Privacy Policy

1. Introduction

SocialVault ("Company," "we," "us," or "our") is committed to protecting your privacy and personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website, web application, desktop application, and all related services (collectively, the "Service").

This Privacy Policy applies to both the SocialVault website (hosted at socialvault.org) and the SocialVault desktop application. The desktop application may reference this Privacy Policy via external links to the web-hosted version.

By accessing or using the Service, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access or use the Service.

2. Information We Collect

2.1 Information You Provide Directly

We collect information that you voluntarily provide to us when you:

• Create an Account: Email address, username, and password
• Make a Purchase: Name, billing address, and payment information (processed securely by our payment processor)
• Contact Us: Name, email address, and the content of your communications
• Use the Service: URLs, file paths, or files you submit for processing, and your processing instructions

2.2 Information Collected Automatically

When you access or use the Service, we automatically collect certain information, including:

• Device Information: Browser type, operating system, device type, unique device identifiers
• Log Data: IP address, access times, pages viewed, referring URL, and actions taken within the Service
• Usage Data: Features used, preferences, and interaction patterns
• Cookies and Similar Technologies: As described in our Cookie Policy

2.3 Information from Third Parties

We may receive information from third-party services, including authentication providers if you choose to sign in using a third-party account, and payment processors when you complete transactions.

3. How We Use Your Information

We use the information we collect for the following purposes:

• Provide the Service: To operate, maintain, and deliver the features and functionality of the Service
• Process Transactions: To process payments, manage subscriptions, and fulfill orders
• Communicate with You: To send administrative information, respond to inquiries, and provide customer support
• Improve the Service: To analyze usage patterns, diagnose technical issues, and enhance user experience
• Personalization: To remember your preferences and customize your experience
• Security: To detect, prevent, and address fraud, abuse, and security issues
• Legal Compliance: To comply with applicable laws, regulations, and legal processes
• Marketing: To send promotional communications (with your consent where required)

3.1 Legal Bases for Processing (EEA/UK Users)

If you are located in the European Economic Area (EEA) or United Kingdom, our legal bases for processing your personal data include:

• Contract Performance: Processing necessary to provide the Service you requested
• Legitimate Interests: Processing necessary for our legitimate business interests
• Consent: Processing based on your explicit consent
• Legal Obligation: Processing necessary to comply with legal requirements

4. Content Processing and Data Handling

User-Directed Processing: SocialVault operates as a technical tool that processes content solely at your direction. We do not independently access, review, curate, or host third-party content.

Temporary Processing: The Service may temporarily process files, URLs, and metadata as necessary to execute your instructions. Such temporary data is typically not retained after processing is complete, unless you explicitly choose to save or store content.

No Permanent Third-Party Hosting: We do not permanently host third-party content on our servers unless you explicitly initiate storage through features designed for that purpose. Any stored content remains under your control and is subject to your account settings.

5. Information Sharing and Disclosure

We may share your information in the following circumstances:

5.1 Service Providers

We share information with third-party vendors who perform services on our behalf, including:

• Payment Processing: Stripe, Inc. processes payment transactions. When you make a purchase, your payment information is transmitted directly to Stripe and is subject to Stripe's Privacy Policy. We do not store complete credit card numbers on our servers.
• Cloud Infrastructure: Hosting and data storage providers
• Analytics: Services that help us understand usage patterns
• Customer Support: Tools that help us provide user assistance

5.2 Legal Requirements

We may disclose your information if required to do so by law or in response to valid legal process, including:

• Subpoenas, court orders, or other legal process
• Requests from law enforcement or government agencies
• To protect our rights, property, or safety, or that of our users or others
• To investigate potential violations of our Terms of Service

5.3 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your information may be transferred as part of such transaction. We will notify you of any such change and any choices you may have regarding your information.

5.4 With Your Consent

We may share your information with third parties when you have given us explicit consent to do so.

6. Data Security

We implement appropriate technical and organizational security measures to protect your personal information, including:

• Encryption of data in transit using TLS/SSL
• Encryption of sensitive data at rest
• Access controls and authentication mechanisms
• Regular security assessments and monitoring
• Secure development practices

However, no method of transmission over the Internet or electronic storage is completely secure. While we strive to protect your personal information, we cannot guarantee absolute security.

7. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes for which it was collected, including:

• To provide the Service and maintain your account
• To comply with legal, regulatory, and contractual obligations
• To resolve disputes and enforce our agreements

When you delete your account, we will delete or anonymize your personal information within thirty (30) days, except where we are required to retain certain information for legal, regulatory, or legitimate business purposes.

8. Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

• Access: Request a copy of the personal information we hold about you
• Correction: Request correction of inaccurate or incomplete personal information
• Deletion: Request deletion of your personal information
• Portability: Request transfer of your personal information to another service
• Restriction: Request restriction of processing in certain circumstances
• Objection: Object to processing based on legitimate interests
• Withdraw Consent: Withdraw previously given consent at any time

To exercise any of these rights, please contact us at privacy@socialvault.org. We will respond to your request within the timeframe required by applicable law.

9. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and store information about your interactions with the Service. These technologies include:

• Essential Cookies: Required for the Service to function properly (authentication, security, preferences)
• Analytics Cookies: Help us understand how visitors interact with the Service
• Functional Cookies: Remember your choices and preferences

For detailed information about the cookies we use and how to manage your preferences, please see our Cookie Policy.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States. These countries may have data protection laws that differ from those of your country.

When we transfer personal information outside of the European Economic Area or United Kingdom, we implement appropriate safeguards to ensure your information remains protected, including standard contractual clauses approved by the European Commission.

11. Children's Privacy

The Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@socialvault.org. If we become aware that we have collected personal information from a child under 18, we will take steps to delete such information.

12. Third-Party Links and Services

The Service may contain links to third-party websites or services that are not operated by us. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party websites or services you access through the Service.

13. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

• Right to Know: You have the right to request information about the categories and specific pieces of personal information we have collected, the sources of collection, the purposes for collection, and the categories of third parties with whom we share personal information.
• Right to Delete: You have the right to request deletion of your personal information, subject to certain exceptions.
• Right to Correct: You have the right to request correction of inaccurate personal information.
• Right to Opt-Out of Sale/Sharing: You have the right to opt out of the sale or sharing of your personal information. We do not sell your personal information.
• Right to Non-Discrimination: You have the right not to receive discriminatory treatment for exercising your privacy rights.

Categories of Personal Information Collected: Identifiers, commercial information, internet activity, geolocation data, and inferences.

To exercise your California privacy rights, please contact us at privacy@socialvault.org or submit a request through our Service.

14. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA) or United Kingdom, you have additional rights under the General Data Protection Regulation (GDPR):

• Right to lodge a complaint with a supervisory authority
• Right to withdraw consent at any time (where processing is based on consent)
• Right to object to processing based on legitimate interests
• Right not to be subject to automated decision-making, including profiling

Data Controller: SocialVault is the data controller for personal information collected through the Service. For privacy inquiries, please contact us at privacy@socialvault.org.

15. Do Not Track Signals

Some browsers have a "Do Not Track" (DNT) feature that signals to websites that you do not want your online activity tracked. We currently do not respond to DNT signals. However, you can manage your cookie preferences as described in our Cookie Policy.

16. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you through the Service, by email, or by other means at least thirty (30) days before the changes take effect.

We encourage you to review this Privacy Policy periodically to stay informed about our data practices. The "Last updated" date at the top of this Privacy Policy indicates when it was last revised.

17. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us at: