Privacy Policy

Your trust is the foundation of everything we build. This Privacy Policy explains what information we collect when you use our Site or engage our services, how we use and protect it, and the choices and rights you have.

1. Scope of this policy

This policy applies to personal information we collect through the Site, through direct communication (email, phone, WhatsApp, Instagram), and in the course of providing our services to clients. It does not apply to third-party websites or platforms we link to, which operate under their own policies.

2. Information we collect

Information you give us

• Enquiry details — when you use our contact form or reach out, we collect your name, brand or business name, email address, phone number, the service you are interested in, your indicative budget, and your message.
• Communications — the content of messages you send us by email, WhatsApp, Instagram, or phone.
• Subscription details — your email address (and name, if provided) when you subscribe to updates or offers.
• Project materials — if you become a client, any content, brand assets, credentials, or information you share with us so we can deliver the work.
• Billing details — information required for invoicing and GST compliance (such as billing name, address, and GSTIN where applicable).

Information collected automatically

• Technical data — our hosting provider records standard server logs (such as IP address, browser type, device, and pages viewed) for security and performance.
• Cookies — small files used to help the Site function. See our Cookie Policy for details.

3. How our enquiry form works

Our website contact form does not store submissions on a server. When you submit it, the form opens your own email application with the details pre-filled and sends them to us by email. Your information therefore travels through your email provider to our inbox, where we then hold and process it as described below.

4. How we use your information

• To respond to your enquiries and provide quotes and proposals.
• To deliver, manage, and support the services you engage us for.
• To issue invoices and meet our tax, accounting, and legal obligations.
• To send you updates, offers, or newsletters where you have opted in.
• To operate, secure, maintain, and improve the Site.
• To prevent fraud or misuse and to enforce our terms.

5. Legal bases for processing

Where applicable law (including India’s Digital Personal Data Protection Act, 2023, and, for clients in those regions, the EU/UK GDPR) requires a legal basis, we rely on: your consent (e.g., marketing emails); performance of a contract (delivering services you request); legal obligations (e.g., tax records); and our legitimate interests (e.g., responding to enquiries, securing the Site), balanced against your rights.

6. Email marketing

We send marketing emails only to people who have opted in, using a third-party email platform (Hostinger Reach). Every marketing email includes an unsubscribe link, and you can opt out at any time. Unsubscribing does not affect essential service or transactional messages relating to an active project.

7. Sharing & service providers

We do not sell your personal information. We share it only as needed with trusted service providers who help us run our business, and only for those purposes. These currently include:

• Hostinger — website hosting and email marketing (Reach).
• Google — web fonts and Search Console.
• Meta platforms — Instagram and WhatsApp, where you choose to contact us through them.
• Payment channels — bank and UPI providers used to receive payments (we do not store card details on the Site).
• AI service providers — for clients who engage our AI Systems service, third-party AI model providers used strictly to deliver the agreed work.

We may also disclose information where required by law, regulation, or valid legal process.

8. International transfers

We serve clients worldwide, and some of our service providers operate outside India. Where your information is transferred across borders, we take reasonable steps to ensure it remains protected in line with this policy and applicable law.

9. How long we keep your data

We keep enquiry and contact information for as long as needed to respond and for a reasonable period afterwards (generally up to 24 months), unless you ask us to delete it sooner. Financial and tax records are retained for the periods required under Indian law. When data is no longer needed, we delete or anonymise it.

10. Data security

We apply reasonable technical and organisational measures to protect your information. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

11. Your rights

Subject to applicable law, you may request to access, correct, update, or delete your personal information, withdraw consent, or object to certain processing. To exercise any right, email legal@veloraswift.com. We will respond within a reasonable time. If you are not satisfied, you may have the right to complain to the relevant data protection authority.

12. Children’s privacy

Our Site and services are intended for adults (18 years and older) and for businesses. We do not knowingly collect personal information from children. If you believe a child has provided us information, please contact us so we can remove it.

13. Third-party links

Our Site and communications may link to third-party websites or platforms. We are not responsible for their content or privacy practices, and we encourage you to read their policies.

14. Changes & contact

We may update this policy from time to time. The “last updated” date above reflects the latest version, and material changes will be posted on this page.

For privacy questions or requests, contact our grievance contact, Avneet Kaur, at legal@veloraswift.com, or at the registered office listed at the top of this page.