Your personal data is safe with us.
Last update: February 28, 2023
Virtua.Cloud (referred to as "the Service", "we", "us", "our") collects and processes personal data from users when they create an account, use our services, or interact with us. This data may include personal information such as name, email address, billing address, and payment information. We collect this data to provide and improve our services, to process payments, and to communicate with our users. The legal basis for processing personal data is the performance of our contract with you, as well as our legitimate interest in providing and improving our services.
We may share personal data with the following third-party service providers:
We share personal data with these third-party service providers to the extent necessary to provide our services, process payments, and comply with legal or regulatory requirements. We require these third parties to comply with our data protection standards and to process personal data only for the purposes for which we have engaged them.
Please note that these third-party service providers may have their own privacy policies governing the collection, use, and disclosure of personal data. We encourage users to review these policies carefully before using their services.
Virtua.Cloud retains the personal data it collects only for the duration necessary for the purposes of processing and in accordance with applicable legislation.
The data collected by Virtua.Cloud will, therefore, be retained for the duration necessary to achieve the purposes described above, increased by the period of legal prescription.
More specifically, we organize our data retention policy as follows:
|Management of orders placed on the website www.virtua.cloud and their completion||Data is retained for three (3) years from the last incoming contact, meaning that after a period of three (3) years, there has been: |
|Management of the customer and user relationship on the website www.virtua.cloud||Data is retained for one (1) year from the last incoming contact, meaning that after a period of one (1) year, there has been: |
|Management of complaints||Throughout the contractual relationship.|
|Prevention and fight against fraud, including the management of the consequences of this fraud||Data may be retained for up to twelve (12) months from the issuance of alerts before being qualified. |
Qualified alerts deemed non-relevant or non-qualified after a period of twelve (12) months are deleted.
Qualified alerts are retained for a maximum period of five (5) years from the closure of the fraud case. For individuals listed as confirmed fraudsters, data concerning them is deleted after a period of five (5) years from the date of registration on this list.
If legal proceedings have been initiated, data is retained until the end of the legal proceedings, plus the duration of acquisition of legal prescriptions. The general statute of limitations for civil and commercial matters is five (5) years from the end of the contract.
|Establishment of any means of evidence necessary for the defense of Virtua.Cloud's rights||Throughout the contractual relationship in case of termination or for a period of three (3) years from the last incoming contact.|
|Conducting statistics and analyses to improve our products and services||Data is retained for one (1) year from the last incoming contact.|
|Management of non-consent based cookies||The data retention period must not exceed thirteen (13) months.|
|Retention of computer traces for the preventive detection of security incidents||Computer traces are retained for thirteen (13) months.|
|Sending communications about promotions and personalized or non-personalized offers, electronically||Data is retained for two (2) years from the last incoming contact, meaning that after a period of two (2) years, there has been: |
|Management of consent-based cookies||The data retention period must not exceed thirteen (13) months.|
|General accounting management||The current financial year, increased by ten (10) years from the closure.|
|Management of responses to official requests from public or judicial authorities authorized for this purpose||Throughout the contractual relationship in case of termination or for a period of three (3) years from the last incoming contact.|
|Retention of invoices and other mandatory documents relating to transactions in accordance with our obligations||The current financial year, increased by ten (10) years from the closure.|
|Management of requests to exercise rights||Data is retained for one (1) year.|
Under the General Data Protection Regulation (GDPR), users have the following rights with respect to their personal data:
To exercise these rights, users can contact us at the email address provided at the end of this policy. We will respond to requests within one month, unless the request is particularly complex, in which case we may extend the response time by an additional two months.
We take appropriate technical and organizational measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access, including the use of encryption, firewalls, and access controls.
We may transfer personal data to third parties, including our affiliates and service providers, located in countries outside the European Economic Area (EEA). We take appropriate safeguards to ensure that personal data is protected to the same standard as required under applicable law. These safeguards may include standard contractual clauses approved by the European Commission or other appropriate safeguards.
Users may request to delete their account by contacting us at the email address provided at the end of this policy. We will delete the user's personal data as soon as possible and within the timeframes required by applicable law. However, we may retain certain information to comply with legal or regulatory requirements, to prevent fraud, to resolve disputes, or to enforce our terms and conditions.