and Electronic Documents Act (PIPEDA) for Canadian users and the UK General Data Protection Regulation (UK GDPR) for UK users.
Information We Collect
Identity and Contact Information:
- Full name, email address, phone number
- Profile picture (optional) and mailing address
- Account credentials (securely hashed passwords)
- Age verification data to ensure eligibility
Location Data:
- Real-time GPS coordinates during deliveries for route optimization
- Saved addresses (home, work, common pickup/drop-off locations)
- IP address for approximate location and security purposes
Payment Information:
- Billing address and payment method details
- Bank account or e-wallet details for driver payouts
- Transaction history and escrow payment records
Delivery-Related Information:
- Pickup and drop-off locations, item descriptions
- Delivery status and proof of delivery (photos, signatures)
- Communication logs between users
How We Use Your Information
Service Delivery:
- Process delivery requests and route optimization
- Facilitate escrow payments between senders and drivers
- Provide real-time tracking and delivery confirmations
- Verify user accounts and ensure eligibility
Account Management:
- Manage your account and preferences
- Send security alerts and account updates
- Personalize your experience with saved addresses and settings
Security and Fraud Prevention:
- Verify user identity and prevent unauthorized access
- Detect suspicious activity and investigate disputes
- Comply with legal obligations and law enforcement requests
Legal Bases for Processing
For Canadian Users (PIPEDA):
We rely on your consent to collect, use, and disclose personal information. By creating an account and using our service, you consent to the collection and use of your information as described in this notice.
For UK Users (UK GDPR):
- Performance of Contract: To fulfill our delivery service agreement
- Legal Obligation: To comply with tax reporting and legal requirements
- Legitimate Interests: For security, fraud prevention, and service improvement
- Consent: For marketing communications and optional features
How We Share Your Information
We do not sell your personal information. We may share your information in the following circumstances:
- Service Providers: Payment processors, cloud hosting, and verification services
- Within the App: Essential delivery information shared between senders, drivers, and receivers
- Legal Requirements: When required by law, court orders, or regulatory compliance
- Business Transfers: In case of merger or acquisition (with equivalent privacy protections)
- Aggregated Data: Anonymous, de-identified data for research and analytics
Data Retention
We retain your personal information only as long as necessary for the purposes outlined above:
- Account Information: Duration of account plus up to 5 years after closure
- Transaction Data: 7 years (Canada) or 6 years (UK) for tax compliance
- Delivery Records: 2 years (Canada) or 5 years (UK) for dispute resolution
- Support Records: Until resolution plus 3 years for audit purposes
Your Privacy Rights
Canadian Users
- • Right to access your personal information
- • Right to correct inaccurate information
- • Right to withdraw consent
- • Right to file complaints with Privacy Commissioner
UK Users
- • Right of access and data portability
- • Right to rectification and erasure
- • Right to restrict processing
- • Right to object and file complaints with ICO
Security Measures
We implement comprehensive security measures to protect your information:
Technical Safeguards:
- TLS/SSL encryption for data in transit
- Encryption of sensitive data at rest
- Hashed and salted password storage
- Regular security assessments and penetration testing
Organizational Safeguards:
- Role-based access controls
- Multi-factor authentication for employees
- System access logging and monitoring
- Data minimization and retention policies
International Data Transfers
We may transfer your personal information to service providers in other countries to operate our service. For such transfers, we ensure:
- Adequate protection through contractual safeguards
- Compliance with EU Standard Contractual Clauses where applicable
- Use of processors with equivalent security standards
Cookies and Tracking
We use cookies and similar technologies to:
- Enable core functionality (strictly necessary cookies)
- Analyze usage patterns (performance cookies)
- Remember your preferences (functional cookies)
- Deliver relevant advertisements (with your consent)
You can manage cookie preferences through your browser settings or our cookie preference center.
Children's Privacy
Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we learn that we have collected such information, we will delete it immediately.
Contact Information
To exercise your privacy rights or if you have questions about this Privacy Notice, please contact us:
Privacy Inquiries
You can reach us through our contact form or our support team for any privacy-related questions or to exercise your rights.
We will respond to verified requests within 30 calendar days.
Updates to This Notice
We may update this Privacy Notice from time to time. We will notify you of any material changes via email or in-app notification. Your continued use of our service after changes are posted constitutes acceptance of the updated notice.
Acknowledgment
By using our service, you acknowledge that you have read, understood, and agree to this Privacy Notice and consent to the collection, use, and processing of your personal information as described herein.