Privacy Policy

1. Introduction

AppsyStudios OÜ ("Company," "we," "us," or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our VELO mobile application ("the App").

This Privacy Policy complies with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

2. Data Controller

3. Information We Collect

3.1 Personal Information

We collect the following personal information:

• Account Information: Name, email address, phone number, company name
• Business Information: Business address, tax identification number, bank details
• Customer Data: Information about your customers that you enter into the App
• Financial Data: Invoice amounts, payment history, transaction records

3.2 Technical Information

• Device information (model, operating system, unique device identifiers)
• Log data (IP address, access times, app features used)
• Usage data (how you interact with the App)
• Crash reports and performance data

3.3 Payment Information

When using Tap to Pay features, payment card information is processed securely through Apple's payment infrastructure. We do not store complete card numbers on our servers.

4. How We Use Your Information

We use your information for the following purposes:

• Service Provision: To provide, maintain, and improve the App
• Account Management: To create and manage your account
• Communication: To send service-related notifications and updates
• Payment Processing: To facilitate payment transactions
• Analytics: To understand how users interact with the App
• Legal Compliance: To comply with legal obligations
• Security: To detect and prevent fraud and abuse

5. Legal Basis for Processing (GDPR)

Under GDPR, we process your data based on:

• Contract Performance: Processing necessary to fulfill our service agreement with you
• Legitimate Interests: Processing for our legitimate business interests (e.g., improving our services)
• Legal Obligation: Processing required by law (e.g., tax records)
• Consent: Where you have given explicit consent for specific processing activities

6. Data Sharing and Disclosure

We may share your information with:

• Service Providers: Third-party vendors who assist in operating the App (cloud hosting, analytics, payment processing)
• Payment Processors: Apple Pay and other payment service providers
• Legal Requirements: When required by law or to protect our rights
• Business Transfers: In connection with a merger, acquisition, or sale of assets

We do not sell your personal information to third parties.

7. International Data Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer data outside the EEA, we ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses approved by the European Commission
• Adequacy decisions by the European Commission
• Other legally approved transfer mechanisms

8. Data Retention

We retain your personal data for as long as necessary to:

• Provide our services to you
• Comply with legal obligations (e.g., tax records must be kept for 7 years)
• Resolve disputes and enforce agreements

When data is no longer needed, we securely delete or anonymize it.

9. Your Rights (GDPR)

Under GDPR, you have the following rights:

• Right of Access: Request a copy of your personal data
• Right to Rectification: Request correction of inaccurate data
• Right to Erasure: Request deletion of your data ("right to be forgotten")
• Right to Restriction: Request limited processing of your data
• Right to Data Portability: Receive your data in a structured, machine-readable format
• Right to Object: Object to processing based on legitimate interests
• Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent

To exercise these rights, contact us at info@itsappsy.com. We will respond within 30 days.

10. Data Security

We implement appropriate technical and organizational measures to protect your data, including:

• Encryption of data in transit and at rest
• Secure authentication mechanisms
• Regular security assessments
• Access controls and employee training
• Incident response procedures

11. Cookies and Tracking

The App may use cookies and similar tracking technologies to:

• Remember your preferences
• Analyze App usage
• Improve our services

You can manage cookie preferences through your device settings.

12. Children's Privacy

The App is not intended for children under 18 years of age. We do not knowingly collect personal information from children. If we learn we have collected data from a child, we will delete it promptly.

13. Third-Party Links

The App may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to read their privacy policies.

14. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. Continued use of the App after changes constitutes acceptance of the updated policy.

15. Supervisory Authority

If you believe we have not adequately addressed your privacy concerns, you have the right to lodge a complaint with a supervisory authority. For Estonia, this is:

16. Contact Us

For questions about this Privacy Policy or our data practices, please contact us: