Privacy Policy
1. Introduction
Vellunox LLC ("Vellunox," "we," "us," or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Services.
This policy applies to information we collect through our website (vellunox.com), applications, AI assistants (Aria, Ava, Lucas), and all related services.
🔒 Our Commitment: Your privacy is not just a policy—it's a fundamental principle of how we build and operate Vellunox. We never sell your personal data.
2. Information We Collect
2.1 Information You Provide
- Account Information: Name, email address, phone number, password (encrypted)
- Profile Information: Profile picture, preferences, settings
- Payment Information: Billing address, payment method (processed by secure payment processors)
- Communications: Messages you send to our AI assistants, support requests
- Content: Documents, files, and other content you upload
2.2 Information Collected Automatically
- Device Information: IP address, browser type, operating system, device identifiers
- Usage Data: Pages visited, features used, time spent, click patterns
- Log Data: Access times, error reports, referring URLs
- Location Data: General geographic location (based on IP address)
2.3 Information from Third Parties
- Social Logins: If you sign in via Google, Microsoft, etc.
- Integrations: Data from services you connect (with your permission)
- Analytics Partners: Anonymized usage statistics
3. How We Use Your Information
We use your information to:
- Provide Services: Operate and deliver our AI platform and features
- Personalization: Customize your experience and AI interactions
- Communication: Send updates, security alerts, and support messages
- Transactions: Process payments and send confirmations
- Security: Detect fraud, protect accounts, ensure system integrity
- Improvement: Analyze usage to improve our Services
- AI Training: Improve our AI models using anonymized, aggregated data
- Legal Compliance: Comply with applicable laws and regulations
⚠️ Important: We DO NOT use your personal conversations with our AI assistants to train models. Your conversations are private.
4. How We Share Your Information
We may share your information with:
| Recipient | Purpose | Data Shared |
|---|---|---|
| Service Providers | Help us operate (hosting, payments, analytics) | As needed to provide service |
| Legal Authorities | When required by law or to protect rights | As legally required |
| Business Partners | With your explicit consent | Only what you approve |
| Business Transfers | Mergers, acquisitions, or asset sales | Subject to this policy |
🚫 We DO NOT sell your personal information. Never have, never will.
5. Data Retention
We retain your data for as long as:
- Your account is active
- Needed to provide our Services
- Required by law (up to 7 years for financial records)
- Necessary for legitimate business purposes
After account deletion, we may retain certain anonymized data for analytics and research purposes.
6. Data Security
We implement industry-leading security measures:
- Encryption: 256-bit SSL/TLS for data in transit, AES-256 for data at rest
- Infrastructure: Enterprise-grade Azure data centers with 24/7 monitoring (SOC 2 controls implemented)
- Access Controls: Role-based access, multi-factor authentication
- Auditing: Regular security audits and penetration testing
- Incident Response: Documented procedures with 72-hour breach notification
See our Security Policy for more details.
7. Your Privacy Rights
Depending on your location, you have rights including:
| Right | Description |
|---|---|
| Access | Request a copy of your personal data |
| Correction | Update inaccurate or incomplete data |
| Deletion | Request deletion of your data ("right to be forgotten") |
| Portability | Receive your data in a portable format |
| Objection | Object to certain types of processing |
| Restriction | Request limited processing of your data |
| Withdraw Consent | Opt out of marketing communications |
To exercise these rights, contact us at: privacy@vellunox.com
8. California Privacy Rights (CCPA/CPRA)
California residents have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):
- Right to Know: What personal information we collect and how it's used
- Right to Delete: Request deletion of your personal information
- Right to Opt-Out: Of the "sale" of personal information (we don't sell data)
- Right to Non-Discrimination: Equal service regardless of privacy choices
- Right to Correct: Inaccurate personal information
- Right to Limit Use: Of sensitive personal information
We do not sell personal information. We do not use or disclose sensitive personal information for purposes other than providing our Services.
9. European Privacy Rights (GDPR)
If you are in the European Economic Area (EEA), UK, or Switzerland:
- Legal Bases: We process data based on consent, contract performance, legal obligations, or legitimate interests
- Data Transfers: We use Standard Contractual Clauses for transfers outside the EEA
- Supervisory Authority: You have the right to lodge a complaint with your local data protection authority
- Data Protection Officer: Contact dpo@vellunox.com
10. Cookies and Tracking
We use cookies and similar technologies to:
- Keep you signed in
- Remember your preferences
- Analyze how you use our Services
- Improve performance
You can manage cookies through your browser settings or our cookie consent banner. See our Cookie Policy for details.
11. Children's Privacy
Our Services are not intended for children under 13 years old (or 16 in the EU). We do not knowingly collect personal information from children.
If you believe a child has provided us with personal information, please contact us immediately at privacy@vellunox.com. We will take steps to delete such information.
12. International Data Transfers
Your data may be transferred to and processed in countries other than your own, including the United States. We ensure appropriate safeguards are in place:
- Standard Contractual Clauses (SCCs)
- Binding Corporate Rules where applicable
- Privacy Shield certification (for historical transfers)
13. Third-Party Links
Our Services may contain links to third-party websites. We are not responsible for the privacy practices of these sites. We encourage you to read their privacy policies.
14. Changes to This Policy
We may update this Privacy Policy periodically. When we make material changes, we will:
- Update the "Last Updated" date
- Notify you via email
- Display a prominent notice on our website
Continued use of our Services after changes constitutes acceptance of the updated policy.
15. Contact Us
For privacy inquiries, requests, or concerns:
Vellunox LLC
Privacy Officer
8 The Green, Suite A
Dover, DE 19901
United States
Email: privacy@vellunox.com
DPO: dpo@vellunox.com
We will respond to all requests within 30 days (or sooner as required by law).