1. Controller and Scope
This Privacy Policy applies to hemangvyas.com and the portfolio projects, web applications, APIs, dashboards, demos, and mobile apps listed on this page. The controller is Hemang Vyas, operating under the TheCodeBunny portfolio brand.
Some projects are portfolio, prototype, testnet, internal, or in-development products. If a separate production customer agreement, app-store privacy form, data-processing agreement, or project-specific policy applies, that document takes priority for the relevant service.
2. Contact
For privacy requests, account questions, deletion requests, or security reports, contact info@hemangvyas.com. You may also use the contact form on hemangvyas.com.
3. Services Covered
This policy covers the following projects and related app surfaces where they are operated by Hemang Vyas:
- DaGBnB A Kaspa-based property booking and escrow platform with web and iOS/Android companion app workflows. https://dagbnb.hemangvyas.com
- HV Hub A project operations platform for tasks, time, costs, expenses, invoices, changelogs, and MCP-based project memory. https://hv-hub.hemangvyas.com
- HiveMem A modular memory-bank and MCP platform for AI coding agents and project-scoped context. https://hivemem.hemangvyas.com
- VedaQuity An Indian equity portfolio management platform with web and iOS/Android mobile clients, reporting, alerts, and AI-assisted insight workflows. https://vedaquity.hemangvyas.com
- Brand Core A brand operations product currently in development. https://brand-core.hemangvyas.com
- VeriMilk An AI-assisted milk adulteration screening system with a Laravel web dashboard and Android/iOS mobile image-analysis app. https://verimilk.hemangvyas.com/login
- NexusSync A Shopware, Amazon SP-API, eBay, and channel synchronization platform for products, orders, inventory, and mappings. https://nexus-sync.de
- SymbioPulse A Shopify commerce intelligence product for approval-first reports, trend review, ethics checks, and guarded Shopify actions. https://symbiopulse.hemangvyas.com
- LigaPhysio A bilingual yoga and physiotherapy website with CMS-managed pages, events, classes, media, and inquiries. https://ligaphysio.hemangvyas.com
- EuroServe A restaurant automation platform for EU hospitality operations including POS, reservations, staff workflows, analytics, AI assistance, and fiscal compliance foundations. https://euroserve.hemangvyas.com
- SingleFoundry A private operator control panel for an autonomous institutional data-product factory. https://singlefoundry.hemangvyas.com
4. Personal Data Processed
Depending on the service you use, personal data may include contact details, account credentials, authentication tokens, profile data, organization or tenant records, project and task data, messages, uploads, support requests, logs, IP address, device metadata, cookie identifiers, payment or invoice references, app diagnostics, and user preferences.
Project-specific data may include booking and host/guest data for DaGBnB, portfolio and report data for VedaQuity, milk-analysis images and screening records for VeriMilk, project-memory content and MCP metadata for HiveMem/HV Hub, integration credentials and sync logs for NexusSync, Shopify merchant data for SymbioPulse, restaurant and staff records for EuroServe, inquiry and class/event data for LigaPhysio, and operator records for SingleFoundry.
Sensitive fields such as API keys, provider credentials, health-related notes, images, reports, and business secrets are processed only where needed for the feature you use and should not be submitted unless the relevant service asks for them.
5. Purposes and Legal Bases
Data is processed to provide requested services, maintain accounts and sessions, secure applications, respond to inquiries, deliver support, operate demos, improve reliability, generate reports, process payments or invoices, comply with legal duties, and protect legitimate interests such as abuse prevention and auditability.
Under GDPR, the usual legal bases are contract performance, pre-contractual requests, consent, legal obligation, and legitimate interests. Consent can be withdrawn where processing depends on consent.
6. AI, Automation, Blockchain, and Integrations
Some products include AI-assisted, MCP, automation, blockchain, or third-party integration workflows. Examples include AI-assisted reports and chat, MCP project memory, Shopify actions, e-commerce sync jobs, mobile push notifications, and Kaspa testnet escrow flows.
AI outputs, investment-oriented insights, adulteration screening, medical/yoga content, and automation suggestions are informational or operational aids unless a signed customer agreement says otherwise. Users remain responsible for checking outputs before relying on them.
Blockchain transactions may become public and technically difficult or impossible to reverse or erase once broadcast to a public network. DaGBnB portfolio and testnet workflows should not be treated as a custodial financial service.
7. Processors and Recipients
Data may be shared with service providers that support hosting, databases, email, analytics, logging, storage, backups, payment handling, app distribution, mobile push notifications, AI providers selected or configured by users, and business integrations such as Shopify, Shopware, Amazon SP-API, eBay, Firebase, or other APIs used by a specific project.
Where a provider processes personal data on behalf of Hemang Vyas, reasonable contractual and technical safeguards are used. Some providers may also act as independent controllers for their own services.
8. International Transfers
Services may use infrastructure or providers outside your country. Where GDPR applies and data is transferred outside the EEA, appropriate safeguards such as adequacy decisions, standard contractual clauses, or comparable mechanisms are used where required.
9. Retention
Data is kept only as long as needed for the relevant purpose, including account operation, contractual records, legal retention, security audit logs, dispute handling, backups, and development evidence. Retention periods vary by project and data category.
You may request deletion of personal data. Some information may be retained where required for legal, security, accounting, fraud-prevention, or dispute-resolution reasons, or where technical deletion is not possible, such as public blockchain records.
10. Cookies, Logs, and Analytics
Websites and dashboards may use necessary cookies for sessions, security, language preferences, and forms. Optional analytics, performance, or marketing tools are used only where configured for the relevant service.
Server logs and security logs may record IP addresses, user agents, timestamps, request paths, errors, and abuse signals to protect the services and diagnose issues.
11. Your Rights
Where GDPR applies, you may have the right to access, rectify, erase, restrict, object to processing, receive data portability, and lodge a complaint with a supervisory authority. You also have the right to withdraw consent where processing is based on consent.
To exercise rights, contact info@hemangvyas.com and identify the relevant project or account. Verification may be required before fulfilling a request.
12. Children
The portfolio projects are not directed to children. Do not create accounts or submit personal data if you are not legally able to use the relevant service in your jurisdiction.
13. Changes
This Privacy Policy may be updated as projects move from prototype to production, mobile releases are prepared, or service providers change. The latest version is published on hemangvyas.com.