Trust & Safety

Security

We take the security of your data and our platform seriously. Here's how we protect both, and how you can help.

Data in transit

All traffic to vinly.eu is served exclusively over HTTPS with modern TLS. Requests on the insecure http:// and www. hosts are permanently redirected to the canonical secure address.

Minimal data footprint

VIN lookups are processed in real time. We don't require an account to run a check, and we don't build a personal profile around the VINs you enter.

Infrastructure

• Encrypted connections to all upstream data providers.
• Cross-site request forgery (CSRF) protection on every form submission.
• Response compression and hardened HTTP headers.

Reporting a vulnerability

If you discover a security issue, please report it privately so we can fix it before it is disclosed. Email security@vinly.eu with steps to reproduce. We're grateful to researchers who help keep Vinly safe and will acknowledge valid reports.

Please do not

• Run automated scans that degrade service for other users.
• Access, modify or delete data that isn't yours.
• Publicly disclose an issue before we've had a chance to address it.