Privacy Policy

This privacy policy explains how Evora ("we", "us", "our") collects, uses, and protects your personal data when you use our website and services.

The data controller responsible for processing your personal data is:

[FILL IN: Full name or company name]

[FILL IN: Street address]

[FILL IN: Postal code and city, Country]

Email: [FILL IN: your email address]

We collect the following data when you interact with our website:

Email address — provided voluntarily when you sign up for the waitlist.

UTM parameters — marketing attribution data (utm_source, utm_medium, utm_campaign, utm_content, utm_term) collected automatically from your URL when you visit our site.

Technical data — your IP address, browser type and version, device type, operating system, and referring URL, collected automatically by our hosting provider.

We use the data we collect for the following purposes:

Waitlist management — to inform you about early access availability and product updates.

Marketing analysis — to understand which channels and campaigns drive interest in our product.

Service improvement — to analyze usage patterns and improve website performance and user experience.

We process your personal data based on the following legal grounds:

Consent (Art. 6(1)(a) GDPR) — for collecting your email address for waitlist communications. You may withdraw your consent at any time by contacting us.

Legitimate interest (Art. 6(1)(f) GDPR) — for processing technical data (IP address, browser information, UTM parameters) to ensure the security and functionality of our website and to analyze the effectiveness of our marketing efforts.

We use the following third-party services to process your data:

Supabase — database hosting for storing waitlist signups. Supabase processes data within the European Union. Privacy policy: https://supabase.com/privacy

Vercel — website hosting and delivery. Vercel may process data in the US under appropriate safeguards. Privacy policy: https://vercel.com/legal/privacy-policy

Strava — our product integrates with Strava for training data. Strava integration is not active on this landing page. When the product launches, Strava data processing will be governed by a separate data processing agreement. Strava privacy policy: https://www.strava.com/legal/privacy

[FILL IN: Analytics provider, if applicable — e.g., Plausible, PostHog, or Google Analytics. Include details of what is tracked and link to their privacy policy.]

Our website currently does not use tracking cookies.

We use browser localStorage to store your cookie consent preference (accepted or declined). This data is stored only on your device and is not transmitted to our servers.

If we introduce cookies or tracking technologies in the future, this policy will be updated accordingly, and we will request your consent where required.

Under the GDPR, you have the following rights regarding your personal data:

Right of access (Art. 15) — you may request a copy of the personal data we hold about you.

Right to rectification (Art. 16) — you may request correction of inaccurate personal data.

Right to erasure (Art. 17) — you may request deletion of your personal data.

Right to restriction of processing (Art. 18) — you may request that we restrict the processing of your data.

Right to data portability (Art. 20) — you may request your data in a structured, commonly used, machine-readable format.

Right to object (Art. 21) — you may object to the processing of your personal data based on legitimate interest.

Right to lodge a complaint — you have the right to lodge a complaint with a supervisory authority. [FILL IN: Name and contact of your local data protection authority, e.g., Berliner Beauftragte für Datenschutz und Informationsfreiheit]

To exercise any of these rights, contact us at: [FILL IN: your email address]

We retain your email address and associated data for as long as the waitlist is active or until you request deletion.

Technical log data (IP addresses, browser information) is retained for [FILL IN: retention period, e.g., 90 days] and then automatically deleted.

If you request deletion of your data, we will process your request within 30 days.

We may update this privacy policy from time to time. We will notify waitlist subscribers of significant changes via email. The date of the last update is shown at the top of this page.

If you have questions about this privacy policy or your personal data, contact us at:

[FILL IN: Your full name or company name]

Email: [FILL IN: your email address]

[FILL IN: Street address, postal code and city]