Sellorie

Legal

Privacy policy

Last updated 2026-04-20

1. Introduction

Sellorie (“Company,” “we,” “us,” or “our”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website at https://sellorie.com (the “Site”), engage our services, or otherwise interact with us.

By accessing or using our Site or services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree, please discontinue use of our Site and services immediately.

2. Information we collect

2.1 Information you provide directly

  • Contact information: Name, email address, phone number, company name, and job title when you contact us, book a consultation, or submit a form.
  • Project materials: Documents, brand assets, credentials, specifications, and other content you share with us to scope or execute work.
  • Communications: Records of correspondence between you and Sellorie, including emails, messages, and call notes.
  • Payment information: Billing details processed through our payment processors. We do not store credit card numbers directly.
  • Feedback and surveys: Any information you provide when responding to surveys, testimonials, or reviews.

2.2 Information collected automatically

  • Device and browser data: IP address, browser type and version, operating system, device type, screen resolution, and language preferences.
  • Usage data: Pages visited, time spent on pages, referring URL, click patterns, and navigation paths through our Site.
  • Analytics: We use Vercel Analytics which collects aggregated, privacy-friendly metrics including page views, geographic region (country-level), and device category. Vercel Analytics does not use cookies and does not track individuals across sites.

2.3 Information from third parties

We may receive information about you from third-party sources including publicly available business information, referral partners, and platforms through which you schedule meetings with us.

3. How we use your information

We use collected information for the following purposes:

  • Service delivery: To provide, maintain, and improve our design, engineering, and automation services.
  • Communication: To respond to inquiries, send project updates, deliver requested information, and provide customer support.
  • Business operations: To manage client relationships, process payments, maintain records, and administer contracts.
  • Site improvement: To analyze usage patterns, diagnose technical issues, and enhance our Site's functionality and user experience.
  • Legal compliance: To comply with applicable laws, regulations, legal processes, or enforceable governmental requests.
  • Security: To detect, prevent, and address fraud, unauthorized access, and other illegal activities.
  • Marketing: With your consent, to send relevant updates about our services. You may opt out at any time.

We do not sell your personal data. We do not use client materials to train machine learning models. We do not build profiles on individuals using third-party data enrichment services.

4. Legal basis for processing (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or similar jurisdiction, we process your data under the following legal bases:

  • Contractual necessity: Processing required to perform a contract with you or take pre-contractual steps at your request.
  • Legitimate interests: Processing necessary for our legitimate business interests (improving services, security, marketing) where not overridden by your rights.
  • Consent: Where you have given explicit consent for a specific processing purpose.
  • Legal obligation: Processing required to comply with a legal obligation to which we are subject.

5. Cookies and tracking technologies

Our Site does not use tracking cookies or set persistent identifiers for advertising purposes. Vercel Analytics operates without cookies. Essential cookies may be used solely for site functionality (such as session management if you log into a client portal). We do not engage in cross-site tracking or behavioral advertising.

6. Data sharing and disclosure

We may share your information with the following categories of recipients:

  • Service providers (sub-processors): Third-party vendors who assist in delivering our services, subject to contractual obligations to protect your data.
  • Professional advisors: Lawyers, accountants, and insurers where necessary for business operations.
  • Legal requirements: When required by law, subpoena, court order, or governmental regulation.
  • Business transfers: In connection with a merger, acquisition, or sale of assets, with notice provided to affected individuals.
  • With your consent: When you have explicitly authorized disclosure to a specific party.

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

7. Sub-processors

We use the following sub-processors to deliver our services:

  • Vercel: Website hosting and analytics (United States).
  • Google Workspace: Email communications and document collaboration (United States).
  • Calendly: Appointment scheduling (United States).
  • Stripe: Payment processing (United States).
  • Notion: Project management and documentation (United States).

Each sub-processor processes data only as necessary to provide their respective service and is bound by their own data processing agreements and privacy policies.

8. Data retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including satisfying legal, accounting, or reporting requirements.

  • Client project data: Retained for the duration of the engagement plus 3 years for warranty and legal purposes.
  • Contact information: Retained until you request deletion or for 5 years after last interaction, whichever is sooner.
  • Financial records: Retained for 7 years as required by tax and accounting regulations.
  • Analytics data: Aggregated and anonymized; retained indefinitely as it cannot identify individuals.

9. Data security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit (TLS/SSL) and at rest where applicable.
  • Access controls limiting data access to authorized personnel only.
  • Regular security assessments of our systems and sub-processors.
  • Secure credential management and multi-factor authentication.
  • Incident response procedures for potential data breaches.

While we strive to protect your data, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security but commit to promptly notifying affected individuals and relevant authorities in the event of a data breach as required by applicable law.

10. International data transfers

Your information may be transferred to and processed in countries other than your country of residence. When we transfer data outside the EEA or UK, we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission or reliance on the recipient's participation in recognized data protection frameworks.

11. Your rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Right of access: Request a copy of the personal data we hold about you.
  • Right to rectification: Request correction of inaccurate or incomplete data.
  • Right to erasure: Request deletion of your personal data where there is no compelling reason for continued processing.
  • Right to restrict processing: Request limitation of processing in certain circumstances.
  • Right to data portability: Receive your data in a structured, commonly used, machine-readable format.
  • Right to object: Object to processing based on legitimate interests or for direct marketing.
  • Right to withdraw consent: Withdraw previously given consent at any time without affecting the lawfulness of prior processing.
  • Right to lodge a complaint: File a complaint with your local data protection supervisory authority.

To exercise any of these rights, contact us at contact@sellorie.com. We will respond to verified requests within 30 days (or sooner where required by law). We may request verification of your identity before processing your request.

12. California residents (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA):

  • The right to know what personal information is collected, used, shared, or sold.
  • The right to delete personal information held by us and by extension our service providers.
  • The right to opt-out of the sale or sharing of personal information. Note: we do not sell personal information.
  • The right to non-discrimination for exercising your privacy rights.
  • The right to correct inaccurate personal information.
  • The right to limit use and disclosure of sensitive personal information.

We do not sell or share (as defined by CCPA/CPRA) personal information for cross-context behavioral advertising purposes.

13. Children's privacy

Our Site and services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child without parental consent, we will take steps to delete that information promptly. If you believe we have inadvertently collected information from a child, please contact us immediately.

14. Third-party links

Our Site may contain links to third-party websites or services. We are not responsible for the privacy practices or content of those third parties. We encourage you to review the privacy policies of any third-party sites you visit.

15. Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. We will update the “Last updated” date at the top of this page. For material changes, we will provide prominent notice on our Site or direct notification where feasible. Your continued use of our Site or services after any changes constitutes acceptance of the updated policy.

16. Contact us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

We aim to resolve all complaints and requests within 30 days. If you are unsatisfied with our response, you have the right to lodge a complaint with your local data protection authority.