Privacy Policy

Veldun (“we,” “us,” “our”) provides a membership management platform for small organizations. This policy explains what data we collect, how we use it, and your rights regarding that data.

Account information. When you sign up, we collect your name, email address, and organization name. If you invite members, we store their names and email addresses as provided by your organization.

Usage data. We collect standard analytics: pages visited, features used, browser type, and device information. This helps us understand how the product is used and where to improve it.

Payment information. Dues payments are processed by Stripe. We do not store credit card numbers or bank account details. Stripe handles all payment data under their own privacy policy.

Content you create. Events, emails, member records, and documents you create within Veldun are stored on our servers to provide the service.

We use your data to:

• Provide and maintain the Veldun platform
• Process membership dues and event payments via Stripe
• Send transactional emails (confirmations, reminders, receipts)
• Power AI features (event creation, newsletter assembly, renewal alerts)
• Improve the product based on aggregate usage patterns
• Respond to support requests

We do not sell your data. We do not use your data for advertising. We do not share member lists with third parties.

Veldun uses the following third-party services to operate:

• Amazon Web Services (AWS) — hosting, database, file storage, and background job processing
• Stripe — payment processing for membership dues and event fees
• Resend — transactional and campaign email delivery
• Anthropic (Claude API) — AI features including event creation, newsletter assembly, and renewal intelligence. Content sent to Claude is processed according to Anthropic's data usage policy and is not used to train their models.
• Sentry — error monitoring and performance tracking
• Cloudflare — DNS and static website hosting for organization public sites

We retain your data for as long as your account is active. If you cancel your account, we delete your organization's data within 30 days. Backups may retain data for up to 90 days after deletion before being purged.

Payment records processed through Stripe are retained according to Stripe's data retention policies and applicable financial regulations.

You have the right to:

• Export your data. Download your member list, event history, and email records at any time from your dashboard.
• Delete your data. Request complete deletion of your organization's data by emailing us.
• Correct your data. Update your account information and member records directly in the platform.
• Restrict processing. Request that we limit how we use your data.

If you are located in the European Economic Area, you have additional rights under the GDPR. Contact us to exercise any of these rights.

Data is encrypted in transit (TLS) and at rest (AES-256). Database access uses IAM authentication. All file uploads use signed URLs with expiration. We follow AWS security best practices for infrastructure management.

Veldun uses essential cookies to maintain your login session and remember your organization selection. We do not use advertising cookies or third-party tracking cookies.

We may update this policy as our practices evolve. We will notify account administrators by email of any material changes before they take effect.

For privacy questions or data requests, email privacy@veldun.com. We respond to every inquiry within 24 hours.