Privacy Policy

Velowork AI ("Velowork," "we," "us," or "our") operates the Velowork App at app.velowork.ai, including the Velowork browser extension and Fluency Desk. We are based in Danville, New Hampshire, United States.

This Privacy Policy describes how we collect, use, share, and retain information when you use our services. It also explains important limitations on our responsibilities.

By using our services, you agree to this Privacy Policy and our Terms of Service at app.velowork.ai/terms. If you do not agree, do not use our services.

Velowork provides software and educational guidance to help teams understand workflow patterns and learn about automation concepts. We do not provide legal, tax, accounting, medical, security, or other professional advice.

We may reference or link to third-party products and services — including Anthropic (Claude), OpenAI, Google, Slack, HubSpot, Stripe, and others. We do not require you to use any third-party tool. Any decision to sign up for, connect, or rely on a third-party service is yours alone.

If you choose to use third-party tools, your use is governed by those providers' own terms, privacy policies, and security practices — not ours. You are responsible for reviewing and accepting them before you connect an account or send data to a third party.

Fluency Desk and related content are general how-to guidance only. Outputs from AI features may be inaccurate or incomplete. You must independently verify anything before acting on it.

We use commercially reasonable measures to operate our services, but we do not promise or warrant that your information will be secure, confidential, or free from loss, misuse, unauthorized access, disclosure, alteration, or destruction.

No method of transmission or storage is completely secure. You use our services at your own risk.

You are responsible for safeguarding your account credentials, extension tokens, and devices. Do not share personal access codes with others.

Do not enter sensitive personal information, customer data, health information, financial account details, passwords, or trade secrets into Velowork fields unless your organization has explicitly authorized you to do so and you accept the associated risk.

This policy applies to visitors, account holders, organization administrators, and participants who use Velowork App, the Chrome extension, or Fluency Desk.

If your employer or another organization invited you to use Velowork, that organization may also have its own policies and instructions. Where applicable, your organization is responsible for deciding who may participate, what may be logged, and how results are used internally.

We collect information in the following categories:

• Account and identity data — name, email address, organization membership, and authentication data processed through Clerk when you sign in.
• Organization and billing data — company name, expected participant counts, payment status, and transaction metadata processed through Stripe. We do not store full payment card numbers.
• Self-reported workflow notes — short journal entries you choose to type in the browser extension, including general descriptions of tasks and the apps involved.
• Browser extension signals — domain names of websites you visit while the extension is connected and tracking is enabled (for example, mail.google.com). We do not collect page content, keystrokes, full URLs with paths, or screenshots through the extension.
• Optional connector metadata — if you separately connect Gmail, Slack, HubSpot, or similar integrations through OAuth, we may receive metadata such as message headers, channel activity, or record change signals as configured. We do not intentionally ingest full message bodies or file contents through those connectors.
• Questionnaire and survey responses — answers you submit through Velowork-hosted or linked survey flows when your organization runs a check-in.
• Fluency Desk chat — prompts and messages you send to Fluency Desk features, which may be processed by Velowork and/or third-party AI providers.
• Technical and usage data — server logs, IP address, browser type, device information, error reports, and similar data needed to operate and secure the service.
• Support communications — information you send when you contact us at hello@velowork.ai.

We use collected information to:

• Provide, maintain, and improve Velowork App, the extension, and Fluency Desk
• Authenticate users and manage organization access
• Run scheduled intelligence windows, generate aggregated reports, and show adoption metrics to authorized administrators
• Process payments and prevent fraud
• Send service-related notices and respond to support requests
• Comply with law and enforce our terms
• Generate aggregated, de-identified insights where raw event data is designed to expire after the observation window

We do not sell your personal information. We share information only as described below:

• Service providers — hosting (for example, Vercel), database (for example, Neon), authentication (Clerk), payments (Stripe), OAuth infrastructure (Nango), background jobs (Inngest), AI processing (Anthropic or other configured providers), and embedded chat when enabled. These providers process data on our behalf subject to their own terms.
• Your organization — if you participate through an employer or client account, authorized administrators may see aggregated reports, adoption metrics, and pseudonymized or role-linked activity summaries for their organization.
• Velowork engagement delivery — when an organization is linked to a Velowork client engagement, observation outputs may be exported for delivery of paid Velowork services under separate agreements at velowork.ai.
• Legal and safety — when required by law, subpoena, or to protect rights, safety, and integrity of our services
• Business transfers — in connection with a merger, acquisition, or asset sale, subject to continuing protections

Account and organization records are retained while your account is active and as needed for billing, support, and legal compliance.

Raw workflow event data collected during an intelligence window is designed to expire and be purged after the window ends, typically within a short period following report generation. Aggregated reports may be retained longer for the organization that ran the window.

You may disconnect the browser extension, revoke OAuth connections, or request account deletion by contacting us. Some data may be retained where required by law or for legitimate business records (for example, payment history).

Depending on your role and jurisdiction, you may:

• Decline to install the browser extension or connect optional integrations
• Disable extension tracking in extension settings where available
• Choose what you type in journal entries — keep entries general and avoid sensitive data
• Request access, correction, or deletion of personal information by emailing hello@velowork.ai
• Uninstall the Chrome extension at any time through Chrome settings

Residents of certain U.S. states, including California, may have additional rights to know, access, delete, or opt out of certain processing. We do not sell personal information as defined by the California Consumer Privacy Act (CCPA/CPRA).

If you are in the European Economic Area, United Kingdom, or similar jurisdictions, you may have rights to access, rectify, erase, restrict, or object to processing, and to lodge a complaint with a supervisory authority. Our lawful bases may include contract performance, legitimate interests in operating and improving the service, and consent where required (for example, optional connector access).

To exercise applicable rights, contact hello@velowork.ai. We may need to verify your identity. If you use Velowork through an employer, we may direct certain requests to your organization where it acts as the data controller for employee participation.

Our services are intended for business use and are not directed to children under 13 (or 16 where applicable). We do not knowingly collect personal information from children. Contact us if you believe a child has provided information and we will take appropriate steps to delete it.

Velowork is operated from the United States. If you access our services from outside the U.S., your information may be processed in the U.S. and other countries where our service providers operate, which may have different data protection laws than your country.

We may update this Privacy Policy from time to time. We will revise the "Last updated" date at the top when we do. Material changes may also be communicated through the app or by email where appropriate. Continued use after an update means you accept the revised policy.

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, VELOWORK AI AND OUR AFFILIATES, OFFICERS, DIRECTORS, EMPLOYEES, AGENTS, AND LICENSORS PROVIDE THE SERVICES "AS IS" AND "AS AVAILABLE" WITHOUT WARRANTIES OF ANY KIND, WHETHER EXPRESS, IMPLIED, STATUTORY, OR OTHERWISE, INCLUDING IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, TITLE, NON-INFRINGEMENT, ACCURACY, OR SECURITY.

WE DO NOT WARRANT THAT THE SERVICES WILL BE UNINTERRUPTED, ERROR-FREE, SECURE, OR FREE OF HARMFUL COMPONENTS, OR THAT ANY REPORT, RECOMMENDATION, AI OUTPUT, OR THIRD-PARTY INTEGRATION WILL BE ACCURATE, COMPLETE, OR SUITABLE FOR YOUR PURPOSE.

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, VELOWORK AI WILL NOT BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, EXEMPLARY, OR PUNITIVE DAMAGES, OR ANY LOSS OF PROFITS, REVENUE, DATA, GOODWILL, OR BUSINESS OPPORTUNITY, ARISING OUT OF OR RELATED TO YOUR USE OF OR INABILITY TO USE THE SERVICES, ANY THIRD-PARTY TOOL, OR ANY CONTENT YOU OR OTHERS SUBMIT — EVEN IF WE HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, OUR TOTAL LIABILITY FOR ANY CLAIM ARISING OUT OF OR RELATING TO THE SERVICES OR THIS POLICY WILL NOT EXCEED THE GREATER OF (A) THE AMOUNT YOU PAID VELOWORK AI FOR THE SERVICES IN THE TWELVE (12) MONTHS BEFORE THE EVENT GIVING RISE TO THE CLAIM, OR (B) ONE HUNDRED U.S. DOLLARS (US $100).

Some jurisdictions do not allow certain disclaimers or limitations. In those jurisdictions, our liability is limited to the greatest extent permitted by law.

This Privacy Policy and any dispute arising out of or relating to it or the services are governed by the laws of the State of New Hampshire, United States, without regard to conflict-of-law principles.

Except where prohibited by applicable law, you agree that exclusive jurisdiction and venue for disputes will lie in the state or federal courts located in New Hampshire, and you consent to personal jurisdiction there.

Questions about this Privacy Policy or our data practices:

Email: hello@velowork.ai

Velowork AI · Danville, New Hampshire, United States

A physical business address for legal correspondence is available upon written request to hello@velowork.ai.