VibeVaults

Privacy Policy

Last updated: January 14, 2026

This Privacy Policy describes how VibeVaults (“we”, “us”, “our”) collects, uses, and protects personal data in connection with the use of our service, as described in our Terms of Service.

1. Who We Are

Service name: VibeVaults
Operator: József Tar
Contact email: support@vibe-vaults.com
Location: European Union (Hungary)

We operate a hosted feedback widget and administrative dashboard service.

2. Scope of This Policy

This Privacy Policy applies to:

  • visitors of our website
  • customers using the administrative dashboard
  • end users submitting feedback through embedded widgets

Use of the Service is also governed by our Terms of Service.

3. What Data We Collect

3.1 Admin Users (Customers)

We collect:

  • Email address
  • Authentication data (handled via Supabase, stored securely)
  • Subscription and billing status (handled by Stripe)

We do not store full payment card details.

3.2 End Users (Feedback Widget)

When feedback is submitted via a widget, we may collect:

  • Feedback content submitted voluntarily
  • Technical metadata such as IP address and user agent (for security and abuse prevention)

We do not require end users to create accounts.

4. Data Controller and Data Processor Roles

  • Our customers act as data controllers for feedback collected through widgets.
  • VibeVaults acts as a data processor, processing feedback data solely on behalf of customers.

Customers are responsible for informing their end users about data collection and usage.

5. How We Use the Data

We use personal data only to:

  • Provide and operate the Service
  • Authenticate admin users
  • Store, display, and manage feedback
  • Prevent abuse, spam, and misuse
  • Process subscriptions and payments
  • Communicate service-related information

We do not use personal data for advertising purposes.

6. Legal Basis for Processing (GDPR)

For users in the European Union, we process personal data based on:

  • Contractual necessity (providing the Service)
  • Legitimate interest (security, abuse prevention)
  • Legal obligation (billing and compliance)

7. Third-Party Services

We rely on the following third-party service providers:

  • Supabase – authentication and database services
  • Vercel – hosting and deployment infrastructure
  • Stripe – payment processing

These providers process data only as necessary to deliver their services and under their own privacy policies.

8. Data Storage and Retention

  • Data is stored on secure servers provided by our infrastructure partners.
  • We retain data only as long as necessary to provide the Service or comply with legal obligations.
  • Customers may delete feedback data via the dashboard or request deletion.

9. Data Security

We implement reasonable technical and organizational measures to protect personal data.

However, no system can be guaranteed to be 100% secure.

10. User Rights

Depending on applicable law, users may have the right to:

  • Access their personal data
  • Request correction or deletion
  • Restrict or object to processing
  • Request data portability

Requests can be made by contacting us at the email address below.

11. Changes to This Policy

We may update this Privacy Policy from time to time.

Changes will be posted on this page with an updated “Last updated” date.

12. Contact

If you have questions about this Privacy Policy or data protection matters, contact:

Email: support@vibe-vaults.com