Privacy Policy

What we collect

• Email address (for account identification and communication)
• Password (stored only as a one-way hash — we never store your password in plain text)
• Prompts you save (title, content, tags)
• AI conversations — the messages you send and receive in chat, conversation titles, and associated metadata such as the model used, token counts, and timestamps
• Image attachments you include in chat messages
• AI provider API keys you choose to store (encrypted at rest using AES-256-GCM — we cannot read your keys in plain text)
• Session cookie issued when you sign in (NextAuth.js)
• Account metadata such as plan tier, email verification status, and timestamps
• Billing metadata from Stripe — subscription status, plan tier, and billing cycle dates (we do not store raw card numbers or full payment details)

How we use your data

We use this information only to operate Vellio: to authenticate you, store and display your prompts and conversations, process subscription billing, send transactional emails, and enforce fair use and security.

When you send a chat message, the content of that message (and any relevant conversation history) is transmitted to the AI provider you have selected — for example OpenAI, Anthropic, Google Gemini, or another provider from your account settings — to generate a response. This is the core function of the chat feature. We do not sell your data, use it for advertising, or share it with third parties for their own marketing purposes.

Shared conversations

When you share a conversation, the transcript (messages and model information as shown on the shared page) becomes publicly accessible via a unique link. No personal information (such as your email or API keys) is included in shared conversations. You can revoke a share link at any time from the chat; after revocation, the link stops working.

Published prompts and public profiles

When you publish a prompt to Explore, your prompt's title, description, content, tags, category, and aggregate statistics (uses, saves, forks, average rating) become publicly visible to signed-in Vellio users. Your public profile — username, bio, and optional avatar URL — is visible on your published prompts. You can unpublish any prompt or remove your public profile at any time. Unpublishing hides the prompt from Explore but preserves its statistics so re-publishing restores history.

Ratings and reports

You may rate published prompts 1 to 5 stars; your individual rating is private, but the average rating and total count are shown publicly. Reports you submit are reviewed by Vellio administrators. Your email is visible to administrators only as part of the moderation queue.

Marketplace maturity (Phase 8.5)

Text reviews

If you write a text review, your public profile (username, bio, and optional avatar) is shown alongside it. The prompt author can hide your review on their own listing; you can edit or delete your review at any time. Administrators can remove reviews that violate community guidelines.

Followers

When you follow another user, that relationship is visible to any signed-in user who opens the follower or following list on either profile. Unfollowing removes the record. Your follow list powers the "Following" view on Explore and can trigger in-app notifications when followed authors publish or update a prompt.

In-app notifications

We may create in-app notifications when someone rates or reviews your prompt, when a followed author publishes or versions a prompt, and when a report involving your content is resolved. Notifications are visible only in your account. You can turn off each event type on your account page. Notifications older than 90 days are automatically deleted; there is no long-term archive.

Phase 8.5 does not send email, push, or SMS for these events. In-app only. When we add email (planned in a later phase), it will be subject to separate opt-in and deliverability settings.

Exported conversations

Exported conversations contain message content and metadata you choose to download (for example Markdown or JSON). Export files are generated on demand when you request them and are not stored on our servers as standalone files.

Hosted credits and sub-processors

Vellio supports two chat data flows. When you use BYOK, your prompts and conversation context go to the selected AI provider through your own provider account and API key. When you use hosted credits, your prompts and conversation context are proxied through Vellio-managed provider keys for the selected model, and credits are deducted from your Vellio ledger.

Hosted-credit chat may involve these sub-processors, depending on the provider and product path you use:

• OpenAI — hosted AI response generation for OpenAI models
• Anthropic — hosted AI response generation for Claude models
• Google Gemini — hosted AI response generation for Gemini models
• DeepSeek — hosted AI response generation for DeepSeek models
• xAI — hosted AI response generation for Grok models
• Mistral AI — hosted AI response generation for Mistral models
• Perplexity AI — hosted AI response generation for Sonar models
• Groq — hosted AI response generation for Groq-hosted Llama models
• Cloudflare Turnstile — signup abuse prevention and captcha verification
• Sentry — scrubbed error aggregation and reliability monitoring
• Stripe — subscription billing, credit-pack purchases, and refunds

Vellio stores credit ledger rows, including credit amounts, transaction reasons, model metadata, and operational key-slot identifiers, while your account exists. We do not store provider raw responses outside the message content saved in your conversation. Sentry events are scrubbed of API keys, Authorization headers, and provider payloads before capture and use Sentry's default 90-day retention. Stripe retains payment records under Stripe's own policies.

Third-party processors

We rely on the following services to run the product:

• Neon — PostgreSQL hosting for your account, prompts, and conversations
• OpenAI — AI response generation; receives your chat messages when you use an OpenAI model
• Anthropic — AI response generation; receives your chat messages when you use an Anthropic model
• Google (Gemini) — AI response generation when you use a Gemini model
• Mistral AI — AI response generation when you use a Mistral model
• xAI — AI response generation when you use a Grok model
• DeepSeek — AI response generation when you use a DeepSeek model
• Groq — AI response generation when you use Groq-hosted models
• Perplexity AI — AI response generation when you use a Perplexity Sonar model
• OpenRouter — AI response generation when you route chat through OpenRouter (requests go to the model providers OpenRouter selects per your chosen model ID)
• Stripe — subscription billing and payment processing
• Cloudflare Turnstile — signup abuse prevention and captcha verification
• Sentry — scrubbed error aggregation and reliability monitoring
• Resend — transactional email delivery
• Vercel — application hosting and delivery
• Upstash Redis — rate limiting to protect against abuse

Each processor receives only what is needed to provide their service. When you use your own API keys (BYOK), your requests use your account and key. When you use hosted credits, Vellio proxies your request through Vellio-managed provider keys and records the resulting credit transaction in your ledger.

When you use a custom OpenAI-compatible endpoint, your messages are sent directly to the URL you provide. Vellio does not control, audit, or log requests to third-party servers at your custom endpoint beyond what is needed to stream the assistant reply in the app.

Data retention & deletion

We keep your data for as long as your account is active. You can delete your account and all associated data at any time from Account settings. After deletion, your user record, saved prompts, conversation history, messages, and stored API keys are removed from our database. Credit ledger rows are deleted with your account through the same account-deletion cascade. Billing records may be retained by Stripe as required by their policies and applicable law. Sentry deletion requests can be sent to the contact email below.

Your rights

Depending on where you live, you may have the right to access, correct, or delete your personal data, or to object to certain processing. Contact us at the email below to exercise these rights.

Contact

For privacy questions: Admin@vellio.ai