Privacy Policy
Last updated: 2026-03-071. Introduction
VǪLVE (“we”, “our”, or “us”) is operated by aiVOLUTION, a company registered in Denmark. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the VǪLVE application and website (collectively, the “Service”).
By using the Service, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use the Service.
Contact:
VǪLVE (an aiVOLUTION brand)
Email: privacy@volve.dk
Website: www.volve.dk
2. Information We Collect
a) Account Information
When you register, we collect:
- Email address
- Name (optional)
- Password (stored as a secure hash via Clerk)
- Profile image (if provided via OAuth)
b) Usage Data
We automatically collect:
- Pages and feeds viewed within the app
- Articles read, tapped, or dismissed
- Triage actions (swipes, votes, expansions)
- Session timestamps and device type
- Push notification interactions
c) Device & Technical Data
- Device operating system and version
- App version
- Firebase Cloud Messaging (FCM) token (for push notifications)
- IP address (for fraud prevention; not stored long-term)
d) Content You Provide
- Feed URLs and sources you add
- Custom feed names and configuration
- Organisation memberships
3. AI Processing & Data Summarisation
This section is required for Google Play Data Safety compliance.
VǪLVE uses AI to enhance your reading experience:
- Article Summarisation: When you access an article in your feed, VǪLVE may send the article’s publicly available text content to Google’s Gemini AI API to generate a concise summary. This content is not personally identifiable — it is the public article text itself.
- Feed Intelligence: We analyse your triage interactions (which articles you engage with or dismiss) to improve feed ranking. This processing occurs on our servers and is not shared with third parties for advertising.
- No Training on Your Data: We do not use your personal data or private reading history to train any AI model. AI summaries are generated in real-time on public article content only.
- Retention of AI Outputs: AI-generated summaries are cached on our servers for up to 30 days to improve performance, then automatically deleted.
4. How We Use Your Information
We use the information we collect for the following purposes:
- Account management: Authenticate users, manage accounts, and send verification communications
- Service delivery: Display your feeds, generate AI summaries, and deliver push notifications
- Personalisation: Rank articles based on your reading behaviour within your own feed
- Performance monitoring: Analyse app performance, detect and fix bugs
- Security: Detect fraud, prevent unauthorised access, and enforce our Terms of Service
- Legal compliance: Meet our obligations under applicable laws, including GDPR
We do not use your data for third-party advertising or sell it to data brokers.
5. Third-Party Services
We share data with the following trusted service providers, who act as data processors on our behalf:
| Provider | Purpose | Data Shared | Privacy Policy |
|---|---|---|---|
| Clerk | Authentication & identity | Email, name, OAuth tokens | clerk.com/privacy |
| Google Gemini AI | Article summarisation | Public article text (not your personal data) | policies.google.com |
| Firebase (Google) | Push notifications | Device FCM token | firebase.google.com/support/privacy |
| Hetzner Cloud | Server hosting | All data (EU-based servers) | hetzner.com/legal/privacy-policy |
| PostgreSQL | Database | All user and content data | (Self-hosted, no third-party sharing) |
We do not share your personal information with any other third parties except as required by law.
6. Data Storage & Security
- Location: All data is stored on servers located within the European Union (Hetzner, Germany).
- Encryption: Data is encrypted in transit using TLS 1.3. Passwords are never stored in plain text.
- Access controls: Only authorised personnel can access production systems.
- Breach notification: In the event of a data breach affecting your rights, we will notify affected users and the Danish Data Protection Authority (Datatilsynet) within 72 hours, as required by GDPR.
7. Data Retention & Deletion
Retention Periods
| Data Type | Retention Period |
|---|---|
| News articles | 30 days, then automatically deleted |
| AI-generated summaries | 30 days, then automatically deleted |
| User activity logs | 90 days |
| Account data | Until account deletion |
| Backup snapshots | Up to 7 days after deletion |
Account Deletion
You can permanently delete your account and all associated data at any time:
- In the app: Settings → Account → Delete Account
- By email: Send a request to privacy@volve.dk with subject “Account Deletion Request”
Upon deletion, the following data is permanently and irreversibly removed:
- Profile information (name, email)
- All feeds and articles
- Reading history and triage actions
- AI summary cache
- Push notification tokens
- Subscription data
Deletion is processed within 30 days.
8. Google Play Data Safety Compliance
To satisfy Google Play Store Data Safety requirements, here is a summary of our data practices:
| Category | Collected | Purpose | Shared with Third Parties | User Can Delete |
|---|---|---|---|---|
| Name | Yes (optional) | Account management | No | Yes (account deletion) |
| Email address | Yes | Authentication | Clerk (auth provider) | Yes (account deletion) |
| User IDs | Yes | Authentication | Clerk | Yes (account deletion) |
| App interactions | Yes | Personalisation | No | Yes (account deletion) |
| Crash logs | Yes | App stability | No | No |
| Device identifiers (FCM) | Yes | Push notifications | Firebase | Yes (account deletion) |
| Public article content | Processed temporarily | AI summarisation | Google Gemini API | N/A (not personal data) |
Data sharing: We do not share personal data for advertising or marketing. All third-party sharing is with processors operating under data processing agreements.
9. Children’s Privacy
VǪLVE is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal data, please contact us at privacy@volve.dk and we will delete the information promptly.
10. Your Rights Under GDPR
As a user in the European Economic Area, you have the following rights:
- Right of Access: Request a copy of your personal data
- Right to Rectification: Correct inaccurate data
- Right to Erasure: Request deletion of your data (“right to be forgotten”)
- Right to Data Portability: Receive your data in a machine-readable format
- Right to Object: Object to processing based on legitimate interests
- Right to Restrict Processing: Request we limit how we use your data
To exercise any of these rights, contact: privacy@volve.dk
You also have the right to lodge a complaint with the Danish Data Protection Authority (Datatilsynet) at www.datatilsynet.dk.
11. Cookies & Local Storage
The VǪLVE web application uses:
- Session cookies: Required for authentication (set by Clerk)
- Local storage: To store your theme preference and session state
We do not use advertising cookies or tracking pixels. The Android app does not use browser cookies.
12. International Data Transfers
Your data is stored within the EU. If data is processed by third-party providers outside the EU (e.g., Google Gemini AI), such transfers are covered by appropriate safeguards including Standard Contractual Clauses (SCCs) approved by the European Commission.
13. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes via email or an in-app notification at least 30 days before changes take effect. The “Last Updated” date at the top of this page reflects the most recent revision.
Your continued use of the Service after changes take effect constitutes acceptance of the updated policy.
14. Contact Us
For privacy-related questions or to exercise your rights:
VǪLVE ApS
Email: privacy@volve.dk
Website: www.volve.dk
Country: Denmark (EU)