Privacy Policy

Last updated: May 23, 2026 · velone.in

This Privacy Policy explains how Velone ("Velone", "we", "us") collects, uses, shares and protects personal data when you visit our website, create an account, or use our email sending platform and APIs (the "Service"). We aim to handle data lawfully, transparently and with respect for the people it concerns.

01 Scope & roles

Velone plays two roles depending on the data:

• Controller. For account, billing and website data, Velone decides why and how the data is processed and is the data controller.
• Processor. For the contents and recipients of email you send through the Service, you (our customer) are the controller and Velone acts as a processor, handling that data only on your documented instructions.

02 Data we collect

Account & billing data

Name, email address, organisation, password (stored only as a salted hash), API keys (stored hashed), and billing details processed by our payment provider. We do not store full card numbers.

Email data processed on your behalf

When you send through Velone we process the message — sender and recipient addresses, subject, headers, body, attachments — and delivery metadata such as timestamps, message IDs, bounce, complaint, open and click events. This is customer content; we process it to provide the Service and do not use it for our own purposes.

Technical & usage data

IP address, browser and device information, request logs, and product analytics needed to operate, secure and improve the Service and to detect abuse.

03 How we use data

• To provide, maintain and secure the Service and deliver your email.
• To authenticate users, manage API keys and prevent fraud and abuse.
• To monitor sending reputation, bounces and complaints, and to enforce our Acceptable Use Policy.
• To bill you and provide support.
• To send you essential service and security notices, and — where permitted — product updates you can opt out of.
• To comply with legal obligations and respond to lawful requests.

04 Legal bases

Where the GDPR or comparable laws apply, we rely on: performance of a contract (to deliver the Service), legitimate interests (security, abuse prevention, improving the Service), consent (optional marketing, certain cookies), and legal obligation (tax, compliance).

05 Data processed for customers

For email content and recipient data, Velone acts only on your instructions, applies appropriate security, assists with data-subject requests where reasonably possible, and deletes or returns the data on termination, subject to legal retention. Customers are responsible for having a lawful basis (such as recipient consent) to send the mail they send. Where required, we will enter into a Data Processing Addendum with you.

06 Sharing & subprocessors

We do not sell personal data. We share it only with service providers that help us run the Service, under contract and confined to what they need:

• Cloud hosting & database providers that store account and message data.
• Email sending infrastructure used to transmit your mail to recipient mail servers.
• Object storage for message bodies and attachments.
• Payment processing for billing.

We may also disclose data where required by law or to protect the rights, safety and security of Velone, our customers and the public.

07 International transfers

Our providers may process data in countries other than your own. Where we transfer personal data internationally, we use appropriate safeguards such as Standard Contractual Clauses or an equivalent lawful mechanism.

08 Retention

We keep account data for as long as your account is active and as needed to comply with legal obligations, resolve disputes and enforce agreements. Message content and delivery logs are retained for a limited operational window and then deleted or anonymised. You can request deletion of your account data as described below.

09 Security

We protect data with TLS encryption in transit, hashing of passwords and API keys at rest, tenant isolation, least-privilege access controls, and monitoring. No method of transmission or storage is perfectly secure, but we work to protect your data and to respond promptly to incidents.

10 Your rights

Depending on where you live, you may have the right to access, correct, delete, port, or restrict processing of your personal data, to object to certain processing, and to withdraw consent. To exercise these rights, email privacy@velone.in. If your data was sent to us by one of our customers, we will refer your request to that customer. You may also have the right to complain to your local data-protection authority.

11 Cookies

We use a small number of cookies and similar technologies that are strictly necessary to run the site and dashboard (for example, to keep you logged in) and, with your consent where required, basic analytics to understand usage. You can control cookies through your browser settings.

12 Changes & contact

We may update this policy from time to time. Material changes will be posted here with a new "last updated" date. Questions or requests: