Controller: Adel Ramzy, independent developer of VELORA Travel Companion, 44 avenue Duquesne, 75007 Paris, France. Privacy contact: ijako@me.com.
What VELORA processes
- Guest and security data: a random account identifier, authentication tokens and security/audit events needed to operate and protect the service.
- Optional account data: your email address and strongly hashed password when you create an account. The service cannot read your password.
- Travel data you choose to save: account profile, trips and saved places when those cloud features are used.
- Concierge requests: the message and destination needed to answer your request. Raw concierge messages are not retained in the current VELORA service; a limited security record may note that a request was processed without saving the message.
- Optional anonymous learning: destination, service category and interaction counts only after separate consent. VELORA does not send raw search text, an account identifier or a personal history with these signals.
- Purchase status: Apple processes App Store purchases. VELORA reads the verified entitlement needed to unlock the feature.
Device-only information
Personal preference scores and country-checklist progress stay on the device by default. You can turn personalisation off or reset what VELORA learned. Saved authentication tokens are protected in the iPhone Keychain.
Legal bases and purposes
Account and service data is processed to perform the service contract; security records and limited fraud-prevention data for legitimate interests in protecting users and the service; optional anonymous learning only with consent; and records required to meet legal obligations. VELORA does not sell personal data, build cross-app advertising profiles or track you across other companies’ apps and websites.
Recipients and providers
Apple services provide App Store purchases and map search/routing. Hostinger provides website and production infrastructure. Reference exchange requests may be sent to the stated rate provider. A provider receives only the information needed for that request and operates under its own published terms. Commercial integrations remain disabled until their licence, privacy and owner-approval checks pass.
Retention and deletion
Data is kept only as long as needed for the service, security and applicable legal obligations. In-app account deletion revokes active sessions and deletes the account record, trips and saved places from VELORA’s active service. Limited security or transaction records may be retained where legally required and then removed or anonymised.
Your choices and rights
You can use VELORA as a guest, decline anonymous learning, reset device personalisation, prepare an account-data export and delete your account in the app. Depending on your location, you may also request access, correction, deletion, restriction, portability or objection, and may complain to your data-protection authority.
Email ijako@me.com. Identity verification may be required before account data is disclosed or changed.
Children, transfers and changes
VELORA is not directed to children under 13 and does not knowingly create accounts for them. Providers may process requests outside your country; adequacy decisions, contractual safeguards or another lawful transfer mechanism are used where required. Material policy changes will be dated here and, when appropriate, explained in the app before they take effect.