1. Who we are
Globenexa AB (“Globenexa”, “we”, “us”, “our”) is a sustainable electric mobility brand headquartered in Stockholm, Sweden. This Privacy Policy explains how we collect, process, and protect your personal information when you visit our website velory.com, use our mobile app, purchase products, or interact with our customer support.
We act as the Data Controller for your personal data. For any privacy-related inquiries, please contact our Data Protection Officer at dpo@velory.com or mail us at Globenexa AB, Södermalmstorg 4, 118 25 Stockholm, Sweden.
2. What personal data we collect
We collect information to provide better services to all our riders and customers. The categories of personal data we may collect include:
| Category | Examples | Legal basis (GDPR) |
|---|---|---|
| Identity & contact | Full name, email address, phone number, shipping/billing address | Contract performance, legitimate interest |
| Account credentials | Username, password, Globenexa Circuit ID, ride preferences | Contract performance |
| Transaction data | Purchase history, payment method (tokenized), order details, returns | Contract & legal obligation |
| Technical data | IP address, browser type, device identifiers, cookies, analytics | Legitimate interest (site security & improvements) |
| Ride & product telemetry* | Battery usage, odometer (only if you connect via Globenexa App and consent) | Consent / product warranty |
*Telemetry data is only collected when you explicitly pair your Globenexa e-bike with our app and grant permission. You can withdraw consent anytime in the app settings.
3. How we use your information
Globenexa uses your personal data for the following purposes:
- Order fulfillment: Process payments, ship products, provide order confirmations and updates.
- Customer support: Respond to inquiries, handle warranty claims, manage returns.
- Service improvement: Analyze website usage, optimize user experience, and develop new features.
- Marketing (with consent): Send you newsletters, exclusive offers, and Globenexa Circuit updates. You can unsubscribe anytime.
- Legal compliance: Detect fraud, enforce our Terms of Service, and comply with applicable laws.
6. Your privacy rights
Depending on your location (EEA, UK, Switzerland, California, Brazil, etc.), you may have the following rights regarding your personal data:
- Right to access: Request a copy of the data we hold about you.
- Right to rectification: Correct inaccurate or incomplete data.
- Right to erasure (“right to be forgotten”): Request deletion of your data, subject to legal obligations.
- Right to restrict processing: Limit how we use your data.
- Right to data portability: Receive your data in a structured, machine-readable format.
- Right to object: Object to processing based on legitimate interests or direct marketing.
- Right to withdraw consent: For any consent-based processing (e.g., marketing emails).
To exercise these rights, please email privacy@velory.com. We will respond within 30 days. For California residents, see our CCPA addendum available upon request.
7. Data security & retention
Globenexa implements industry-standard security measures including SSL encryption, firewalls, access controls, and regular security audits to protect your data from unauthorized access, alteration, or destruction. However, no internet transmission is 100% secure.
We retain your personal data only as long as necessary to fulfill the purposes outlined in this policy, comply with legal obligations (e.g., tax records for 7 years), resolve disputes, and enforce agreements. After that, data is anonymized or securely deleted.
8. Children's privacy
Globenexa does not knowingly collect personal data from children under the age of 16. Our products and services are directed toward adults and responsible riders over the legal age. If you believe a child has provided us with personal information, please contact us immediately, and we will take steps to delete such information.
9. International data transfers
Globenexa is headquartered in Sweden (EU) and may transfer your data to countries outside the European Economic Area (EEA) when using global service providers (e.g., cloud hosting, shipping carriers). In such cases, we ensure adequate safeguards, such as Standard Contractual Clauses (SCCs) or equivalent protections, are in place to guarantee your data remains secure.
For residents of the UK or Switzerland, similar transfer mechanisms apply. For any cross-border data transfer concerns, please reach out to our DPO.
10. Contact us & complaints
If you have any questions, concerns, or wish to submit a privacy request, please contact us:
- Email: privacy@velory.com (preferred for data requests)
- DPO direct: dpo@velory.com
- Mail: Globenexa AB, Attn: Data Protection, Södermalmstorg 4, 118 25 Stockholm, Sweden
You also have the right to lodge a complaint with your local supervisory authority (e.g., Swedish Authority for Privacy Protection – IMY). We would appreciate the chance to resolve your concerns first.
⚡ Globenexa reserves the right to update this Privacy Policy from time to time. Material changes will be notified via email or site banner. The “Last revised” date indicates when this policy was last updated.