Information We Collect

We collect the following categories of personal information:

• Contact and account information (e.g., name, phone number, email address)

• User preferences and communication history

• Notes from caregivers

• Call recordings and transcriptions (when applicable)

• System usage data, including logs and analytics

Cookies and Other Information Collected by Automated Means

We, our service providers, and our business partners may automatically collect and log information about you, your computer, and activity occurring on or through the Service. The information that may be collected automatically includes your computer type and version number, manufacturer and model, device identifier (such as the Google Advertising ID or Apple ID for Advertising), browser type, screen resolution, IP address, the website you visited before browsing to our website, general location information such as city, state or geographic area; and information about your use of and actions on the Service, such as pages or screens you viewed, how long you spent on a page or screen, navigation paths between pages or screens, information about your activity on a page or screen, access times, and length of access.

On our webpages, this information is collected using cookies, browser web storage (also known as locally stored objects, or "LSOs"), web beacons, and similar technologies. Our emails may also contain web beacons.

Referrals

Users of the Service may have the opportunity to refer friends or other contacts to us. If you are an existing user, you may only submit a referral if you have permission to provide the referral's contact information to us so that we may contact them.

How We Use Your Personal Information

We use your personal information for the following purposes:

• To provide, operate, and improve the Service

• To communicate with you, including sending service-related notices

• To deliver support, updates, and engagement features

• To understand usage trends and user behavior

• To enhance and personalize the experience

• For legal compliance and fraud prevention

How We Share Your Personal Information

We do not share personal information except:

• With service providers performing services on our behalf

• With professional advisors (e.g., legal, accounting, insurance)

• In connection with legal obligations or rights

• With partners (when permitted)

• As part of business transfers (e.g., mergers or acquisitions)

Your Choices

Access or Update Your Information: you can contact support@heyvelma.com.

Marketing Communications: You can unsubscribe via the link in emails or email us at support@heyvelma.com.

Cookies: You can adjust browser settings or use privacy plugins.

Analytics and Ads: We use Google Analytics and similar tools. You can opt out using tools at https://tools.google.com/dlpage/gaoptout and related opt-out sites.

Do Not Track: We do not respond to DNT signals.

GDPR Notice

This notice applies to individuals in the EU, EEA, and UK.

Controller

Vardo, Inc. ("Velma") is the data controller.

Legal Bases for Processing

• Contractual necessity: To operate the Service.

• Business purposes: For research and development, fraud prevention, security enhancement, and creation of de-identified or aggregated data sets as permitted under California law.

• Compliance with law: When required.

• Consent: When expressly given.

Use for New Purposes

We may use data for purposes compatible with those described in this Privacy Policy. For any materially different purpose, we will notify you and, where required by law, obtain your explicit consent before such processing.

Sensitive Personal Information

We do not actively collect or request sensitive personal information. If you voluntarily submit such information, we will process it only as necessary for the services and in accordance with applicable laws and regulations.

Retention

We retain data as needed for operational, legal, or compliance purposes. When no longer needed, we delete or anonymize it.

Your Rights (EU/EEA/UK Users)

You may request:

• Access

• Correction

• Deletion

• Transfer

• Restriction

• Objection

For privacy-related inquiries and requests regarding your data rights, please contact our Data Protection Officer at privacy@heyvelma.com or our support team at support@heyvelma.com.

You may also lodge complaints with your local data protection authority, including the California Privacy Protection Agency (CPPA) or the Federal Trade Commission (FTC).

Cross-Border Data Transfers

International data transfers, including transfers outside of Europe and the United States, may occur via:

• Standard Contractual Clauses

• User consent

• Other lawful mechanisms, including legally recognized data transfer frameworks and safeguards required by applicable laws

Contact us for more details.