Privacy Policy
Eleva Platform Ltd

Privacy Policy

We believe privacy is a right, not a feature. Here's exactly how we collect, use, and protect your data.

Effective Date: May 2, 2026  ·  Operated by Eleva Platform Ltd, United Kingdom
01

Introduction

Welcome to VALA. VALA is an AI-powered browser and software platform operated by Eleva Platform Ltd. This Privacy Policy explains how Eleva Platform Ltd ("VALA," "we," "us," or "our") collects, uses, stores, processes, transfers, and protects personal data when individuals use our products, services, applications, APIs, websites, browser technologies, AI systems, voice services, and related platforms (collectively, the "Services").

This Privacy Policy applies globally, including users located in the United Kingdom, European Union, United States, and other international jurisdictions.

By accessing or using VALA Services, you acknowledge that you have read and understood this Privacy Policy.

02

Company Information

Eleva Platform Ltd
Street 4A, Central Square City
Liverpool, L31 0AQ
United Kingdom
Privacy Contact
privacy@usevala.com
Legal Contact
legal@usevala.com
Security Contact
security@usevala.com
Data Requests
data@usevala.com
03

Scope of This Policy

This Privacy Policy applies to:

  • usevala.com and VALA web applications
  • VALA browser services, desktop and mobile applications
  • VALA AI systems, chat services, voice and speech services
  • VALA APIs, subscriptions and payment systems
  • VALA memory and personalization systems
  • AI agents, automation features, and integrated tools
  • Customer support systems and enterprise services

This Policy does not apply to third-party products not controlled by Eleva Platform Ltd, external integrations governed by separate policies, or customer-managed enterprise deployments where VALA acts solely as a processor.

04

Types of Personal Data We Collect

4.1 Information You Provide Directly

  • Name, email address, phone number
  • Username or account identifiers
  • Billing and payment information, subscription information
  • Company or organization information
  • Support communications, feedback and survey responses
  • Uploaded files, attachments, prompts, commands, searches, conversations

4.2 AI Inputs, Outputs, and Conversations

VALA allows users to interact with AI systems through chat, voice, browsing, agent workflows, tool usage, automation systems, and API requests. We may process user prompts, AI-generated responses, uploaded documents, memory data, agent instructions, conversation history, voice interactions, and tool execution requests.

If you include personal data or confidential information in your inputs, that information may also appear in generated outputs.

4.3 Technical and Device Information

We automatically collect: IP address, approximate location derived from IP, device identifiers, browser type, operating system, device type, network information, application version, error logs, usage analytics, crash reports, session information, and cookies.

4.4 Voice and Audio Data

If you use voice-enabled features, we may process audio recordings, speech-to-text transcripts, voice commands, and audio interaction metadata. Voice interactions may be processed by VALA systems or approved infrastructure providers.

4.5 Payment Information

Payments are processed through third-party payment processors. We may receive limited payment-related information such as billing status, payment confirmation, subscription tier, and partial payment identifiers. We do not intentionally store complete payment card details.

4.6 API and Developer Data

If you use VALA APIs or developer services, we may collect API keys, usage logs, request metadata, rate-limit information, developer account details, integration information, and security monitoring data.

05

How We Use Personal Data

We use personal data for purposes including:

Core Services
Providing and operating VALA Services, delivering AI responses, maintaining accounts
Payments
Processing subscriptions, billing, and payment verification
Security
Security monitoring, fraud prevention, abuse detection, policy enforcement
Improvement
Research, product improvement, analytics, debugging, troubleshooting
Support
Customer support, communications, notifications, enterprise administration
Personalization
Memory and personalization features, AI agents and tools
06

AI Training and Model Improvement

VALA may use certain user interactions, prompts, outputs, feedback, and related content to improve models, systems, safety mechanisms, and platform performance.

Where required by applicable law, users will be provided with controls or choices regarding training usage. We may use data for AI safety research, platform reliability, abuse prevention, performance optimization, feature improvement, and model evaluation.

We may also process de-identified, aggregated, or anonymized information for research and analytics. Enterprise or API agreements may provide separate data processing terms.

08

Cookies and Tracking Technologies

VALA uses cookies, local storage, SDKs, analytics technologies, and similar systems to maintain sessions, authenticate users, improve performance, analyze usage, personalize experiences, prevent abuse and fraud, and store preferences.

Users may control certain cookie settings through browser or device settings where available. A separate Cookie Policy may provide additional details.

09

Data Sharing and Disclosure

We may disclose personal data to service providers, infrastructure providers, cloud hosting providers, analytics providers, payment processors, security providers, enterprise customers, affiliates and subsidiaries, professional advisors, and regulatory authorities where legally required.

We may also disclose information to comply with legal obligations, to enforce our Terms, to investigate abuse or fraud, to protect users and systems, or during mergers, acquisitions, or restructurings.

We do not sell personal data in the traditional sense of selling user data for monetary compensation.

10

International Data Transfers

VALA operates globally. Your information may be processed in the United Kingdom, European Union, United States, or other countries where our providers or infrastructure operate.

Where required, we implement safeguards such as Standard Contractual Clauses, contractual protections, security controls, transfer impact assessments, and other lawful transfer mechanisms.

11

Data Retention

We retain personal data only for as long as reasonably necessary for providing Services, security purposes, legal obligations, dispute resolution, enforcement of agreements, research, and operational needs.

Retention periods may vary depending on account type, enterprise agreements, legal requirements, safety investigations, and technical requirements. Deleted content may remain temporarily in backups, logs, or security systems for limited periods.

12

Security Measures

We implement reasonable technical, administrative, and organizational safeguards designed to protect personal data against unauthorized access, disclosure, loss, misuse, alteration, and destruction.

However, no internet-based service can guarantee absolute security. Users are responsible for maintaining the confidentiality of their credentials and API keys.

13

User Rights and Choices

Depending on your jurisdiction, you may have rights including:

  • Access, correction, deletion, and data portability
  • Restriction of processing and objection to processing
  • Withdrawal of consent and opt-out rights
  • Complaint rights with supervisory authorities
  • Rights relating to AI-generated content, personalization systems, memory systems, and model training preferences

Requests may be submitted to privacy@usevala.com or data@usevala.com. We may need to verify identity before processing requests.

14

Enterprise and API Customers

For enterprise, organizational, or API customers, separate agreements may apply, including Data Processing Addendums (DPAs), Enterprise Terms, API Terms, Security Addendums, and custom retention or processing agreements.

Where VALA acts as a processor on behalf of a customer, the customer may act as the data controller.

15

AI Limitations and Human Review

AI-generated outputs may be inaccurate, incomplete, contain errors, reflect outdated information, or produce unexpected results.

Users should not rely solely on AI-generated outputs for legal advice, medical advice, financial decisions, safety-critical decisions, or professional determinations. Human review may be necessary.

16

Children

VALA Services are not intended for children under 18 years of age. We do not knowingly collect personal data from children under 18.

If you believe a child has provided personal data to VALA, contact: privacy@usevala.com

17

Third-Party Services and Integrations

VALA may integrate with third-party platforms, services, websites, APIs, or tools. Third-party services operate under their own terms and privacy policies. We are not responsible for third-party privacy practices.

18

Changes to This Privacy Policy

We may update this Privacy Policy periodically. Updated versions become effective upon publication. Material changes may be communicated through email, dashboard notices, website notices, or in-product notifications.

19

Regional Privacy Rights

Users located in certain jurisdictions may have additional rights under UK GDPR, EU GDPR, California privacy laws, US state privacy laws, Canadian privacy laws, Brazilian LGPD, and other applicable international laws.

VALA will make reasonable efforts to comply with applicable privacy regulations where required.

20

Contact Information

Privacy Inquiries
privacy@usevala.com
Legal Inquiries
legal@usevala.com
Security Inquiries
security@usevala.com
Data Rights Requests
data@usevala.com
Eleva Platform Ltd
Street 4A, Central Square City
Liverpool, L31 0AQ
United Kingdom