Privacy Policy

Last updated: April 9, 2026

Introduction

This Privacy Policy explains how personal data is processed when you use myveles.com and the Veles application. It covers both data we process for our own purposes and, where applicable, data processed on behalf of our customers in connection with the service.

Controller and Roles

For the operation of myveles.com and our own customer, billing, legal, and support processes, the controller is: Giraffe Information Technology Marcin Stryjczak Pruszków, Poland VAT ID: PL5110210847 privacy@myveles.com When a Veles customer uses the application to store or manage personal data relating to its employees, clients, prospects, contacts, or projects, that customer is generally the controller of that data and Veles acts as a processor providing the software service.

Data We Process

Depending on how Veles is used, we may process: account and profile data such as name, email address, workspace membership, role, and authentication-related information; workspace content entered into the service, such as contacts, accounts, deals, project or delivery information, notes, invoices, and related operational records; technical, security, and usage data such as IP address, browser or device information, session data, service logs, referring pages, and aggregate analytics events about how the public site or product is used; communication and support data if you contact us; and billing or transaction data if payments are handled through Stripe or another payment provider.

Why We Use Data

We use personal data to provide and secure the service, authenticate users, manage workspaces and access rights, support customers, process payments where applicable, comply with legal obligations, understand how the public site and product are used at an aggregate level, and improve the reliability and administration of the service. Where required, we also rely on consent for specific optional technologies or communications. Our legal bases may therefore include performance of a contract, legitimate interests, legal obligation, and consent, depending on the processing activity.

Processors and Transfers

We use service providers where needed to operate Veles, including providers for hosting, infrastructure, authentication, database services, and payments. At the time of writing, this includes providers such as Vercel, Supabase, Cloudflare, and Stripe. Some providers may process data outside the European Economic Area. Where this occurs, we rely on appropriate safeguards required by applicable law, such as standard contractual clauses or equivalent lawful transfer mechanisms.

Retention

We keep personal data for as long as needed to provide the service, maintain the relevant customer relationship, comply with legal obligations, resolve disputes, and enforce agreements. Account and workspace data are generally retained while the relevant account or workspace remains active, and may then be deleted, anonymized, or retained for a limited period in backups or where required by law.

Your Rights

If GDPR applies, you may have the right to access your personal data, request rectification or erasure, restrict or object to certain processing, request data portability where applicable, and lodge a complaint with a competent supervisory authority. Where Veles acts only as a processor on behalf of a customer, requests relating to workspace content should usually be directed to the relevant customer as controller first.

Contact Us

If you have questions about this Privacy Policy or your data rights, contact us at: privacy@myveles.com

Built for teams that need more clarity and less operational fog.