Privacy Policy
1. Introduction
At Virabar, accessible via virabar.com, we are fully committed to protecting the privacy and personal data of our users. This Privacy Policy outlines how we collect, use, disclose, and safeguard personal information in compliance with applicable privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). Maintaining your trust is of utmost importance to us, and we adhere to a privacy-first approach in all our operations.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all users who access or use the website virabar.com and any associated services. Virabar acts as the data controller for all personal data collected through this website. As the data controller, we determine the purposes and means of processing your data. For any questions regarding data handling practices, you may contact us directly at [email protected].
3. Categories of Data Processed
We process the following categories of personal data, either directly from you or through automated means, such as cookies or other tracking technologies:
– Usage Data: Including browser type, IP address, pages visited, session duration, referral URLs, and other diagnostic data.
– Account Data: Including your name, postal address, email address, phone number, and any other information you provide when registering an account on virabar.com.
– Profile Data: Including your preferences, purchase history, usage behavior, and segment-based engagement.
– Communication Data: Including messages, support queries, customer service correspondence, and communication logs with Virabar.
– Technical Data: Including device identifiers, operating system details, system configuration data, and other technical identifiers related to the device used to access virabar.com.
– Transaction Data: Including payment information (processed via secure third-party payment processors), billing information, shipping details, and order history.
– Preference Data: Including opt-in choices for marketing communications, product interests, and other consent-based preference data.
4. Legal Bases for Processing
We process your personal data based on one or more of the following legal grounds as permitted by applicable data protection laws:
– Consent: Where you have explicitly given consent for a specific use of your data.
– Contractual Necessity: Where processing is necessary for the performance of a contract to which you are a party.
– Legal Obligation: Where processing is required to comply with legal or regulatory obligations.
– Legitimate Interests: Where we have a legitimate interest in processing the data, such as improving user experience, preventing fraud, or operations management, provided your fundamental rights do not override those interests.
5. Your Rights
Depending on your jurisdiction, and subject to applicable data protection laws, you have the following rights regarding your personal information:
– Right of Access: To receive a copy of the personal data we hold about you.
– Right to Rectification: To correct any inaccuracies or incomplete information.
– Right to Erasure: To request the deletion of your personal data under certain conditions.
– Right to Restriction: To restrict the processing of your data where grounds exist.
– Right to Data Portability: To receive your data in a structured, commonly used, machine-readable format and request that it be transferred to another controller.
– Right to Object: To object to processing carried out on the basis of legitimate interests.
– Right to Withdraw Consent: Where processing is based on consent, you may withdraw it at any time.
To exercise any of these rights, please reach out to us at [email protected]. We will respond to verified requests in accordance with applicable legal requirements.
6. Security Measures
We implement robust technical and organizational measures to safeguard your personal data. These measures include, but are not limited to:
– End-to-end encryption of data in transit and at rest.
– Access control and authentication protocols.
– Regular security assessments and audits.
– Secure backup procedures.
– Staff training on data privacy and security obligations.
7. International Transfers
As a global digital service, personal data may be transferred to and processed in countries outside your jurisdiction, including countries that may not have equivalent data protection laws. Where such transfers occur, we implement approved Standard Contractual Clauses (SCCs) or other legally recognized safeguards to ensure your data remains protected in compliance with GDPR requirements and regional regulations.
8. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, including for legal, accounting, or reporting obligations. Data retention periods include:
– Account Data: Retained for the lifetime of the user’s account and up to 12 months post-deletion to accommodate regulatory requirements or user inquiries.
– Transaction Data: Maintained for a minimum of 7 years to comply with tax and accounting laws.
– Communication Data: Retained for up to 3 years following the last correspondence.
– Usage and Technical Data: Retained for up to 12 months for security and analytical purposes.
– Preference Data: Retained until users withdraw consent or opt out.
After applicable retention periods, data is securely deleted or anonymized.
9. Cookie Policy
We use cookies and similar technologies on virabar.com to enhance user experience, enable functionality, and analyze traffic. The types of cookies we use include:
– Essential Cookies: Necessary for core site operations and user authentication.
– Functional Cookies: Enable personalization, such as remembering preferences.
– Analytics Cookies: Help us understand how users interact with the site using aggregated data.
– Performance Cookies: Assist with load balancing and improving page speed.
10. Cookie Management and Compliance
Under GDPR and CCPA, you are entitled to control your cookie preferences. On your first visit to virabar.com, you will be presented with a cookie consent banner enabling you to accept or reject non-essential cookies. You can update your consent choices at any time via our cookie settings panel or adjust cookies through your browser settings.
We do not sell personal information collected through cookies for monetary value.
11. Children’s Privacy
Our website and services are not directed to children under the age of 13. We do not knowingly collect or solicit personal data from individuals under 13 years of age. If we learn that we have collected personal information from a child without appropriate consent, we will delete that information promptly. Parents or guardians with concerns should contact us at [email protected].
12. Policy Updates and User Notifications
We reserve the right to update or revise this Privacy Policy at any time to reflect changes in our practices, technologies, or legal requirements. Material policy changes will be communicated through appropriate channels, including via announcements on virabar.com or through direct user communication where required by law.
We encourage users to review this Privacy Policy periodically to stay informed of how we protect your personal data.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:
Email: [email protected]
Website: https://virabar.com
We remain committed to upholding the highest privacy standards and ensuring full compliance with GDPR, CCPA, and all applicable privacy regulations. Should you have privacy concerns, please do not hesitate to reach out.