Privacy Policy

Last updated: 6 June 2026

VisVelox respects your privacy. This policy explains what personal information we collect when you use this website, how we use it, and the rights you have under UK GDPR.

1. Information we collect

• Contact details you submit through the contact form, the draft request form, or by emailing us: name, email address, phone number (optional), business name (optional), business type, and a free-text project description.
• Verification cookies set during the email verification step of the draft request: an OTP cookie (10 minute lifetime) and a verified-email cookie (60 minute lifetime).
• Essential session cookies required for site security (no third-party tracking is used at this time).
• Server logs retained by our hosting provider Vercel, including IP address and request metadata, used to operate and secure the service.

2. How we use it

• To respond to enquiries and prepare your free draft.
• To send transactional emails (verification code, draft confirmation) via Resend.
• To prevent abuse of the contact and draft endpoints (rate limiting and basic spam protection).

3. How we store it

Form submissions are emailed directly to the VisVelox team and are not stored in a separate database on this site. We retain enquiry emails for as long as is reasonable for follow-up, typically up to twelve months.

4. Who we share it with

We share the minimum information required with operational sub-processors: Vercel (hosting), Resend (transactional email delivery), and Google Maps (when the contact map is loaded). We do not sell personal information.

5. Your rights

Under UK GDPR you can request access to, correction of, or deletion of personal information we hold about you. You may also object to processing or request portability. To exercise these rights, email hello@visvelox.com.

6. Cookies

We use only the cookies necessary to deliver the service. A notice is shown on first visit and your acknowledgement is stored locally in your browser. There are no advertising or cross-site tracking cookies at this time.

7. International transfers

Our sub-processors may store data outside the UK. Where this happens, transfers are governed by standard contractual clauses provided by the sub-processor.

8. Security

Traffic is encrypted in transit via HTTPS. We follow industry guidance on access control, rate limiting, and security headers (CSP, HSTS, X-Frame-Options).

9. Changes

This policy may be updated. The current version is always at this URL with the date of the most recent revision.

10. Contact

Questions about this policy can be sent to hello@visvelox.com or posted to VisVelox, Paul Street, London EC2A 4NA, United Kingdom.