Light
Dark
TRUST CENTRE

A trusted partner

Security, compliance and good corporate citizenship are the cornerstones of how we work at Veovo. We have a commitment to doing business the right way, adhering to data privacy and ethical business policies and complying with laws and regulations.

Our Trust Centre has all the information you need to feel confident in working with Veovo. If you don’t find what you’re looking for or have a specific question, please get in touch at go@veovo.com. We’ll be happy to help.

Report a security concern

If you have a potential security concern about a possible vulnerability or privacy breach in any of our software solutions or digital channels, please contact the security team of our parent company, Gentrack Group, on security@gentrack.com.

If you are reporting a sensitive issue, please encrypt your message using our security team’s GPG key: (ID: 0x1F0E5F9C, fingerprint: FF65 A7D2 E194 33F4 2184 703B 38AF 8680 1F0E 5F9C).

With your help, we can ensure that potential vulnerabilities are quickly investigated using our established security response procedures and any threats are eliminated without delay.

Our policies

Security Policy

ISO27001

Data Protection Policy

Cookie Policy

Anti Slavery Policy

MAC Address
Anonymization

At Veovo, we value the trust that our customers place in us by letting our people interact with their data and systems. We take our responsibility to protect and secure your information seriously and strive for transparency around our security practices.

We understand how critical security is to your business. Our customer-focused principles ensure that security continues to be a top priority for Veovo and our goal is to ensure that we retain your confidence in our products and services. We are committed to maintaining robust processes and operations that are designed around a core security ethos.

Security Obligations

All contracts signed with our customers clearly state our security obligations, along with those of the respective customer. These include but are not limited to:

  • The protection of customer data against unauthorised access
  • Confidentiality
  • Meeting legislative and regulatory requirements
  • Development, maintenance and testing of Business Continuity plans
  • Reporting and investigation of actual or suspected information security breaches
  • Security procedures including virus control measures, encryption, password control and continuity plans

Supporting our commitment to Information Security Management

To support our commitment to Information Security Management, Veovo and its owner, Gentrack Group, is an ISO/IEC 27001:2013 certified organisation. The approved administration systems apply to the following:

The provision of information security for the design, build and delivery of revenue and customer experience solutions to airports as per the statement of Applicability (V4 Dated 26/1/2021).

ISO/IEC 27001:2013 specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system.

It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organisation. The purpose of this international standard is to help organisations establish and maintain an information security management system to manage and control information and security risks as well as maintaining the integrity, protection, preservation and confidentiality of information.

The organisation was last certified in April 2021.

Data Protection Policy Statement

Veovo respects the privacy of visitors to this site and recognises the importance of protecting any personal information that you may provide to us. This statement sets out Veovo’s policy and principles regarding the use of personal information you provide when visiting this site or sending us an email. It also outlines how we use information that we may receive from third parties.

We are committed to protecting your privacy

Veovo is committed to ensuring that your privacy is protected. And should we ever ask you to provide certain information by which you can be identified when using this site, then you can be assured that it will only be used in accordance with this privacy statement.

Veovo may change its Website Privacy Policy over time. You can determine if this privacy policy has been revised since your last visit by referring to the “last updated” date at the bottom of the page.

Information we collect

The following information is collected via this site for temporary analysis, but is not retained by Veovo:

  • IP Addresses for visitors to the site
  • Name (First name and Surname)
  • Contact information including email address and phone number
  • Employment details including company name and job title relating to a job application or ‘Contact Us’ request.

Signing up for Veovo “News and Views”

If you subscribe to Veovo’s news and views, you will be asked to provide consent to use your email address for ongoing communications, including Veovo’s news and blog items relevant to your engagement with the business. You will always be given the opportunity to opt-out of these communications via a link within each email. Your email address will be removed from our database for all future communications and we will send a final acknowledgement when this process has been completed.

Downloading content from Veovo

By completing and submitting a request for downloading content, you are providing consent for Veovo to use your email address for ongoing communications, including Veovo’s news and blog items relevant to your engagement with the business. You will always be given the opportunity to opt-out of these communications via a link within each email. Your email address will be removed from our database for all future communications and we will send a final acknowledgement when this process has been completed.

Requesting Contact from Veovo

This site includes a Contact Us option for all visitors (see www.veovo.com/get-in-touch). By completing and submitting a Contact Us form, you are providing consent for Veovo to use your contact information for the purpose in which it was provided. Your personal contact data provided in the Contact Us form will be held in conjunction with our retention policy and will not be extended to use for Veovo News and Views and other communications unless specifically consented in the form submitted.

Applying for Veovo Jobs

If you are applying for a job, please follow the application guidelines provided in each of the roles advertised on this site. By applying for a role via this site and/or sending us your CV directly, you provide us with consent to use your information for the purpose of recruitment for Veovo or our group entities. If you are not selected for employment we will keep your information in line with our retention policy, in case of other opportunities, after which we will delete it. If you become an employee of, or otherwise work for Veovo, we will collect further personal information in addition to that described in this policy.

Cookies

Veovo collects certain information about you automatically when you use our site. Cookies allow Veovo to record certain information about you when you use the site, including details of your domain name, IP address, operating system and browser. This in turn will help us to understand your use of this site and enable the monitoring and improvement of the site to optimise your experience. If you would prefer to block cookies please refer to the instructions or help service on your internet browser.
Please also refer to our Cookie Policy which forms part of this Website Privacy Policy.

Retention and deletion

The data we collect will only be retained for as long as it is needed to carry out consented processes or services. Veovo has a retention schedule in place, deletions will be carried out in accordance with the schedule. Any personal information stored in hard copy format (in paper form) is treated as confidential and will be shredded at the point of deletion.

How we share your information

Veovo may share personal information, provided by you, with third parties, including Veovo group entities, subcontractors, partners, agents and any person who will use such information in the course of providing services to you and for the purposes that we specify. Where a third party is used for these specified reasons, such third-party vendors have agreed to maintain the confidentiality and security of information Veovo shares with them and will in turn adhere to General Data Protection Regulations (GDPR).

Veovo or our group entities may need to process your data outside of the European Union (EU). Veovo will ensure that any data sent to and stored outside of the EU is subject to the same levels of protection as data stored and processed within the EU.

Occasionally we may need to transfer your data to Third Party Vendors such as suppliers who provide business services to Veovo including IT providers. Job applicants please note that your data may be held on Veovo’s HR system (BambooHR) which is hosted by a third party. All personal data will only be transferred where there is a need to do so and these vendors will also be subject to agreements regarding the handling and use of your data.

We will not sell, distribute or lease your personal information to third parties unless we are required to do so by law, a regulator, rules of applicable stock exchange or in the course of legal proceedings.

When using this site you may be directed to other sites that are beyond Veovo’s control and there are links to other sites outside our service. This includes the Partner Area. Veovo is not responsible for and accepts no liability in relation to these sites and you should read the privacy policy statement of any new site you visit.

Security

We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place physical, electronic and managerial procedures to safeguard and secure the information we collect online.

Your rights

Data protection laws provide you with various rights. In particular, subject to certain exemptions, you have a right to:
• Request a copy of the information we hold about you
• Be removed from our marketing lists or change your marketing preferences
• Withdraw consent to our processing of your information (to the extent that such processing is based on consent) or otherwise object to our processing of your information
• Ask that we delete or correct the information that we hold about you.

To exercise any of these rights, or if you have any other questions about our use of your information, please contact the Veovo Marketing Team at go@veovo.com.

If you are unhappy with the way we have handled your information you have a right to complain to the Information Commissioner at https://ico.org.uk.

Other

We will hold your personal information on our systems for as long as is necessary for the relevant activity in accordance with our data retention policy or as long as is set out in any relevant agreement you enter into with us.

If you have any questions, complaints or comments regarding this site, including this policy, (or would like to stop receiving our communications altogether) please contact us by email at go@veovo.com.

The privacy of your data is extremely important to us, so we thought we’d give you some background on how we use cookies, but more importantly, to let you know what we don’t do with the data collected by cookies.

Cookies are small data files that websites generate and ask to store on your computer. Most websites use cookies in one form or another – the Veovo website is no exception.

We use cookies to:

  • Remember settings, so you do not have to keep re-entering them whenever you visit a new page;
  • Remember information you give to us through the Veovo website; and
  • Better understand how you use the website so we can make sure it meets your needs.

We do not use cookies to:

  • Collect any personal data about you (without your express permission)
  • Collect any sensitive personal data about you (without your express permission)
  • Pass data to advertising networks
  • Pass personal data to third parties.

Veovo Cookies

The cookies used by the Veovo website include:

  • Cookies set by Veovo to establish your permission for us to use cookies;
  • Cookies set by our web platform, WordPress, to enable admin functions, such as information about your browser settings, to determine which functionality to enable on the site, as well as to remember your choices. For example, if you filter a list of information, we will remember your choices and default to that selection if you visit the page again. These choices are not tied to any personally identifiable information.
  • Cookies for anonymous visitor statistics set by Matomo to identify which pages are being used and for how long. This helps us to map visitor journeys and analyse data about webpage traffic to improve our website and optimise the visitor experience. We only use this information for statistical analysis purposes and then the data is removed from the system. We do not link this information to your personal details.

Better browsing experiences

Overall, cookies help us provide you with a better website by enabling us to monitor which pages you find useful and which you do not. A cookie in no way gives us access to your computer or any information about you, other than the data you choose to share with us. Cookies expire after a set amount of time.

Giving us permission to use cookies

You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. This may prevent you from taking full advantage of the website.

If your browser is set to accept cookies, we take this, and your continued use of our site as acceptance of our Cookie Policy. If you wish not to accept the use of cookies, or to delete any that have already been set, you can find out how below.

Managing Cookies

If you want to, you can usually stop your browser accepting cookies from all sites, or stop accepting cookies from a particular website. However, as cookies are a standard part of most modern websites, remember that this may limit the functionality of not only our site but many others too.

You can find the tools to manage cookies in the ‘Preferences’ or ‘Tools’ menu of your browser, otherwise you should use the ‘Help’ option in your browser for more details.

To learn more about cookies and how to manage them, visit https://ico.org.uk/for-the-public/online/cookies/.

Data Privacy

Please also refer to our Privacy Policy.

Veovo, and its parent Gentrack Group, is a global software and services business with operations and customers across Europe, North America, Middle East, and Asia-Pacific. We are committed to the value of human rights and ensuring that all business is conducted according to ethical, professional and legal standards in a fair, honest and open manner. It is vital for us to maintain this reputation as it generates confidence in our business.

The Modern Slavery Act 2015 applies to all the Gentrack Group’s business operations in Europe, North America, Middle East, and Asia-Pacific (the “Company”).

Modern slavery is a crime and a violation of fundamental human rights. It takes various forms, such as:

  • Slavery, servitude (coercing someone to provide services) and forced and compulsory labour
  • Human trafficking (arranging or facilitating the travel or movement of a victim with a view to them being exploited)
  • Committing any offence with the intention to commit human trafficking
  • Aiding, abetting, counselling or procuring any of the above offences

All of these forms of modern slavery have in common the deprivation of a person’s liberty by another in order to exploit them for personal or commercial gain. The Company has a commitment to conduct its business and all its relationships based on integrity.

Veovo offers the BlipTrack system, which detects mobile devices, such as smartphones that have an activated Bluetooth or Wi-Fi radio. By mounting sensors in several locations and tracking the devices, specific and accurate statistical information, such as movement times and movement patterns, can be collected and analysed.

If Bluetooth or Wi-Fi in a mobile device is activated, the device frequently broadcasts its Bluetooth or Wi-Fi MAC address. A MAC address is a unique identifier used by the Bluetooth and Wi-Fi technology to enable communication between Bluetooth or Wi-Fi devices.

When a device with an activated Bluetooth or Wi-Fi radio passes a BlipTrack sensor, the device’s Bluetooth or Wi-Fi MAC address (6 bytes long) is captured. This information is not stored by the sensor but is immediately processed by a cryptographic hash algorithm (SHA256), which generates a 32-bytes hash value. Hashing is done using an 8-bytes salt1. The same salt is used by all the sensors within the system and a given MAC address processed by any sensor will always result in the same hash value.

This hash value is transferred securely to the BlipTrack server, where the received value is hashed again using a different 8-bytes salt. This salt is randomly generated every 24 hours and only stored in temporary server memory. No logs of previously used salts are kept.

The resulting hash value – consisting of 32 bytes – is truncated by the server to 8 bytes, after which the information is analysed.

Along with the final hash value, information on the location of the sensor, which captured the Bluetooth or Wi-Fi radio, and the strength of the signal is also processed along with a timestamp of when the Bluetooth or Wi-Fi MAC address was captured by the sensor.

Based on these data, it is possible to establish a link between devices and analyse movement times and movement patterns. The system can inter alia be used to perform the following analyses:

  • Time elapsed from a device being captured by one sensor to another sensor, which can be used to calculate the movement time between endpoints.
  • Duration of time where a device stays within reach of one sensor, which allows for the analyses of movement flow.
  • Identification of a device within the system to ascertain the taken route e.g., if the movement has occurred via certain points.

1. A salt is a random value added to the attribute being hashed.

Your next brilliant decision

Level up your airport performance with Veovo.

insights
© 2023 Veovo, All Rights Reserved