VibeVit Logo

Privacy Policy

Our commitment to protecting your privacy

Last Updated: March 25, 2026

Effective Date: March 4, 2026
Last Updated: March 5, 2026

VibeVit ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit vibevit.com (the "Site") and use our digital products, SaaS subscriptions, and services (collectively, the "Services").

This Privacy Policy is incorporated into and subject to our Terms of Service. By using our Site, you consent to the data practices described in this policy.

1. Information We Collect

We collect information that identifies, relates to, or could reasonably be linked to you ("Personal Data") in the following ways:

A. Information You Provide to Us

  • Account & Contact Data: Name, email address, and login credentials when you create an account or subscribe to our newsletter.
  • Transaction Data: Billing address and purchase history. (Note: All payments are processed securely by Stripe. We do NOT collect or store your full credit card numbers or bank details on our servers).
  • Communication Data: Information you provide when contacting our support team.

B. Information Collected Automatically

When you interact with our Site, our global CDN and hosting provider (Cloudflare) automatically collects certain technical data to ensure security and performance:

  • Device & Usage Data: IP address, browser type, operating system, referring URLs, and pages viewed.
  • Security Logs: Data related to your interaction with our Web Application Firewall (WAF) to detect and prevent malicious activities.

2. How We Use Your Information

We process your Personal Data strictly for the following legal and business purposes:

  • Service Delivery: To process your Stripe payments, deliver digital downloads (e-books, templates), and manage your SaaS subscriptions.
  • Communication: To send you transaction receipts, technical notices, and security alerts.
  • Site Security: To monitor against fraudulent transactions, unauthorized access, and cyber attacks.
  • Legal Compliance: To comply with applicable tax laws and legal obligations.

3. Legal Basis for Processing (GDPR Compliance)

If you are an individual in the European Economic Area (EEA) or the UK, we collect and process your data on the following legal bases:

  1. Contractual Necessity: To fulfill our Terms of Service (e.g., delivering a purchased digital product).
  2. Consent: When you explicitly opt-in to receive our marketing newsletters (you can withdraw this at any time).
  3. Legitimate Interest: To protect our Site from fraud, enforce our legal rights, and improve our technical infrastructure.
  4. Legal Obligation: To retain basic billing records for tax compliance.

4. How We Share Your Information

We do NOT sell, rent, or trade your Personal Data to third parties. We only share your data with strictly vetted third-party service providers (Data Processors) necessary to operate our business:

  • Payment Processors: Stripe, Inc. for secure payment processing and fraud prevention.
  • Infrastructure Providers: Cloudflare, Inc. for website hosting, edge computing, and Web Application Firewall (WAF) security.

5. Data Security & CSP Policies

We implement state-of-the-art administrative, technical, and physical security measures to protect your Personal Data:

  • Encryption: All data in transit is encrypted using Transport Layer Security (TLS/SSL).
  • Content Security Policy (CSP): We utilize a strict CSP to prevent Cross-Site Scripting (XSS), data injection attacks, and unauthorized execution of malicious scripts.
  • Tokenization: Financial data is tokenized via Stripe; our servers (Cloudflare Workers) never touch raw credit card data.

While we take maximum precautions, no internet transmission is 100% secure. You are responsible for keeping your account password confidential.

6. International Data Transfers

We operate globally. Your information may be transferred to, stored, and processed in the United States or other countries where our service providers (like Stripe and Cloudflare) operate. We ensure that such transfers comply with international privacy laws by relying on recognized legal frameworks, such as the EU-US Data Privacy Framework or Standard Contractual Clauses (SCCs).

7. Your Privacy Rights (GDPR & CCPA/CPRA)

Depending on your location (such as the EU, UK, or California), you have strict rights regarding your Personal Data:

  • Right to Access: You can request a copy of the personal data we hold about you.
  • Right to Rectification: You can request correction of inaccurate data.
  • Right to Erasure ("Right to be Forgotten"): You can request the deletion of your data (subject to legal retention requirements, such as tax laws).
  • Right to Restrict or Object: You can object to data processing for direct marketing.
  • Right to Data Portability: You can request your data in a structured, machine-readable format.
  • California Privacy Rights: We comply with the CCPA. We do not sell your personal information. California residents may request specific details about how their data is collected and shared.

To exercise any of these rights, please contact us at atilluxltd@gmail.com. We will respond within 30 days.

8. Cookies and Tracking Technologies

We use essential cookies to manage your session (e.g., keeping you logged in) and process your cart. We may also use analytical cookies to understand website traffic. You can instruct your browser to refuse all cookies or indicate when a cookie is being sent. However, if you do not accept essential cookies, some portions of our Site (like Stripe Checkout) may not function properly.

9. Children's Privacy (COPPA)

Our Services are strictly designed for adults. In compliance with the Children's Online Privacy Protection Act (COPPA) and GDPR age requirements, we do not knowingly collect personal information from children under the age of 13 (or 16 in certain EU jurisdictions). If we discover that we have collected data from a child without verified parental consent, we will immediately delete that information.

10. Data Retention

We retain your Personal Data only for as long as necessary to fulfill the purposes outlined in this policy, manage your SaaS subscription, resolve disputes, and comply with legal or tax obligations.

11. Third-Party Websites

Our Site may contain links to third-party websites or affiliate links. We are not responsible for the privacy practices or the content of such external sites. We encourage you to read their privacy policies before providing them with any personal information.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in legal requirements or our operational practices. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last Updated" date.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact our Data Protection Officer / Privacy Team at:

  • Company Name: ATILLUX LTD
  • Email: atilluxltd@gmail.com
  • Website: vibevit.com

By using vibevit, you acknowledge that you have read and understand this Privacy Policy.

privacy.contact.title