Privacy Policy

The controller for the processing described here is the operator of Veligo, named in full in our Impressum. The legal entity and postal address are listed there.

Controller

Add legal entity (see Impressum)

Privacy contact

hello@adatepe.dev

Data protection officer

Add DPO if legally required, otherwise remove

We try to collect as little as possible. Depending on how you use Veligo, this can include:

• Account data such as your email and authentication details, handled through our auth provider when you sign up. You can use the free drills as a guest with no account at all.
• Practice data such as drill results, timestamps and per-item reaction times. We treat this strictly as training and performance feedback, never as a medical or psychological diagnosis.
• Payment data when you buy Pro. Checkout runs through our payment provider, and we do not see or store your full card details.
• Technical data such as device and browser type, approximate region and a shortened IP address, used for security and aggregate analytics.

We rely on the following legal bases under Article 6 of the GDPR:

Art. 6 (1)(b) GDPR

Contract. We process account and purchase data to give you the account and the Pro access you signed up for.

Art. 6 (1)(a) GDPR

Consent. Non-essential cookies, optional analytics and any marketing email run only after you opt in, and you can withdraw at any time.

Art. 6 (1)(f) GDPR

Legitimate interest. Keeping the service secure, preventing abuse and understanding aggregate, privacy-friendly usage so we can improve the drills.

We use a small number of strictly necessary cookies to run the site and keep you signed in. Anything non-essential (optional analytics, for example) loads only after you agree through our consent banner.

Our banner follows TDDDG section 25: prior opt-in, an Accept and a Reject button shown with the same visual weight (no nudging toward one choice), and no pre-ticked boxes. For guests, your practice progress is saved in your browser local storage on your device and is never sent to us.

You can change or withdraw your choice at any time using the cookie settings below. Choosing Reject stops any non-essential cookies from running; Reset choice clears the saved setting (veligo:consent:v1) and brings the consent banner back on your next page load.

Where you consent, we use privacy-friendly, self-hosted analytics (Matomo or Plausible style). We do not run cross-site advertising trackers and we minimize or truncate IP addresses. Analytics help us see, in aggregate, which drills are used so we can improve them.

We use a few trusted providers to run Veligo, each bound by a data processing agreement under Article 28 GDPR. Typical roles:

• Authentication and account management.
• Database and hosting for your account and progress.
• Payment processing for one-time purchases.
• Privacy-friendly analytics, where consented.

List each named processor and its purpose before launch

We prefer providers in the EU or EEA. Where a provider processes data outside the EEA, we rely on an adequacy decision or the EU Standard Contractual Clauses together with appropriate safeguards.

Account data

Kept while your account exists. Deleted (or anonymized) after you close the account, subject to legal retention duties.

Practice and progress data

Kept while your account is active so you can see your trend. Guest progress lives only in your browser and never reaches our servers.

Payment records

Kept for the period required by tax and commercial law (typically several years), held by our payment provider.

Analytics

Minimized and retained only as long as needed to read aggregate trends, then aggregated or removed.

Under the GDPR (Articles 15 to 21) you have the right to:

• Access the personal data we hold about you.
• Have inaccurate data corrected.
• Have your data erased.
• Restrict or object to certain processing.
• Receive your data in a portable format.
• Withdraw consent at any time, without affecting prior processing.

To exercise any of these, email hello@adatepe.dev. You also have the right to lodge a complaint with a supervisory authority in your country or region.

All feedback in Veligo (speed, accuracy, predicted bands) is framed as practice and training only. We do not provide a medical, psychological or health diagnosis, and we do not knowingly collect special-category data under Article 9 GDPR.

Many candidates are young. Where consent is the legal basis, the applicable age is 16, and parental consent is needed below that age. A purchase by a minor requires the approval of a parent or guardian.

We may update this policy as the product or the law changes. The date at the top reflects the latest version. Material changes will be flagged in the product where appropriate.