01Introduction and who we are
This Privacy Policy explains how EvlarSoft LLC (“EvlarSoft,” “we,” “us,” “our”) collects, uses, discloses, retains, and protects personal information in connection with our websites, applications, APIs, and related services (the “Products”), and describes the rights and choices available to you. It applies across all of our Products — the Verve family (APIVerve, VerveKit, VerveSheets, VerveContext), DigestYourFinances, and our applications. Because a single entity stands behind every Product, one policy governs them all; where a specific Product requires additional detail, it will point back to this document.
For personal information we collect about our own users, EvlarSoft acts as the “controller” (or “business”). Where we process personal data on behalf of a customer that uses our Products to process its own users' data, we act as a “processor” (or “service provider”) under our Data Processing Addendum, and that customer's privacy notice governs. By using the Products, you acknowledge the practices described here.
02Information we collect
We collect the following categories of personal information:
- Identity and account data — name, username, email address, password (stored in hashed form), and organization details you provide when registering or configuring an Account.
- Contact data — email address and any information you include when you contact us for support, sales, or other requests.
- Billing and transaction data — plan, billing contact, transaction history, and limited payment details. Full payment-card numbers are handled by our payment processor and are not stored by us.
- Content you submit — the inputs, queries, prompts, files, and other data you send to a Product so it can return a result, together with the resulting Output.
- Usage and log data — API requests and request counts, feature usage, timestamps, referring pages, and diagnostic logs we generate as you use a Product. Request counts are used to meter usage against your plan.
- Device and technical data — IP address, browser type and version, operating system, device identifiers, language, and similar technical information.
- Cookies and similar technologies — as described in our Cookie Policy.
You are not required to provide all of this information, but some of it is necessary to create an Account or use certain Products; without it, those Products may be unavailable.
03How we collect it
We collect information: (a) directly from you, when you register, configure a Product, submit content, make a payment, or contact us; (b) automatically, through cookies, logs, and similar technologies as you interact with the Products; and (c) from third parties, such as our payment processor, analytics and infrastructure providers, and, where you sign in through a third-party identity provider, that provider — in each case as described in our Subprocessors page.
04How we use your information
We use personal information to:
- provide, operate, maintain, secure, and improve the Products;
- create and administer your Account and authenticate you;
- meter usage, process payments, and manage billing;
- respond to your requests and provide customer and technical support;
- send service and transactional messages, and, where permitted, product updates;
- monitor, detect, prevent, and investigate fraud, abuse, security incidents, and violations of our Acceptable Use Policy;
- analyze usage to understand and improve reliability, performance, and features;
- comply with legal obligations and enforce our agreements.
We do not sell your personal information for money, and we do not use the content you submit to a Product to train machine-learning models except where you have explicitly opted in.
05Legal bases for processing
Where the EU or UK General Data Protection Regulation applies, we rely on the following legal bases: performance of a contract, to provide the Products you request; legitimate interests, to secure, improve, and market our Products in ways that do not override your rights; consent, where required — for example, for non-essential cookies or certain communications, which you may withdraw at any time; and legal obligation, where processing is necessary to comply with the law.
07International data transfers
EvlarSoft is based in the United States, and we and our providers may process personal information in the United States and other countries whose data-protection laws may differ from yours. Where we transfer personal data across borders in a manner requiring a safeguard, we rely on an appropriate legal mechanism, such as standard contractual clauses or an equivalent protection recognized under applicable law.
08Data retention
We keep personal information for as long as your Account is active or as needed to provide the Products, and thereafter only as necessary to comply with our legal obligations, resolve disputes, prevent fraud and abuse, and enforce our agreements. When information is no longer needed, we delete or anonymize it. Retention periods vary by the type of data and the purpose for which it was collected; log and diagnostic data are generally retained for a limited period.
09How we protect your information
We maintain administrative, technical, and organizational safeguards designed to protect personal information against unauthorized access, disclosure, alteration, and destruction — including encryption in transit, access controls, and monitoring. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security. You are responsible for keeping your credentials confidential; please notify us immediately through the contact page if you believe your Account has been compromised.
10Your rights and choices
Depending on where you live, you may have some or all of the following rights regarding your personal information: to access it; to correct inaccuracies; to delete it; to port a copy; to restrict or object to certain processing; to withdraw consent where processing is based on consent; and to be free from unlawful discrimination for exercising these rights. You can exercise many of these from your Account settings, or by contacting us. We will respond within the time required by applicable law and may need to verify your identity first.
You can also opt out of non-essential cookies through the controls described in our Cookie Policy, and you can unsubscribe from marketing emails using the link in those emails; we may still send you service-related messages.
11Region-specific disclosures
European Economic Area / United Kingdom.You have the rights described above under the GDPR and may lodge a complaint with your local supervisory authority. Our legal bases are set out in the “Legal bases” section.
California.Under the CCPA/CPRA, California residents have rights to know, access, correct, and delete personal information, to opt out of “sale” or “sharing” of personal information (we do not sell personal information for money), and to limit use of sensitive personal information, without discriminatory treatment for exercising these rights. You may submit a request through the contact page.
Other U.S. states. Residents of states with comprehensive privacy laws may have similar rights to access, correct, delete, and opt out of targeted advertising or profiling; contact us to exercise them.
12Do Not Track and automated decisions
Because there is no consistent industry standard for “Do Not Track” signals, our Products may not respond to them; we describe your cookie choices in the Cookie Policy. We do not use personal information to make decisions that produce legal or similarly significant effects about you solely by automated means without a lawful basis and appropriate safeguards.
13Children's privacy
The Products are intended for a general, adult audience and are not directed to children under the age required for consent in their jurisdiction (and in no event under 13). We do not knowingly collect personal information from such children. If you believe a child has provided us personal information, contact us and we will take appropriate steps to delete it.
14Third-party links and services
The Products may link to or integrate with Third-Party Services that we do not control. This policy does not apply to those services, and we are not responsible for their privacy practices. We encourage you to read the privacy notices of any third party you interact with. See also our Affiliate Disclosure.
15Changes to this policy; contact
We may update this Privacy Policy as our Products and legal obligations evolve. When we make material changes, we will update the effective date above and, where appropriate, provide additional notice. Your continued use of the Products after changes take effect means you accept the revised policy. For any privacy question or to exercise your rights, please reach us through the contact page.
Questions about this document, or about which EvlarSoft entity you're dealing with?
Contact EvlarSoft →