Velora Wallet ("we," "us," or "our") is committed to protecting your privacy. Because Velora is a non-custodial tool, your anonymity and the security of your data are foundational to how the app is built — not an afterthought.
1. Zero Data Collection Policy
Velora does not collect, store, or transmit any personal data, recovery phrases, private keys, or IP addresses to our servers. This includes:
- Your name, email address, or physical location
- Your recovery phrase (seed phrase) or private keys
- Your wallet addresses, balances, or transaction history
- Your IP address or device identifiers
2. Local Storage and Encryption
All sensitive data is stored exclusively on your device using industry-standard encryption:
- Keys: Private keys are double-encrypted using PBKDF2 (120,000 iterations) and AES-256-GCM.
- Hardware Security: We utilize the Android Keystore System to ensure keys never leave the secure hardware environment (TEE/SE) of your device.
- Local Database: Account labels and app settings are stored in a local Room database and are never shared with any external party.
3. Use of Device Permissions
Velora requests the following device permissions, each used for a specific and limited purpose:
- Camera: Used only to scan Pactus QR codes. No images are saved or transmitted.
- Biometrics: Used to securely unlock your local vault. We never have access to your actual fingerprint or face data — we only receive a success/fail token from the operating system.
- Notifications & Foreground Service: Used for transaction detection and smart alerts on Android 14/15. No notification content leaves your device.
4. Contact Information
For any inquiries regarding this policy, please visit our official website at velora.pactusscan.com.