Privacy Policy
Veloce Paradigm is committed to protecting the privacy of every individual and business entity that interacts with our website or engages our services. This Privacy Policy describes what information we collect, how we use it, how we protect it, and what rights you hold with respect to your personal data.
Who We Are
Veloce Paradigm is a B2B strategic consulting firm specializing in the automotive retail sector. Our registered business address is 19 Parker St, Monticello, KY 42633, United States. We operate exclusively in a remote, digital capacity and provide services to dealerships, automotive retailers, and related businesses throughout the United States and internationally.
For the purposes of applicable data protection legislation, Veloce Paradigm is the data controller in respect of any personal data you provide to us through our website or through the course of a client engagement. All questions or requests regarding this Privacy Policy should be directed to info@veloceparadigm.com.
This Privacy Policy applies to all personal data collected through veloceparadigm.com, through our inquiry and contact forms, and through direct communications with our team in the context of a business relationship. It does not apply to third-party websites linked from our site.
Information We Collect
We collect personal and business information in a limited and purposeful manner. The categories of information we may collect are described below.
Information You Provide Directly
When you submit an inquiry form, contact us by email, or engage in any direct communication with us, you may provide information such as your full name, business name, job title, email address, phone number, and a description of your business needs or project requirements. This information is used exclusively to respond to your inquiry and assess project fit.
Information Collected Automatically
When you visit our website, certain technical data is collected automatically through standard web server logs and analytics tools. This may include your IP address, browser type and version, operating system, referring URL, pages visited, time spent on pages, and the date and time of your visit. This data is used in aggregate form for website performance and optimization purposes and is not linked to your personal identity.
Client Business Data
In the course of delivering our consulting services, clients may share operational data, inventory records, sales figures, customer aggregates, and other commercially sensitive business information. This data is governed by the relevant Data Processing Agreement executed at the start of an engagement and is handled under strict confidentiality obligations. Such data is not personal data in the consumer sense and is treated separately from the personal information described in this Policy.
Legal Basis for Processing
We process personal data only where we have a lawful basis to do so. Depending on the context, our legal basis for processing may include one or more of the following:
- Legitimate interests — processing your inquiry, evaluating potential engagements, and maintaining business records
- Contractual necessity — performing our obligations under a signed project agreement or retainer arrangement
- Legal obligation — retaining records as required by applicable law, including financial and tax regulations
- Consent — where you have explicitly opted in to receive communications from us, such as project updates or newsletters
We do not engage in any form of automated decision-making or profiling using personal data.
How We Use Your Information
Information collected through our website and client interactions is used for the following purposes:
| Purpose | Data Used |
|---|---|
| Responding to inquiries and assessing project suitability | Name, email, business name, project description |
| Issuing proposals, agreements, and invoices | Name, business name, email, address if provided |
| Delivering contracted consulting services | All relevant data provided under project agreement |
| Website performance and analytics monitoring | Anonymized usage data, IP address, browser data |
| Compliance with legal and financial obligations | Invoice records, payment data, correspondence |
| Improving our services and communications | Feedback provided by clients, engagement outcomes |
We do not use personal data for marketing purposes without explicit consent. We do not sell, rent, or trade personal data to any third parties under any circumstances.
Data Sharing and Third Parties
Veloce Paradigm does not share personal data with third parties except in the following limited circumstances:
- Service providers — we may engage trusted technology platforms for email hosting, document management, or secure file transfer. These providers are contractually obligated to handle data only as instructed by us and not for any independent purpose
- Legal compliance — we may disclose information if required to do so by law, court order, or regulatory authority, and will provide advance notice where legally permissible
- Business transfers — in the event of a merger, acquisition, or sale of business assets, personal data may be transferred as part of that transaction, with equivalent privacy protections maintained
All third-party service providers used by Veloce Paradigm are vetted for data security practices and are required to maintain appropriate safeguards consistent with applicable privacy law.
Data Retention
We retain personal data only for as long as is necessary to fulfill the purposes for which it was collected, or as required by applicable legal and financial record-keeping obligations.
Inquiry data from contacts who do not proceed to a client engagement is retained for a maximum of twelve (12) months following the last communication, after which it is securely deleted. Client data related to completed engagements is retained for a minimum of five (5) years for compliance purposes. Retainer and invoicing records are retained for seven (7) years in accordance with applicable tax regulations.
Anonymized, aggregate website analytics data may be retained indefinitely as it contains no personally identifiable information.
Data Security
Veloce Paradigm implements industry-standard technical and organizational measures to protect personal data against unauthorized access, accidental loss, destruction, or alteration. These measures include encrypted communication channels, access-controlled document storage, secure file transfer protocols, and restricted internal data access policies.
All team members with access to client or prospect data are bound by confidentiality obligations. We periodically review our security practices to ensure they remain appropriate in light of evolving threats and industry standards.
In the event of a data breach that is likely to result in a risk to individuals' rights and freedoms, we will take prompt action in accordance with applicable law, including notifying affected parties and relevant authorities where required.
Your Privacy Rights
Depending on your location and applicable law, you may hold certain rights with respect to your personal data. These may include the right to:
- Access the personal data we hold about you and receive a copy of that data
- Request correction of any inaccurate or incomplete personal data
- Request deletion of your personal data, subject to our legal retention obligations
- Object to or restrict the processing of your personal data in certain circumstances
- Withdraw consent to processing at any time, where processing is based on consent
- Receive your personal data in a portable, machine-readable format where technically feasible
- Lodge a complaint with a supervisory authority if you believe your rights have been infringed
To exercise any of these rights, please contact us at info@veloceparadigm.com. We will respond to all valid requests within thirty (30) calendar days. We may need to verify your identity before processing a request.
If you are a California resident, you may have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information is collected about you, the right to opt out of the sale of personal information (we do not sell personal data), and the right to non-discrimination for exercising your privacy rights.
International Data Transfers
Veloce Paradigm is based in the United States. If you are accessing our website or engaging our services from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your jurisdiction.
Where we transfer personal data internationally, we take appropriate steps to ensure that such transfers are subject to adequate safeguards consistent with applicable data protection law. If you have questions about cross-border data transfers, please contact us directly.
Children's Privacy
Our website and services are directed exclusively at business professionals and are not intended for use by individuals under the age of eighteen (18). We do not knowingly collect personal data from minors. If we become aware that we have inadvertently collected personal data from a minor, we will take immediate steps to delete that information.
Links to Third-Party Websites
Our website may contain links to external websites operated by third parties. These links are provided for convenience only. Veloce Paradigm is not responsible for the privacy practices, content, or data handling of any third-party website, and we encourage you to review the privacy policies of any external site you visit.
Changes to This Privacy Policy
We reserve the right to update this Privacy Policy at any time to reflect changes in our practices, applicable law, or operational requirements. Material changes will be communicated to active clients by email. The current version of this Policy will always be available on this page, with the effective date clearly indicated.
Your continued use of our website or engagement with our services following any update constitutes your acknowledgment of the revised Policy.