Privacy Policy

1. Information We Collect

1.1 Information You Provide

• Account Information: Name, email address, password, payment information
• Profile Data: Profile picture, bio, social media links (optional)
• Content Submissions: Videos, descriptions, metadata, proof of ownership documents
• Communications: Messages, support tickets, feedback, and correspondence
• Transaction Data: Purchase history, licensing agreements, payment records

1.2 Information Collected Automatically

• Device Information: IP address, browser type, operating system, device identifiers
• Usage Data: Pages viewed, videos watched, search queries, time spent on platform
• Cookies and Tracking: Session cookies, analytics cookies, preference cookies
• Location Data: General geographic location based on IP address

1.3 Information from Third Parties

• Social Media: If you sign up via social platforms, we receive basic profile information
• Payment Processors: Transaction data from Stripe for payment processing and subscription management
• Video Hosting: Usage statistics and video performance data from Vimeo
• Analytics Services: Aggregated usage statistics for platform improvement

2. How We Use Your Information

We use collected information for the following purposes:

2.1 Platform Operation

• Create and manage your account
• Process video submissions and licensing requests
• Facilitate payments and transactions via Stripe
• Track video downloads for security, licensing compliance, and subscription enforcement
• Provide customer support
• Authenticate users and prevent fraud

2.2 Communication

• Send transactional emails via our comprehensive notification system (submission confirmations, license updates, payment receipts, offer notifications)
• Deliver in-app notifications for real-time platform updates (24 notification types across all user roles)
• Respond to inquiries and support requests
• Send important platform updates, policy changes, and security alerts
• Deliver marketing communications (with your consent, which can be withdrawn at any time)

2.3 Improvement and Analytics

• Analyze usage patterns to improve platform performance
• Conduct research and develop new features
• Monitor and prevent technical issues
• Understand user preferences and behavior

2.4 Legal and Security

• Comply with legal obligations and court orders
• Enforce our Terms of Service
• Protect against fraud, abuse, and illegal activity
• Resolve disputes and investigate complaints

3. How We Share Your Information

We may share your information in the following circumstances:

3.1 Service Providers

We work with third-party service providers who assist in platform operations:

• Payment processing and subscription management (Stripe)
• Video hosting and streaming (Vimeo)
• Application hosting and infrastructure (Laravel, MySQL, Next.js)
• Email delivery services
• Analytics and monitoring services

3.2 Business Transfers

In the event of a merger, acquisition, or sale of assets, user information may be transferred to the acquiring entity. You will be notified via email of any such change.

3.3 Legal Requirements

We may disclose information when required by law, court order, or government request, or to protect our rights, property, or safety.

3.4 With Your Consent

We may share information with third parties when you explicitly consent to such sharing.

4. Data Security

We implement industry-standard security measures to protect your information:

• Encryption: All data transmitted via HTTPS/TLS encryption
• Secure Storage: Encrypted databases with restricted access
• Authentication: Laravel Sanctum for secure API authentication and session management
• Payment Security: Stripe PCI DSS Level 1 compliance for all payment processing
• Monitoring: Continuous security monitoring and vulnerability assessments
• Access Controls: Strict internal access policies and employee training
• File Validation: Automatic virus and malware scanning for all uploaded content

However, no method of transmission over the internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

5. Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations:

• Account Data: Retained while your account is active
• Transaction Records: Retained for 7 years for tax and legal compliance
• Content Submissions: Retained per license agreements or until deletion requested
• Analytics Data: Aggregated data retained indefinitely; personal data deleted after 26 months

6. Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

• Access: Request a copy of your personal data
• Correction: Update or correct inaccurate information
• Deletion: Request deletion of your data (subject to legal obligations)
• Portability: Receive your data in a machine-readable format
• Opt-Out: Unsubscribe from marketing communications
• Withdraw Consent: Revoke consent for data processing (where applicable)

To exercise these rights, contact us at privacy@viralid.com

7. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience. For detailed information, see our Cookie Policy.

8. Children's Privacy

ViralID is not intended for users under 18 years of age. We do not knowingly collect information from children. If we discover that a child has provided personal information, we will delete it immediately.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. By using ViralID, you consent to such transfers.

10. California Privacy Rights (CCPA)

California residents have additional rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information is collected
• Right to know if personal information is sold or disclosed
• Right to opt-out of the sale of personal information (we do not sell your data)
• Right to deletion of personal information
• Right to non-discrimination for exercising CCPA rights

11. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR), including:

• Right to access your personal data
• Right to rectification of inaccurate data
• Right to erasure ("right to be forgotten")
• Right to restrict processing
• Right to data portability
• Right to object to processing
• Right to lodge a complaint with a supervisory authority

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email and/or platform notification. The "Last Updated" date at the top reflects the most recent revision.