Privacy Policy

FOUR PIONEERS PTE. LTD. (“we,” “our,” or “us”) takes your privacy very seriously. To provide you with our personalized software (the “Software”) and services (the “Service”), we need to collect certain personal information about you. This Privacy Policy explains what information we collect, how we use and protect it, and your rights regarding your data.

This Privacy Policy does not apply to any third-party websites, services, or applications, even if they are accessible through our Service. By using Veliss, you consent to the terms described below. If you do not agree with any term of this Privacy Policy, please discontinue use of the Software and Service.


  1. Data Retention

We retain the information we collect as long as necessary to provide the Services, for internal analytical purposes, or to comply with legal obligations, resolve disputes, and enforce agreements.

The criteria used to determine retention periods include:

  • How long the personal data is needed to provide the Services and operate the business;

  • The type of personal data collected;

  • Whether we are legally required to retain data (e.g., mandatory retention laws, government orders, or litigation).

We will only retain your personal information for three (3) years.


  1. Information We Collect and Purposes of Collection

2.1 Information You Submit

(1) Camera and Photos We access your camera to enable photography features and your photo library to provide editing, gallery, and preview functions. If you choose to upload photos to our community, those photos may be stored on our servers. You may delete these uploaded photos at any time.

(2) Facial Feature Data When you use face recognition-related functions (e.g., cartoon effects), you may grant permission for Veliss to access your camera or photo library. We will only access these sources after you explicitly confirm permission. We do not collect or store facial feature data. Veliss only analyzes the position and shape of facial features locally using our algorithm and returns the processed image to you. No photos or facial data are stored or shared with third parties.

(3) Support-Related Information If you contact us via support or email, we may collect your email address and any information you voluntarily provide to assist with customer support or feedback.

Purposes of Collection:

  • To operate and update the Software and Services;

  • To improve and customize user experience;

  • To maintain, test, and monitor quality and functionality;

  • To provide support and handle user inquiries or complaints.


2.2 Information We Collect Automatically

(1) Technical Information We may use APIs provided by iOS to collect technical data about your device and usage, such as:

  • Operating system type, name, and version;

  • Software configuration, version, and settings;

  • IP address, anonymous identifiers, and device IDs;

  • Advertising ID;

(2) Usage Information We may use APIs to collect information about how you interact with the Software and Services, including browsing activities, viewed content, ads or offers, usage frequency, and timestamps.

(3) Social Networks We may collect interaction data from social networks when you connect or interact with them through the Software.

(4) Payment Data We may use Apple-provided APIs to collect transaction details, such as purchase items, subscription period, order status, and payment time. We do not collect or store payment credentials. Payments are processed by third-party providers such as Apple. You should review their privacy policies before submitting any payment information: https://www.apple.com.

Purposes of Automatically Processed Information:

  • To operate and update the Software and Services;

  • To improve performance and add features;

  • To maintain, test, and enhance quality and stability.

If any new purpose for processing arises, we will update this Privacy Policy accordingly.


  1. How Your Information May Be Shared

  • We share information with third parties only as described in this Privacy Policy.

  • We do not rent or sell your personal data. However, we may share information with third-party service providers that assist in operating or improving the Software. These third parties may use automated data processing technologies. We cannot control their tracking technologies or their use. If you do not wish to share information with third parties, please avoid using services integrated with them.

  • The Software may contain links to third-party websites or services. We are not responsible for their private practices or content.

  • We may disclose your information when legally required or necessary to:

    1. Comply with applicable laws or legal processes;

    2. Protect our rights or the safety of users and others;

    3. Investigate or prevent fraud;

    4. Respond to government requests.


  1. Uploaded Materials and Generated Content

When you upload photos, text prompts, or any other materials (“User Inputs”) into Veliss, we process them only once for the purpose of generating your requested image or creative output.

We understand that your uploaded materials may include sensitive or personal information. Therefore, we apply strict data minimization and deletion standards to protect your privacy at all times.

  • Immediate Processing and Deletion

    1. All uploaded images, text prompts, and related metadata are transmitted securely to our processing system for real-time generation.

    2. Once the AI generation process is completed and the result has been delivered to your device, your uploaded data is immediately deleted from our servers.

    3. We do not retain, archive, or back up any uploaded materials or generated results on our servers.

    4. No copy, cache, or residual data of your uploads is stored in our databases after completion of processing.

  • No AI Training, Profiling, or Secondary Use

    1. We never use your uploaded or generated content for AI training, fine-tuning, or algorithmic optimization.

    2. Your content is not analyzed for behavioral profiling, marketing, or dataset enrichment.

    3. The entire process is automated and limited strictly to your generation request.

  • User Control

    1. Because we do not retain uploads or generation history, deletion occurs automatically.

    2. If you wish to ensure full erasure of any temporary processing record, you may contact Veliss@frper.com, and we will confirm permanent deletion within 72 hours.

  • Transparency and Data Integrity

    1. Our data handling model follows a strict “process-and-forget” principle.

    2. This means once your requested image is delivered, all associated upload data is wiped from active and backup storage immediately.

    3. This guarantees that no unauthorized party, including Veliss itself, can ever access your uploaded materials again.

In summary, we process your uploaded information only for generation, and delete it immediately after processing — ensuring that your data remains fully private and under your control at all times.


  1. Facial and Biometric Data

Veliss offers AI-powered features that may analyze facial or bodily characteristics—such as portrait enhancement, style transfer, or cartoon rendering—to generate personalized results.

Because biometric data is highly sensitive, we treat it with exceptional care and transparency:

  • Purpose and Scope of Processing

    1. Facial and bodily features are analyzed solely to identify structure, contours, and position for image rendering or transformation.

    2. Veliss does not perform identity recognition, biometric matching, or verification of any individual.

  • Local and Encrypted Processing

    1. Whenever possible, analysis occurs locally on your device.

    2. When remote processing is necessary, your images are transmitted through encrypted HTTPS/TLS channels to secure servers, processed transiently, and deleted immediately after rendering.

  • Data Minimization and Non-Disclosure

    1. We do not collect, store, share, sell, or disclose any facial or biometric feature data to third parties.

    2. No persistent biometric templates or identifiers are ever created or retained.

  • Legal Basis and User Consent

    1. Facial and biometric data are processed only after you grant explicit consent by enabling the relevant feature, in line with Article 6(1)(a) and Article 9(2)(a) of the GDPR.

    2. You may withdraw your consent at any time, after which we will cease all related processing immediately.

  • Security and Deletion

    1. Biometric-related data is handled under strict administrative and technical safeguards and permanently deleted once the image generation is complete.

We are committed to ensuring that your personal likeness and sensitive biometric data remain fully private, secure, and under your control.


  1. AI-Generated Content Responsibility and Usage Restrictions

Veliss provides tools that leverage artificial intelligence to create or enhance images. While these tools are designed to empower creativity, users must understand both their responsibilities and the inherent limitations of AI systems.

  • Nature of AI-Generated Results

    1. AI-generated content is produced algorithmically based on your inputs. Such results may occasionally contain inaccuracies, distortions, or unintended elements.

    2. We do not guarantee the factual accuracy, realism, or appropriateness of any generated output.

    3. You are solely responsible for reviewing, interpreting, and deciding how to use generated materials.

  • Prohibited Uses You agree not to use Veliss to create, upload, or distribute any content that:

    1. Violates applicable laws or promotes illegal activity;

    2. Contains explicit sexual, pornographic, violent, or hateful material;

    3. Defames, impersonates, or misrepresents any individual;

    4. Infringes upon any copyright, trademark, or likeness rights;

    5. Misuses another person’s image, identity, or biometric information;

    6. Attempts to produce misleading or deceptive “deepfake” media.

  • Intellectual Property and Ownership

    1. You retain full ownership of your uploads and AI-generated creations.

    2. By using the Service, you grant Veliss a limited, revocable, non-exclusive license to process, store, and deliver those creations solely for the purpose of operating the Service.

    3. We make no claim of ownership over your content and will not use it for advertising, promotional, or training purposes without your express permission.

  • Liability Disclaimer

    1. Veliss shall not be held liable for the content or consequences of AI-generated images created by users.

    2. You acknowledge that AI outputs may include artifacts or interpretations beyond our control, and you assume full responsibility for their use and distribution.

By using our AI features, you agree to respect these boundaries and uphold lawful and ethical usage of the generated content.


  1. AI Content Liability, Ethical Use, and Platform Responsibilities

Veliss provides creative tools driven by artificial intelligence to help users generate, modify, and enhance visual content. We believe in promoting creativity, innovation, and personal expression — while ensuring safety, legality, and respect for others.

To maintain this balance, we set out the following principles and obligations for both users and the platform:

  • Nature and Limitations of AI-Generated Content

    1. AI-generated content is the product of computational models that may combine, interpret, or transform visual and textual inputs.

    2. The output may include fictional, stylized, or distorted elements and should not be considered factual or authentic representation of any real individual or event.

    3. Veliss does not guarantee that generated results will meet your expectations or be free of artifacts, bias, or technical inconsistencies.

    4. All creative outcomes are offered “as is”, without warranties of accuracy, completeness, or fitness for a particular purpose.

  • Ethical Use and User Responsibilities

By using Veliss, you agree to use AI-generated outputs responsibly and refrain from activities that could harm others or violate the rights of any individual.

Specifically, you must not:

  • Generate, upload, or distribute content that is illegal, defamatory, or obscene;

  • Create or share misleading “deepfake” media that impersonates or exploits another person’s image;

  • Use the Service for harassment, discrimination, hate speech, or manipulation;

  • Circumvent safety filters or attempt to generate content restricted by law or platform policy;

  • Commercialize or publish AI-generated images that infringe on third-party intellectual property or likeness rights.

Veliss reserves the right to suspend or terminate accounts involved in these activities and to remove any content that violates these terms.

  • Platform’s Role and Disclaimers

    1. Veliss acts as a technology provider facilitating the AI generation process; it does not create or curate the specific outputs produced by users.

    2. We do not manually review or approve each generated result unless required for moderation or legal compliance.

    3. Veliss disclaims all responsibility for any loss, damage, or claim arising from user-generated or AI-generated content.

    4. Users remain solely responsible for the meaning, use, and public distribution of their generated content.

  • Reporting and Enforcement

We take misuse seriously. If you encounter content that appears unlawful, harmful, or violates rights, please report it via Veliss@frper.com. Our team will review and, where appropriate, remove such content and take necessary actions to ensure compliance with applicable laws.

  • Transparency and Continuous Review

As AI technology evolves, Veliss is committed to ongoing review of its models, filters, and moderation standards.

We will continue improving transparency about how AI content is produced, monitored, and controlled, ensuring that creativity and ethics coexist within a safe and respectful environment.


  1. Security of Your Information

We take the protection of your personal information and uploaded materials extremely seriously. Veliss implements a combination of administrative, technical, and physical safeguards designed to maintain data confidentiality, integrity, and availability throughout every stage of processing.

8.1. Encryption and Secure Transmission

  • All data transfers between your device and our servers are protected using industry-standard HTTPS/TLS 1.3 encryption.

  • Uploaded materials, including photos and text prompts, are transmitted through secure, time-limited sessions and automatically deleted once processing is complete.

  • Sensitive operations, such as payment validation or account verification, are handled exclusively through secure platform APIs (e.g., Apple or Google) and never expose raw user credentials to Veliss.

8.2. Storage and Access Control

  • We operate on servers protected by multi-layer firewalls, intrusion detection systems, and continuous monitoring tools.

  • Access to production data is restricted to a limited number of authorized personnel who require such access to maintain the Service.

  • All access is logged, regularly reviewed, and governed by strict internal security policies and confidentiality agreements.

  • User data is encrypted at rest using AES-256 encryption and cannot be accessed without multi-factor authentication.

8.3. Data Minimization and Immediate Deletion

  • In accordance with our process-and-forget model, Veliss stores only the minimum amount of data necessary to provide the Service.

  • Uploaded materials and generated content are immediately deleted upon completion of the AI generation process.

  • Technical logs and metadata are anonymized wherever possible and purged automatically within defined retention periods.

8.4. Continuous Monitoring and Testing

  • We conduct periodic penetration tests, vulnerability scans, and security audits to identify and mitigate potential risks.

  • Our development team follows secure coding standards, code reviews, and version control best practices to reduce exposure to exploits.

  • Incident detection and response mechanisms are in place to ensure rapid containment and recovery in the event of a security threat.

8.5. Third-Party Security Standards

  • When data is processed by third-party providers (e.g., Gemini or Apple APIs), we ensure these partners adhere to ISO 27001, SOC 2, or equivalent international security standards.

  • All third-party contracts include confidentiality clauses and require compliance with data protection laws applicable in your region.

8.6. User Responsibilities

While we take every reasonable measure to safeguard your data, no system can guarantee absolute security.

We encourage you to:

  • Keep your device operating system up to date;

  • Avoid sharing your account or device with others;

  • Report any suspected unauthorized access or security vulnerability to Veliss@frper.com immediately.

8.7. Incident Response and Notification

If a data breach or security incident affecting your personal information occurs, we will:

  • Promptly investigate and take all reasonable steps to minimize impact;

  • Notify affected users and regulators within legally required timeframes;

  • Provide details on the nature of the breach, affected data, and recommended mitigation actions.

8.8. Compliance and Continuous Improvement

Our security program is aligned with leading frameworks such as GDPR Article 32, NIST Cybersecurity Framework, and OWASP best practices. We continually evaluate and upgrade our systems to stay ahead of evolving threats, ensuring your information remains private, secure, and under your control.


  1. Right of Access, Modification, and Deletion

Veliss respects your privacy rights and ensures that you maintain full control over your personal data.

Depending on your location and applicable privacy laws, you may have the following rights regarding your information collected and processed by Veliss.


9.1. Right of Access

You have the right to:

  • Request confirmation as to whether we process your personal data;

  • Obtain a copy of your personal information currently held by us;

  • Receive an explanation of what categories of data we process, for what purpose, and how long we retain it.

Access requests can be made at any time by contacting Veliss@frper.com. We will provide the requested information in a structured, commonly used, and machine-readable format.


9.2. Right to Rectification (Correction)

If you believe that any personal data we hold about you is inaccurate, incomplete, or outdated, you may request correction or updates at any time.

Once verified, we will promptly amend the relevant data and confirm the update.


9.3. Right to Erasure (“Right to Be Forgotten”)

You may request the deletion of your personal data under any of the following conditions:

  • The data is no longer necessary for the purpose for which it was collected;

  • You withdraw your consent for processing;

  • You object to processing and there are no overriding legitimate grounds for us to retain the data;

  • Processing was unlawful or in violation of applicable data protection laws.

Upon receiving your verified deletion request:

  • We will permanently erase your personal data from all active and backup systems within 30 calendar days, unless retention is required for legal, regulatory, or security reasons.

  • Once deletion is complete, you will receive a written confirmation from our privacy team.


9.4. Right to Withdraw Consent

Where processing is based on your consent (e.g., use of facial recognition features), you may withdraw that consent at any time without affecting the lawfulness of prior processing.

After withdrawal, related data will be immediately deleted and processing will cease.


9.5. Right to Restrict or Object to Processing

In certain circumstances, you may request that we temporarily suspend processing of your data or object to specific uses (e.g., analytics or product optimization).

If you object, we will cease processing unless we can demonstrate compelling legitimate grounds that override your interests or rights.


9.6. Right to Data Portability

Where applicable under law, you may request that we provide your personal data in a portable format or transfer it directly to another service provider, if technically feasible.


9.7. Verification and Response Timeframe

To protect your privacy and maintain data security:

  • We may need to verify your identity before fulfilling your request.

  • We will respond to all valid requests within 30 days of receipt.

  • If your request is unusually complex or involves multiple systems, we may extend the timeframe by an additional 30 days, and will inform you of the reason for the delay.


9.8. Limitations and Exceptions

Your rights may be limited under certain legal or technical conditions, for example:

  • When retaining data is necessary for compliance with tax, accounting, or fraud-prevention obligations;

  • When deletion would compromise the security or integrity of our systems;

  • When applicable laws require us to preserve transaction or payment records for a specified period.

In such cases, we will notify you of the applicable exception and ensure your request is honored to the greatest extent possible.


9.9. How to Submit a Request

To exercise any of the above rights, please contact our Data Protection Officer via email: 📩 Veliss@frper.com

In your request, please specify:

  • Your full name and email address used within the App;

  • The right(s) you wish to exercise;

  • Any relevant details to help us verify your identity and locate your data.

We do not charge a fee for processing your request unless it is excessive, repetitive, or unfounded, in which case a reasonable administrative fee may apply.


9.10. Appeals and Supervisory Authority

If you are unsatisfied with our response or believe that we have not handled your data in accordance with applicable laws, you have the right to lodge a complaint with your local data protection authority. We will cooperate fully with any investigation and work to resolve concerns promptly and transparently.


  1. Privacy Policy Concerning Children

Veliss is not designed for or directed toward children. We are committed to protecting the privacy of minors and complying with applicable child protection and data privacy laws, including the Children’s Online Privacy Protection Act (COPPA) in the United States and Article 8 of the GDPR in the European Union.


10.1. Minimum Age Requirement

  • The Veliss app and its Services are intended only for users who are at least 18 years old, or the age of digital consent as defined by the laws of your country or region (for example, 16 in the EU).

  • We do not knowingly collect, store, or process any personal information from children below the minimum age threshold.

If you are under the applicable age, you must not use Veliss, upload photos, submit personal information, or interact with our AI features in any way.


10.2. No Intentional Collection of Children’s Data

  • We do not knowingly request, process, or retain any personal data (including photos, images, or text prompts) from minors.

  • Our systems are not designed to identify or track users based on age, and all uploads are treated as adult submissions by default.

  • If we become aware that a child’s data has been inadvertently collected, we will delete it immediately and take reasonable steps to prevent further collection.


10.3. Parental and Guardian Rights

If you believe that we may have unintentionally collected personal data from a minor under your care, you can request deletion by contacting: 📩 Veliss@frper.com

Please include sufficient information for us to verify your status as a parent or legal guardian and identify the relevant account or data.

Upon verification, we will permanently remove the child’s data from our systems and confirm completion.


10.4. Regional Legal Compliance

Veliss adheres to global child privacy standards, including:

  • COPPA (U.S.) – No collection or processing of data from users under 13 years of age.

  • GDPR-K (EU) – Processing of children’s data under 16 years old requires parental consent (or 13, where local law permits).

  • CCPA/CPRA (California) – No sale or sharing of personal information of users under 16 years old without affirmative consent.

We continually review our systems to ensure ongoing compliance with evolving child protection and data privacy laws worldwide.


10.5. Educational and Family Use Disclaimer

Veliss does not provide educational, entertainment, or family-oriented services for minors. We do not market or promote our app to children, and our AI features are restricted to adult-oriented creative purposes. If we ever introduce features suitable for younger audiences in the future, a separate, child-specific privacy policy will be provided, along with explicit parental consent requirements.


10.6. Reporting Concerns

If you suspect a violation of this Children’s Privacy Policy or believe that a child’s data has been misused, please contact us immediately at Veliss@frper.com. We will investigate all such reports promptly and take appropriate corrective actions, including notifying regulators where required.


  1. Transfer of Data Outside Your Territory

Veliss is a globally operated service. As part of delivering our products and AI generation features, your information may be processed, stored, or transferred across multiple data centers located in different countries or regions. We ensure that all cross-border data transfers are conducted lawfully, securely, and transparently, in accordance with applicable data protection laws such as the EU General Data Protection Regulation (GDPR), the UK Data Protection Act 2018, the Personal Data Protection Act (PDPA) of Singapore, and other relevant privacy frameworks.


11.1. Global Operations and Data Locations

  • Our primary data processing and storage facilities are hosted on secure servers operated by reputable providers that comply with ISO 27001, SOC 2, and other international information security standards.

  • Depending on your location, your personal data may be transferred to and processed in:

    1. Singapore (our corporate headquarters);

    2. The United States (cloud hosting, AI computation, and analytics);

    3. The European Union (where required for regional compliance or partner processing);

    4. Other jurisdictions where our verified third-party vendors (e.g., Gemini, Apple, or Google) operate.

Each data transfer occurs only to the extent necessary to provide and maintain the Service.


11.2. Legal Basis for International Transfers (GDPR Compliance)

For users located within the European Economic Area (EEA), the United Kingdom, or other regions with data transfer restrictions:

  • We rely on one or more of the following legal mechanisms to ensure adequate protection:

    1. Standard Contractual Clauses (SCCs) approved by the European Commission;

    2. Data Processing Agreements (DPAs) executed with all external processors;

    3. User consent, where applicable (e.g., for AI-related cloud processing).

  • These mechanisms ensure that your data receives an equivalent level of protection as required under the GDPR, even when processed outside your country of residence.


11.3. Safeguards and Encryption

We implement multiple safeguards for all cross-border data transfers, including:

  • End-to-end TLS 1.3 encryption during data transmission;

  • Data encryption at rest using AES-256;

  • Strict access control, role-based authorization, and audit logging;

  • Regular third-party audits and penetration testing to ensure ongoing compliance.


11.4. Your Rights Regarding Cross-Border Transfers

You have the right to:

  • Request detailed information about where your personal data is processed or stored;

  • Obtain a copy of the relevant transfer safeguards (e.g., Standard Contractual Clauses) upon request;

  • Withdraw consent for cross-border processing at any time by contacting Veliss@frper.com.

Upon withdrawal of consent, we will cease all non-essential cross-border data processing, unless required for legal, contractual, or security purposes.


11.5. Third-Party Processors

Whenever your information is transferred to or processed by a third-party provider (e.g., Gemini, Apple, Google Cloud, or other AI/analytics services), we ensure that:

  • Each partner adheres to the same or higher data protection standards as those enforced by Veliss;

  • Data is processed only under our instruction and within the contractual limits specified in our Data Processing Agreements (DPAs);

  • No partner is authorized to sell, disclose, or use your personal data for any purpose unrelated to the Services.


11.6. Retention and Deletion of Transferred Data

All cross-border data transfers are subject to the same retention and deletion standards outlined in this Privacy Policy.

We do not maintain long-term archives or backups outside of secured, compliant environments.

Once the purpose of processing has been fulfilled, your data is deleted from all foreign servers within the same timeframe applicable to your region.


11.7. Ongoing Compliance and Review

We continuously monitor international data transfer frameworks and will update our safeguards as global privacy laws evolve.

If any regulatory authority modifies or invalidates existing data transfer mechanisms (such as SCCs), we will implement equivalent alternative measures and update this Privacy Policy accordingly.


  1. Contact Us

If you have any questions, complaints, or concerns about this Privacy Policy or your personal data, please contact us at:

📩 Email: Veliss@frper.com

‹ AI Usage Agreement

Terms of Service ›