Privacy Policy

1. Introduction

We respect your privacy and are committed to handling personal information responsibly. This policy applies to information collected through the Services, whether you access them directly or via a referral link. By using the Services, you acknowledge that you have read this Privacy Policy. If you do not agree, please discontinue use of the Services.

This policy does not apply to third-party websites, apps, app stores, or services that may be linked from our pages (including download partners or advertisers). Those parties operate under their own privacy practices. We encourage you to review their policies before providing information to them.

2. Information We Collect

Information you provide

If you contact us (for example, by email through our Contact Us page), we may collect your name, email address, message content, and any other details you choose to share. We use this information only to respond to your inquiry and maintain records as needed for support and legal compliance.

Information collected automatically

When you visit or interact with the Services, we and our analytics partners may automatically collect certain technical and usage information, such as:

• Browser type, language, and device characteristics (including mobile vs. desktop)
• IP address (which may be used to derive approximate location at city or region level)
• Pages viewed, links clicked, scroll and engagement signals, and time spent on pages
• Referring URL, exit pages, and campaign parameters in the address bar
• Session identifiers stored in sessionStorage or localStorage (for example, to measure site visits, first-time click or scroll engagement, and deduplicated interaction events)
• Analytics event names passed between pages (for example, ga_event button identifiers or report_event flags such as click_or_scroll in URL parameters)
• Cookie or similar technologies data, where enabled

We do not require you to create an account to browse vault protection content or view simulated scan results on the home or detail pages. We do not intentionally collect the contents of your personal photos, videos, contacts, messages, or documents from your device through the Services merely because you view our pages.

3. How We Use Information

We use the information described above to:

• Operate, maintain, and improve the Services and user experience
• Display private media scan summaries, file counts, protection status badges, and related vault guidance
• Measure site performance, traffic patterns, and feature usage through analytics events (such as page views, button interactions, site_visit_start, site_visit_end, and first engagement events)
• Attribute interactions across pages when event parameters are carried in URLs between index and detail views
• Detect abuse, fraud, or security issues and protect the integrity of the Services
• Respond to support requests and communicate with you about your inquiry
• Comply with applicable laws, regulations, and legal process

We do not use your information to remotely access, copy, or encrypt files on your device without your separate consent through a dedicated application you install. Visual metrics such as detected file counts, “VISIBLE” labels, or “protection enabled” states are presented for informational purposes within the Services.

4. Legal Bases for Processing (EEA/UK Users)

Where required by law, we process personal information on one or more of the following bases: your consent; performance of a contract or steps at your request before entering a contract; our legitimate interests in operating and improving the Services (balanced against your rights); and compliance with legal obligations. You may withdraw consent where processing is consent-based, without affecting the lawfulness of processing before withdrawal.

5. Cookies, Storage, and Analytics

We and third-party providers may use cookies, localStorage, sessionStorage, pixels, and similar technologies to remember preferences, distinguish unique visitors, and understand how the Services are used. For example, we may store a flag in localStorage to record that a one-time engagement event (such as click_or_scroll) has already been reported, or use sessionStorage to count visits within a browsing session for site_visit_start and site_visit_end events.

We may use Google Analytics or comparable tools to collect aggregated statistics. You can learn about Google’s practices at Google Privacy Policy and opt out via browser add-ons or device settings where available.

Most browsers allow you to block or delete cookies and site data. Blocking storage may affect certain measurement features but generally will not prevent you from reading static educational content.

6. How We Share Information

We may share information with:

• Service providers who host our site, provide analytics, email delivery, or customer-support tools, subject to confidentiality obligations
• Advertising or measurement partners where we display ads or measure campaigns, in accordance with your consent or applicable law
• Authorities when required by law, court order, or to protect rights, safety, and security
• Successors in connection with a merger, acquisition, or sale of assets, with notice where required by law

We do not sell personal information for money in the conventional sense. Where “sale” or “sharing” is defined broadly under state privacy laws, we provide rights as described below.

7. International Transfers

We may process and store information in the United States and other countries where we or our providers operate. Those countries may have data-protection laws that differ from your home jurisdiction. When we transfer personal information internationally, we implement appropriate safeguards as required by applicable law.

8. Data Retention

We retain personal information only as long as necessary for the purposes described in this policy, including to satisfy legal, accounting, or reporting requirements. Analytics data is typically retained in aggregated form for a limited period defined by our analytics provider or internal policies. Support emails are retained as needed to resolve your request and for a reasonable archive period.

9. Security

We use administrative, technical, and organizational measures designed to protect information against unauthorized access, loss, or alteration. No method of transmission over the Internet or electronic storage is completely secure; we cannot guarantee absolute security. Content you choose to hide using third-party vault apps is governed by those apps’ security practices, not solely by this website.

10. Children’s Privacy

The Services are not directed to children under 13 (or the minimum age required in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us information, please contact us and we will take steps to delete it.

11. Your Rights and Choices

Depending on where you live, you may have the right to access, correct, delete, or port your personal information; object to or restrict certain processing; and withdraw consent. California residents may have additional rights under the CCPA/CPRA, including the right to know, delete, and opt out of certain sharing. EEA/UK residents may lodge a complaint with a supervisory authority.

To exercise your rights, email privacy@privatevault.app or use our Contact Us page. We may verify your request before responding.

12. Changes to This Policy

We may update this Privacy Policy from time to time. The “Last updated” date at the top reflects the latest revision. Material changes will be posted on this page. Continued use of the Services after changes become effective constitutes acceptance of the updated policy, to the extent permitted by law.

13. Contact Us

For privacy questions or requests, contact:

Private Vault — Privacy
Email: privacy@privatevault.app
Contact Us page