Privacy Policy

How Velork collects, uses, and protects information when you use our IDE, dashboard, and cloud services.

Last updated: July 1, 2026

Introduction

Velork ("we," "us") provides a design-native IDE, web dashboard, and related cloud services. This Privacy Policy explains what information we collect, how we use it, and the choices you have.

By using Velork, you agree to this policy and our Terms of Service.

What Velork Processes

To operate the Service, Velork processes information you provide and information generated while you work, including:

  • Account and profile data (name, email, authentication identifiers)
  • Workspace, project, and billing data (plan, usage limits, invoices)
  • Design canvas content, captured inspiration snapshots, and imported Figma clipboard data
  • Code, tasks, chat messages, and files in your workspace
  • AI prompts and responses routed through Velork to your configured or Velork-managed model providers
  • Usage and telemetry described below

Information We Collect

Account & billing

  • Name, email address, and password (stored hashed)
  • Subscription plan, payment status, and billing history (payment card details are handled by Stripe, not stored by Velork)
  • Support messages and feedback you send us

Product & workspace data

  • Projects, Figma pastes, tasks, blueprints, and MCP configuration
  • Chat sessions, agent runs, and tool results needed to provide AI features
  • OAuth tokens or API keys you connect for third-party services (stored securely for integration use)

Usage & plan enforcement

We track product metrics to enforce plan limits and show usage in Settings and the dashboard, including:

  • Design mode requests
  • Figma pastes
  • Web captures and inspiration sites
  • Task runs
  • Blueprints and MCP servers
  • AI token counts (input, output, and cache tokens) for reporting and cost analytics

See our Billing & Refunds Policy for how these metrics map to plans.

Technical & diagnostic data

  • Device and app metadata (OS, app version, session IDs)
  • Error logs and performance data needed to keep the Service reliable
  • IP address and general location derived from network requests to our servers

Product Analytics (Desktop)

The Velork desktop app sends product analytics events to PostHog when telemetry is enabled. These are limited to Velork-specific events (prefixed velork/), such as session start/end, AI generation outcomes, design conversion, inspiration captures, task board activity, and updater actions.

We do not send general VS Code editor telemetry to PostHog. After you sign in, analytics may be associated with your account email and name for product improvement. You can contact us to request information about analytics tied to your account.

How We Use Information

  • Provide, maintain, and improve the Service
  • Enforce plan limits and process subscriptions
  • Route AI requests and store workspace content you choose to sync
  • Respond to support requests and security incidents
  • Understand product usage through aggregated analytics
  • Comply with legal obligations

AI Processing

When you use AI features, Velork transmits prompts, selected context (code, design layers, task details, and similar inputs), and configuration to the AI providers you authorize or that Velork uses on your behalf.

Those providers process data under their own privacy policies. Velork uses AI output to display results to you and to continue agent workflows you initiate. We do not sell your workspace content. We do not use your designs, code, or chat content to train public Velork foundation models.

Third-Party Services

We share data with service providers only as needed to operate Velork, including:

  • Stripe — subscription billing and invoices
  • AI model providers — processing prompts you send through the Service
  • PostHog — product analytics from the desktop app (when enabled)
  • Cloud infrastructure — hosting APIs, databases, and file storage
  • Figma / browser extension — design import when you paste or capture designs you choose to import
  • Git providers — when you connect repositories for development workflows

Each integration is limited to the data required for that feature. Review the third party's policy before connecting an account.

Data Security

We use administrative, technical, and organizational safeguards to protect information, including encryption in transit (HTTPS/TLS), access controls, and monitoring. No method of transmission or storage is completely secure; please keep your credentials safe and use unique passwords.

Data Retention

  • Account and workspace data is kept while your account is active
  • Billing and tax records may be retained as required by law
  • After account deletion, we delete or anonymize personal data within a reasonable period, except where retention is required for legal, billing, or security purposes
  • Aggregated or de-identified analytics may be retained longer for product improvement

Your Rights & Choices

Depending on your location, you may have the right to:

  • Access, correct, or delete personal information
  • Export workspace content you store in Velork
  • Object to or restrict certain processing
  • Withdraw consent where processing is consent-based

Manage cookies on the web dashboard through our Cookie Policy. To exercise privacy rights, email privacy@velork.com.

International Transfers

Velork may process data in the United States and other countries where we or our providers operate. We take steps designed to protect information when it is transferred internationally, consistent with applicable law.

Children

The Service is not directed to children under 16. We do not knowingly collect personal information from children. Contact us if you believe a child has provided information to Velork.

Changes to This Policy

We may update this Privacy Policy from time to time. We will post the revised policy on this page and update the "Last updated" date. Material changes may also be communicated by email or in-product notice.

Contact

Privacy: privacy@velork.com

Data protection inquiries: include "Privacy Policy" in the subject line.