MAYAK
Work with us

Legal

Privacy Policy

Last updated: 2025

MAYAK Ventures LLC (“MAYAK”, “we”, “us”, or “our”) is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you visit mayakventures.com or any website operated under the MAYAK brand umbrella, including velorahealing.com.

This policy complies with the EU General Data Protection Regulation (GDPR) and applicable data protection laws.

1. Who we are

Data controller: MAYAK Ventures LLC
Contact: hello@mayakventures.com
Website: mayakventures.com

2. What data we collect

We may collect the following categories of personal data:

  • Contact information: name, email address, company name, website URL
  • Communication data: messages you send via our contact form or email
  • Technical data: IP address, browser type, device type, pages visited, time spent on site (via analytics tools)
  • Transaction data: for purchases made on brand sub-sites (e.g. Velora Healing), this may include billing address and purchase history. Payment card data is processed by our payment processor and is never stored by us.

3. How we use your data

We use your data to:

  • Respond to enquiries and applications submitted via our contact form
  • Fulfil orders and deliver digital products purchased through our brand sites
  • Send transactional emails (order confirmations, download links)
  • Send marketing communications, only where you have given explicit consent
  • Improve our website through anonymised analytics
  • Comply with legal obligations

Legal basis for processing (GDPR):

  • Contractual necessity: to fulfil orders and respond to enquiries
  • Legitimate interest: website analytics, improving our services
  • Consent: marketing emails, non-essential cookies
  • Legal obligation: where required by law

4. How long we keep your data

  • Contact enquiries: up to 2 years
  • Customer/order records: up to 7 years (for tax and legal compliance)
  • Analytics data: as configured in our analytics tool (typically 14–26 months)
  • Marketing email lists: until you unsubscribe or withdraw consent

5. Who we share your data with

We do not sell your personal data. We may share data with:

  • Payment processors (e.g. Stripe) to process transactions securely
  • Email service providers to send transactional or marketing emails
  • Analytics providers (e.g. Plausible or Google Analytics) to understand site usage
  • Legal authorities if required by law

All third-party processors are contractually bound to protect your data and are GDPR-compliant.

6. Your rights under GDPR

If you are in the EU or EEA, you have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate data
  • Request deletion of your data (“right to be forgotten”)
  • Restrict or object to processing
  • Data portability
  • Withdraw consent at any time (where processing is based on consent)
  • Lodge a complaint with your national data protection authority

To exercise any of these rights, contact us at hello@mayakventures.com.

7. Cookies

We use cookies on our websites. For full details, see our Cookie Policy.

8. International transfers

Some of our service providers may be based outside the EU/EEA. Where this is the case, we ensure appropriate safeguards are in place (e.g. Standard Contractual Clauses).

9. Changes to this policy

We may update this policy from time to time. The date at the top of the page will reflect the most recent update. We encourage you to review this page periodically.

10. Contact

For any privacy-related questions: hello@mayakventures.com