Legal

Privacy Policy

Last updated: February 2026

ePets ("we," "us," or "our") operates the ePets platform, a veterinary management system connecting clinics and pet owners. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform.

1. Information We Collect

Account Information

When you create an account, we collect your name, email address, and authentication credentials. Authentication is managed through WorkOS AuthKit, which may collect additional identity verification data as described in their privacy policy.

Veterinary & Pet Data

Our platform stores veterinary records including pet profiles, visit records, health histories, prescriptions, diagnostic results, treatment plans, and hospitalization records. This data is entered by veterinary professionals and is accessible to authorized clinic staff and the pet's registered owner.

Payment Information

Payment processing is handled by Stripe. We do not store your full credit card number or banking details on our servers. We retain Stripe customer IDs, subscription status, and invoice records for billing purposes.

Usage & Analytics Data

We use PostHog to collect anonymized usage analytics, including page views, feature usage patterns, and performance metrics. This data helps us improve the platform. You can opt out of analytics tracking in your account settings.

Files & Uploads

Files uploaded to the platform (such as diagnostic images or documents) are stored securely on Amazon Web Services (AWS) S3 with encryption at rest.

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the ePets platform
  • Enable veterinary clinics to manage patient records and communicate with pet owners
  • Allow pet owners to access their pet's health records, prescriptions, and visit history
  • Process payments and manage subscriptions
  • Send transactional emails (invitations, confirmations, alerts)
  • Respond to your inquiries and support requests
  • Analyze usage patterns to improve features and user experience
  • Detect and prevent fraud or unauthorized access

3. How We Share Your Information

We do not sell your personal information. We share data only with the following service providers, each bound by data processing agreements:

ConvexCloud database & real-time sync
WorkOSAuthentication & identity
StripePayment processing
AWS S3File storage
ResendTransactional emails
PostHogAnalytics (anonymized)

Veterinary records may also be shared between clinics and pet owners as part of the platform's core functionality. Veterinary professionals can share specific records via QR codes or tokenized links with controlled access and expiration.

4. Data Security

We implement industry-standard security measures to protect your data:

  • Encryption in transit (TLS/HTTPS) and at rest
  • Secure authentication with multi-factor support via WorkOS
  • Role-based access control (RBAC) within veterinary organizations
  • Tokenized, time-limited shared record links
  • Regular security audits and monitoring
  • Automatic database backups

5. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

AccessRequest a copy of the personal data we hold about you
CorrectionRequest correction of inaccurate or incomplete data
DeletionRequest deletion of your account and associated data
ExportDownload your data in a portable format
ObjectionObject to certain types of data processing

To exercise any of these rights, please contact us at office@waypoint.com.my. We will respond within 30 days.

6. Cookies

We use essential cookies for authentication and session management. These are necessary for the platform to function and cannot be disabled. We do not use advertising or tracking cookies. Analytics data is collected via PostHog and can be opted out of.

7. Data Retention

We retain your account data and veterinary records for as long as your account is active. If you delete your account, we will remove your personal data within 30 days, except where retention is required by law or for legitimate business purposes (such as maintaining veterinary records as required by veterinary regulations).

8. Children's Privacy

ePets is not directed at children under the age of 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will promptly delete it.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting a notice on the platform or sending an email. Your continued use of ePets after changes are posted constitutes acceptance of the updated policy.

10. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

office@waypoint.com.myContact form