Privacy Policy

This Privacy Notice for Veya ("we," "us," or "our") describes how and why we might access, collect, store, use, and/or share ("process") your personal information when you use our services ("Services"), including when you:

• Download and use our mobile application (Veya), or any other application of ours that links to this Privacy Notice.
• Use Veya App — a booking platform for hairdressers and beauticians where clients can book appointments and receive notifications 24h and 1h before an appointment.
• Engage with us in other related ways (sales, marketing, events).

Questions or concerns? Contact us at [email protected].

Summary of key points

This summary highlights important items from the full notice below.

• What we collect — personal information you give us (names, phone numbers, emails).
• Sensitive info — we do not process sensitive personal information.
• Third parties — we do not collect information from third parties.
• How we use it — to provide and improve Services, communicate, prevent fraud, and comply with law.
• Security — we apply reasonable safeguards but cannot guarantee 100% security.

1. What information do we collect?

Personal information you disclose to us

We collect the information you voluntarily provide when you register or interact with our Services. This may include:

• Names
• Phone numbers
• Email addresses

Application & device data

If you use our applications, we may collect push notification preferences and other diagnostic or analytics information for troubleshooting and internal reporting.

Automatically collected information

We may automatically collect technical and usage data such as IP address, device characteristics, operating system, language preferences, referring URLs, pages viewed, timestamps, and other log data.

Booking & loyalty data

Booking practice data and loyalty points data are collected for service delivery and customer loyalty features; analyzed data is not tied to specific users when used for trends/analytics.

Images & media

We access photos only when a shop admin explicitly selects an image to upload (shop main photo, employee profile, or service image). Selected images may be cropped in-app and are uploaded only after the admin confirms. We do not scan or upload photos in the background. Device-side cached images are stored in the app's private directory and are not written to the public gallery. Images are used solely to display profiles, shop listings and services, and are not used for advertising or profiling.

2. How do we process your information?

We process personal information to provide and improve our Services, communicate with you, maintain security and fraud prevention, and comply with legal obligations. Examples:

• Account creation and authentication
• Delivering booked services
• Order, payment, and refund management
• User-to-user communications (if applicable)
• Requesting feedback
• Fraud prevention and diagnostics

3. What legal bases do we rely on?

We only process your information when we have a valid legal basis, such as:

• Consent — when you agree to processing for a specific purpose.
• Performance of a contract — to provide Services you request.
• Legitimate interests — for business purposes that don't override your rights (analytics, fraud prevention, service improvement).
• Legal obligations — to comply with laws or regulatory requests.
• Vital interests — to protect someone's safety in emergencies.

4. When and with whom do we share your personal information?

We may share information in narrow situations such as business transfers (merger, sale of assets), to comply with legal processes, or where required to provide Services. Any sharing is limited to what is necessary for the purpose and safeguarded contractually and technically.

5. How long do we keep your information?

We retain personal information only as long as necessary to fulfill the purposes described in this Notice, unless a longer retention is required by law. We generally do not keep personal information more than twenty-four (24) months after an account becomes idle unless needed for legal compliance or legitimate business reasons.

When we no longer need data, we delete or anonymize it, or isolate it in secure backups until deletion is possible.

6. How do we keep your information safe?

We implement reasonable technical and organizational measures to protect personal information. However, no system is 100% secure; transmission and storage risks remain. Use the Services within a secure environment.

7. What are your privacy rights?

Depending on your jurisdiction (EEA, UK, Switzerland, etc.), you may have rights including:

• Access and obtain a copy of your data
• Rectification or erasure
• Restrict processing
• Data portability
• Object to processing and automated decision-making

To exercise rights, contact us using the details in the Contact section. If located in the EEA/UK, you may also lodge a complaint with your data protection authority.

8. Controls for Do-Not-Track features

We do not currently respond to browser Do-Not-Track signals because there is no uniform standard. If required in future, we will update this policy.

9. Do we make updates to this notice?

Yes. We will update this Notice as needed. Material changes will be indicated by a revised date and may be communicated directly.

10. How can you contact us about this notice?

If you have questions, email us at [email protected]

11. How can you review, update, or delete the data we collect?

Depending on applicable law, you may request review, update, or deletion of your personal information. To request these actions, contact us at the email above. We will handle requests in accordance with applicable data protection laws.