Privacy Policy

Effective Date: 13/06/2025
Last Updated: 17/06/2025

1. Introduction

Viral Vault Digital Marketing Ltd (“we,” “our,” or “us”) is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit our website viralvaultlabs.com (the “Website”) or use our services.

This policy complies with the General Data Protection Regulation (GDPR) (EU) 2016/679 and the Data Protection Laws of Cyprus.

Company Details:

  • Legal Entity: Viral Vault Digital Marketing Ltd
  • Registered Address: Office 1, 84 Archiepiskopou Makariou III, Larnaca, 6017 Cyprus
  • Email: privacy@viralvaultlabs.com
  • Data Protection Officer: DPO@viralvaultlabs.com

2. Data Controller

Viral Vault Digital Marketing Ltd is the data controller responsible for your personal data. If you have any questions about this Privacy Policy or our data practices, please get in touch with us using the details provided in Section 12.

3. Information We Collect

3.1 Personal Data You Provide

We may collect the following personal data when you voluntarily provide it:

  • Contact Information: Name, email address, phone number, business name
  • Account Information: Username, password, profile information
  • Communication Data: Messages, inquiries, feedback you send to us
  • Marketing Preferences: Your consent for marketing communications
  • Payment Information: Billing address, payment method details (processed securely by third-party payment processors)

3.2 Information Automatically Collected

When you visit our Website, we may automatically collect:

  • Technical Data: IP address, browser type, device information, operating system
  • Usage Data: Pages visited, time spent on pages, click-through rates, referring websites
  • Cookies and Similar Technologies: As described in our Cookie Policy

3.3 Information from Third Parties

We may receive personal data about you from:

  • Analytics providers (e.g., Google Analytics)
  • Marketing partners and affiliates
  • Social media platforms (if you interact with our social media accounts)
  • Public databases and directories

4. Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

  • Consent: When you have given explicit consent for specific processing activities
  • Contract: When processing is necessary to perform a contract with you or take pre-contractual steps
  • Legitimate Interests: When we have legitimate business interests that are not overridden by your privacy rights
  • Legal Obligation: When we need to comply with legal requirements
  • Vital Interests: When processing is necessary to protect someone’s life (rarely applicable)

5. How We Use Your Information

We use your personal data for the following purposes:

5.1 Service Provision

  • Providing and maintaining our digital marketing services
  • Managing your account and user profile
  • Processing payments and transactions
  • Delivering customer support and responding to inquiries

5.2 Communication

  • Sending service-related notifications and updates
  • Responding to your questions and requests
  • Providing marketing communications (with your consent)

5.3 Business Operations

  • Analyzing website usage and improving our services
  • Conducting research and analytics
  • Detecting and preventing fraud or security issues
  • Complying with legal obligations

5.4 Marketing (with Consent)

  • Sending promotional emails and newsletters
  • Personalizing marketing content
  • Conducting marketing campaigns and promotions

6. Sharing Your Information

We may share your personal data in the following circumstances:

6.1 Service Providers

We work with trusted third-party service providers who assist us in:

  • Website hosting and maintenance
  • Payment processing
  • Email marketing services
  • Analytics and data analysis
  • Customer support systems

6.2 Legal Requirements

We may disclose your information when required by law or to:

  • Comply with legal processes or government requests
  • Protect our rights, property, or safety
  • Prevent fraud or security threats
  • Enforce our terms of service

6.3 Business Transfers

If we undergo a merger, acquisition, or sale of assets, your personal data may be transferred as part of that transaction.

6.4 With Your Consent

We may share your information for other purposes with your explicit consent.

7. International Data Transfers

As we operate globally, your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer data internationally, we ensure appropriate safeguards are in place:

  • Adequacy Decisions: Transfers to countries with adequate data protection levels as determined by the European Commission
  • Standard Contractual Clauses: Using EU-approved contractual terms
  • Binding Corporate Rules: Internal data protection policies for multinational organizations
  • Certification Schemes: Recognized data protection certifications

8. Data Retention

We retain your personal data only as long as necessary for the purposes outlined in this Privacy Policy:

  • Account Data: Retained while your account is active and for up to 3 years after account closure
  • Transaction Records: Retained for 7 years for accounting and legal compliance purposes
  • Marketing Data: Retained until you withdraw consent or request deletion
  • Legal Requirements: Some data may be retained longer if required by law

9. Your Rights Under GDPR

As a data subject, you have the following rights:

9.1 Right of Access

You can request information about the personal data we hold about you.

9.2 Right to Rectification

You can request correction of inaccurate or incomplete personal data.

9.3 Right to Erasure (“Right to be Forgotten”)

You can request deletion of your personal data in certain circumstances.

9.4 Right to Restrict Processing

You can request limitation of how we process your personal data.

9.5 Right to Data Portability

You can request your personal data in a structured, machine-readable format.

9.6 Right to Object

You can object to processing based on legitimate interests or for direct marketing purposes.

9.7 Rights Related to Automated Decision-Making

You have rights regarding automated decision-making and profiling.

9.8 Right to Withdraw Consent

Where processing is based on consent, you can withdraw it at any time.

To exercise these rights, please contact us using the details in Section 12.

10. Data Security

We implement appropriate technical and organizational measures to protect your personal data:

  • Encryption: Data is encrypted in transit and at rest
  • Access Controls: Limited access to personal data on a need-to-know basis
  • Regular Security Assessments: Ongoing security monitoring and testing
  • Employee Training: Regular data protection training for our staff
  • Incident Response: Procedures for handling data breaches

11. Cookies and Tracking Technologies

Our Website uses cookies and similar technologies. Please refer to our separate Cookie Policy for detailed information about:

  • Types of cookies we use
  • Purposes of cookie usage
  • How to manage cookie preferences
  • Third-party cookies and tracking

12. Contact Information

For any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: privacy@viralvaultlabs.com
Postal Address:
Viral Vault Digital Marketing Ltd
Office 1, 84 Archiepiskopou Makariou III
Larnaca, 6017 Cyprus

Data Protection Officer: DPO@viralvaultlabs.com

13. Supervisory Authority

If you believe we have not adequately addressed your concerns, you have the right to lodge a complaint with the relevant supervisory authority:

Cyprus:
Office of the Commissioner for Personal Data Protection
1 Iasonos Street, 1082 Nicosia, Cyprus
Tel: +357 22 818 456
Email: commissioner@dataprotection.gov.cy

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will:

  • Post the updated policy on our Website
  • Update the “Last Updated” date
  • Notify you of significant changes via email or prominent website notice
  • For material changes, we may seek your renewed consent where required

15. Children’s Privacy

Our services are not directed to individuals under 16 years of age. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16 without parental consent, we will take steps to delete such information.

16. Third-Party Links

Our Website may contain links to third-party websites. This Privacy Policy does not apply to those external sites. We encourage you to review the privacy policies of any third-party websites you visit.

17. Marketing Communications

We may send you marketing communications if:

  • You have given explicit consent
  • You are an existing customer and we comply with applicable opt-out requirements

You can opt out of marketing communications at any time by:

  • Clicking the unsubscribe link in our emails
  • Contacting us directly
Get Free Proposal