Privacy Policy for Virtual Garage

Effective Date: 01-11-2024
Last Updated: 02-02-2025

Virtual Garage is a software development company based in Bangladesh, specializing in web application development, graphics design, digital marketing, business automation, data transmission, business software development, and storage solutions. This Privacy Policy governs how we collect, use, disclose, and protect your information when you use our software applications, platforms, and services (Graphics Design, Digital Marketing, Website Development, Business Software Development, AI Agent Service, Data Analytics, Business Intelligence Analytics, Business Development, Product Development).

By using our Services, you consent to the practices described in this policy. For integrations with third-party APIs (e.g., Google, Facebook), additional terms from those providers may apply.

1. Scope and Applicability:

This policy applies to:

  • Users of our software applications and platforms.

  • Visitors to our websites or digital properties.

  • Third-party integrations (e.g., Google, Facebook) enabled through our Services.

2. Types of Data Collected:

2.1 Personal Information

  • Account Registration: Full name, email address, phone number, and business details.

  • Payment Information: Credit/debit card details, billing addresses (processed via secure gateways like Stripe or PayPal).

  • User Content: Files, documents, or data uploaded/stored in our systems.

  • Communications: Emails, chat logs, and support tickets.

2.2 Technical and Usage Data

  • Device Information: IP address, browser type, operating system, device identifiers (e.g., UUID), and mobile network data.

  • Log Data: Timestamps, clickstream data, error reports, and crash analytics.

  • Cookies and Tracking: We use cookies, web beacons, and pixels to track usage patterns, preferences, and authentication.

2.3 Data from Third-Party Integrations

  • Authentication Data: OAuth tokens, user IDs, and session keys for services like Google, Facebook, or Microsoft.

  • Profile Data: Name, email, profile picture, business pages, or activity data (based on permissions granted).

  • API-Specific Data: Information required for functionality (e.g., Google Drive files, Facebook Ad metrics).

3. Purposes of Data Processing:

We process your data to:

  1. Deliver Services: Operate, maintain, and improve our software and platforms.

  2. Enable Integrations: Connect third-party APIs (e.g., Google Workspace, Facebook Graph API) to enhance functionality.

  3. Process Transactions: Manage subscriptions, invoices, and payments.

  4. Communicate: Send service updates, security alerts, and marketing materials (with opt-out options).

  5. Analyze Performance: Use tools like Google Analytics or Mix panel to track user behavior and improve UX.

  6. Comply with Laws: Meet legal obligations, resolve disputes, and enforce agreements.

4. Data Sharing and Disclosure:

4.1 Third-Party API Providers:

  • Google, Facebook, and Similar Platforms: We share authentication tokens and user IDs to enable API integrations. Data handling by these providers is governed by their privacy policies.

  • Example: If you connect your Google Drive account, we access files only with your explicit consent and for specified purposes.

4.2 Service Providers:

  • Payment Processors: Stripe, PayPal, or local gateways (for transaction processing).

  • Cloud Hosting: AWS, Google Cloud, or Microsoft Azure (for data storage and infrastructure).

  • Analytics Tools: Google Analytics, Hotjar, or Sentry (for usage monitoring).

4.3 Legal and Regulatory Disclosures:

  • We may disclose data to comply with court orders, government requests, or to protect our rights, users, or the public.

4.4 Business Transfers:

  • In mergers, acquisitions, or asset sales, user data may be transferred as part of the transaction.

5. Data Security Measures:

We implement safeguards to protect your data:

  • Encryption: AES-256 encryption for data at rest and TLS 1.2+ for data in transit.

  • Access Controls: Role-based permissions and multi-factor authentication (MFA) for internal systems.

  • Audits: Regular penetration testing and vulnerability assessments.

  • Incident Response: Protocols to detect, investigate, and report breaches within 72 hours (where legally required).

6. Data Retention:

We retain data only as long as necessary:

  • Active Accounts: Until deletion is requested.

  • Payment Records: 7 years for tax and compliance purposes.

  • Backups: Encrypted backups retained for 90 days before secure deletion.

7. User Rights and Choices:

Depending on your jurisdiction, you may:

  1. Access/Port Data: Request a copy of your data in a machine-readable format.

  2. Correct Inaccuracies: Update or amend your profile information.

  3. Request Deletion: Ask us to erase your data (exceptions apply for legal obligations).

  4. Opt-Out of Marketing: Unsubscribe via the "Unsubscribe" link in emails.

  5. Restrict Processing: Limit how we use your data (e.g., pause analytics tracking).

  6. Withdraw Consent: Revoke permissions for third-party integrations (e.g., disconnect Google/Facebook accounts).

To exercise these rights, contact us at info@virtaulgarage.io. We will respond within 30 days.

8. Third-Party API Compliance:

  • Google API Services: We adhere to the Google API Services User Data Policy, including limited data use and transparency requirements.

  • Facebook Platform: Compliance with the Facebook Platform Terms and data use restrictions.

  • Other Providers: We ensure API integrations comply with their respective terms and data policies.

9. International Data Transfers:

Your data may be transferred to and processed in countries outside Bangladesh (e.g., the EU, U.S., or Singapore). We ensure safeguards such as:

  • Standard Contractual Clauses (SCCs) for EU data transfers.

  • Adequacy Decisions: Where recipient countries have approved data protection laws.

10. Children’s Privacy:

Our Services are not intended for users under 16. We do not knowingly collect data from minors.

11. Updates to This Policy:

We may update this policy periodically. Significant changes will be notified via:

  • Email alerts to registered users.

  • In-app banners or pop-ups.

  • A prominent notice on our website.

12. Contact Information:

For questions, requests, or complaints:

Virtual Garage

  • Email: info@virtualgarage.io

  • Address: Fatullah Railway Station, Fatullah, Narayanganj, Dhaka, Bangladesh-1421

  • Phone: + 880 1540-620217

Governing Law: This policy is governed by the laws of Bangladesh. For cross-border disputes, jurisdiction will follow applicable international frameworks.

Solutions

Innovative software development for your business needs.

Support

Contact

info@virtualgaragetech.com

+8801567875783

© 2024. All rights reserved.