Veenv Privacy Policy

Last updated: October 4, 2025

Who we are

Veenv, Inc. ("Veenv," "we," "us," "our") builds privacy‑first, compliance‑aligned technology that keeps systems at the right fit for the work. This Privacy Policy explains how we collect, use, disclose, and protect information when individuals interact with:

  • The veenv.com website and pages that link to this Policy.
  • Contact forms, investor interest forms, and career applications submitted to Veenv.
  • Private previews or pilot programs that are expressly governed by this Policy until a separate agreement is in place.

If a separate written agreement (e.g., NDA, data processing agreement) applies, that agreement will govern to the extent of any conflict.

How to contact us

Email:

All inquiries, including security and data protection matters, should be directed to the email address above.

Scope and audience

This Policy covers visitors, prospective customers/partners/investors, and job applicants. It does not cover third‑party websites or services linked from our properties.

Our privacy principles

  • We minimize personal data collection and use de‑identification where feasible.
  • We do not monitor individuals' behavior for surveillance.
  • We align practices with applicable regulations and honor user rights.

Key definitions

  • "Personal Data" means any information that identifies or can reasonably be linked to an identifiable person.
  • "Process/Processing" means any operation performed on Personal Data.
  • "Controller" (GDPR/UK GDPR) means the entity that determines the purposes and means of Processing. Veenv is the Controller for website, contact, investor, and applicant data.
  • "Processor" means an entity that processes Personal Data on behalf of a Controller.

What we collect

We collect the following categories, depending on how you interact with us:

  • Identifiers: name, email address, phone (if provided), company/organization, role/title, location/region.
  • Communications: messages submitted via forms or email, meeting notes you choose to share, and application materials (resume/CV, portfolio links).
  • Device/usage data: IP address, basic device and browser information, and limited, privacy‑respecting analytics (see "Cookies and similar technologies").
  • Career application data: information you submit in an application (e.g., background, work history, links); optional demographic data only if explicitly asked and permitted by law.
  • Security/operational data: minimal logs to maintain the availability and security of the site and forms.

We do not intentionally collect sensitive categories (e.g., health, precise geolocation, government IDs) through public pages. Do not include sensitive information in free‑text fields.

Sources of information

  • Directly from you (forms, email, documents you upload).
  • Automatically from your device (basic logs/analytics; see Cookies section).
  • From referral partners or professional contacts when introductions are made with your consent.

Why we use information (purposes)

  • Provide, secure, and improve the website and forms.
  • Respond to inquiries (sales/private preview, investor interest, partnerships, press, security, support).
  • Evaluate job applications and manage hiring processes.
  • Maintain security, prevent abuse, and comply with laws.
  • Perform core business operations (e.g., accounting, recordkeeping).
  • With your permission, send communications related to previews or roles you explicitly requested.

We do not sell Personal Data. We do not use Personal Data for automated decisions that produce legal or similarly significant effects without human involvement.

Legal bases (GDPR/UK GDPR)

Where these laws apply, we rely on:

  • Legitimate interests (e.g., secure and operate the site; respond to inquiries).
  • Contract (e.g., steps at your request prior to entering into an agreement).
  • Consent (e.g., certain communications or optional cookies where required).
  • Legal obligation (e.g., compliance and recordkeeping).

Sharing and disclosures

We share Personal Data only as needed:

  • Service providers (Processors): hosting, email delivery, analytics, applicant tracking, security. They may use data only to provide services to Veenv and must follow confidentiality and security obligations.
  • Corporate transactions: if Veenv is involved in a merger, acquisition, or asset transfer, data may be transferred subject to continuing protections.
  • Legal compliance and safety: to comply with law, lawful requests, or to protect Veenv, our users, or the public from harm.

We do not sell or "share" Personal Data for cross‑context behavioral advertising as those terms are defined under U.S. state privacy laws.

International transfers

We may store or process data in the United States and other countries. When transferring Personal Data from the EEA/UK/Switzerland, we rely on appropriate safeguards (e.g., EU Standard Contractual Clauses, UK IDTA/Addendum) and implement supplementary measures where appropriate.

Retention

We keep Personal Data only as long as necessary for the purposes described or as required by law. Typical retention examples:

  • Contact/inquiry records: up to 24 months from last interaction.
  • Investor and partnership correspondence: up to 36 months from last interaction.
  • Applicant records: generally 24 months from the close of a role unless law requires longer (or shorter on request, where permitted).
  • Security logs: short, operational windows unless needed for investigations.

Your privacy choices and rights

Depending on your location, you may have rights to:

  • Access, correct, or delete your Personal Data.
  • Object to or restrict certain processing.
  • Port your data to another service (where technically feasible).
  • Withdraw consent at any time (where consent was the basis).
  • Opt out of targeted advertising (not used), sale, or certain profiling (not performed).
  • Lodge a complaint with a supervisory authority (EEA/UK) or attorney general (U.S. states).

To exercise rights, email with your request and region. We will verify your request and respond within applicable timelines. Authorized agents may submit requests where allowed by law.

Do Not Track and universal opt‑out

Some browsers send "Do Not Track" or support universal opt‑out signals. Where required by law, we honor valid universal opt‑out mechanisms for applicable activities. Because we do not sell Personal Data or use it for cross‑context behavioral advertising, such signals generally have limited effect on our services.

Cookies and similar technologies

  • Essential: required for site security and basic operation.
  • Functional/analytics: privacy‑respecting measurement to understand aggregate usage (no surveillance of individuals).
  • Advertising: not used.

Where required, we request consent for non‑essential cookies. You can control cookies through your browser and, where available, our preferences banner. Disabling certain cookies may impact site functionality.

Security

We use administrative, technical, and organizational safeguards appropriate to the risk, including encryption in transit, access controls, least‑privilege practices, and monitoring for abuse. No security measures are perfect; if we learn of a breach impacting your Personal Data, we will notify you and regulators as required by law.

Children's privacy

Our services are not directed to children under 16, and we do not knowingly collect Personal Data from them. If you believe a child has provided Personal Data, contact and we will delete it as required.

Candidate and employee privacy

Job applicant data is used only for recruiting and hiring (and, if hired, becomes part of the employment record governed by internal policies). We may ask for lawful equal opportunity information in certain jurisdictions; sharing such data is optional where permitted.

Third‑party services and links

Our site may link to third‑party sites or services. Their privacy practices are governed by their own policies. Review those policies before providing information.

Changes to this Policy

We may update this Policy from time to time. The "Last updated" date reflects the latest revision. Material changes will be communicated via the site or email when appropriate. Continued use of our services after changes indicates acceptance of the updated Policy.

Region‑specific notices

EEA/UK/Switzerland

  • Controller: Veenv, Inc.
  • Lawful bases listed above apply.
  • You may lodge a complaint with your local authority or the ICO (UK). We encourage contacting us first so we can address concerns.

United States (including California/CPRA and other state laws)

  • We do not sell or "share" Personal Data for cross‑context behavioral advertising.
  • Categories collected: identifiers, professional information, internet/usage data, application data.
  • Purposes: as listed above.
  • Disclosures for business purposes: service providers, security/operations, legal compliance.
  • Sensitive Personal Information: not sought through public pages; if voluntarily provided in applications where allowed, used only for lawful recruiting compliance and not for inferring characteristics.
  • Rights: access, deletion, correction, portability (where applicable), and appeal of decisions. Submit requests to .

Exercising rights or raising concerns

To request access, correction, deletion, or to exercise other rights, email and indicate your region. We will verify your identity (and authorization if acting as an agent) consistent with applicable law. If you disagree with our response, you may appeal by replying "Appeal" to our decision; we will review and respond within the required timeframe.

Contact

For all privacy inquiries: