Privacy Policy
- Operated by:
- O.B Consulting LLC ("Velura")
- Version:
- 1.0
- Last updated:
- June 17, 2026
- Scope:
- United States
1. Who we are
Velura provides appointment and client management software to clinics and service businesses. This policy explains how Velura handles personal information.
2. Information we collect
- Clinic account data: names, business details, email, role, authentication identifiers.
- Customer data processed for clinics: customer name, mobile phone number, email, appointment details, and SMS consent records — processed on behalf of, and under the instructions of, the clinic.
- Consent and messaging records: consent method, timestamp, opt-out status, and message logs, used to operate and document the messaging service.
- Technical data: IP address, device/user-agent, and usage logs (including for consent/acceptance evidence).
3. How we use information
To provide and secure the platform; to send appointment-related messages on behalf of clinics to customers who have consented; to maintain consent and audit records; to comply with legal, carrier, and Twilio requirements; and to support and improve the service.
4. SMS / mobile information (important)
- Mobile phone numbers and SMS consent are used solely to deliver the clinic's appointment-related messages.
- We do not share or sell mobile opt-in information or SMS consent to third parties or affiliates for their own marketing purposes.
- Mobile information is shared only with service providers strictly necessary to deliver the messages — our messaging providers/subprocessors Twilio and HEYY, and the mobile carriers — under contractual protections, and is not used for their own marketing.
- Customers can opt out at any time by replying STOP. See the SMS Terms.
5. Sharing and disclosure
We share information with: service providers that help operate the platform (e.g., hosting, the messaging provider) under contract; the clinic that the data belongs to; and as required by law or to protect rights and safety. We do not sell personal information, and we do not share or sell mobile opt-in data or SMS consent for third-party or affiliate marketing.
6. Data processing for clinics
Where Velura processes customer personal data on behalf of a clinic, the clinic determines the purposes and means and is responsible for having a lawful basis (including SMS consent). Velura processes such data on the clinic's instructions under our agreement with the clinic. Velura may make additional data-processing terms available to clinics where required.
7. Retention
We retain personal and consent/audit data for as long as needed to provide the service, document consent, and meet legal, carrier, and regulatory obligations, then delete or de-identify it. (No separate international-transfer section is included; Velura processes data in the United States.)
8. Your rights (US)
Depending on your state, you may have rights to access, correct, delete, or restrict use of your personal information, and to opt out of certain processing.
- Customers of a clinic should direct requests to the clinic (the business/controller); Velura will assist the clinic as service provider.
- California (CCPA/CPRA): rights to know, delete, correct, and opt out of sale/sharing. We do not sell personal information and do not share mobile opt-in data or SMS consent for marketing.
- Other US state privacy laws (e.g., Virginia, Colorado, Connecticut, Texas): comparable rights where they apply.
9. Children's privacy
The platform is not directed to children, and we do not knowingly collect personal information from children under 13 (see COPPA / applicable law).
10. Security
We use reasonable technical and organizational measures to protect personal information. No method of transmission or storage is fully secure.
11. Changes to this policy
We may update this policy; the current version is posted here with the "Last updated" date.
12. Contact
O.B Consulting LLC, 1320 W Lake St, Minneapolis, MN. Privacy contact: oribadani28@gmail.com.