Privacy Policy
Table of Contents
Privacy Policy
1. General Provisions
1.1. This Privacy Policy (hereinafter – “Policy”) describes how “Vardo” (hereinafter – “the Company” or “we”) collects, processes, and protects the personal data you provide and the personal data automatically generated on our platforms (the website and the mobile application).
1.2. By using the platforms, you confirm that you have read and agree to the terms of the Policy. Otherwise, please discontinue use of the platforms.
2. Definitions of Terms
| Definitions | Terms |
|---|---|
| “Personal Data” | means any information that directly or indirectly enables the identification of you (e.g.: first name, last name, telephone number, e-mail address, residential address, IP address, address, payment information). |
| User | means a natural or legal person who uses Vardo’s website, mobile application, or services. |
| Processing | means any operation performed on personal data (storage, recording, updating, deletion, transmission, and other similar actions). |
| Cookies | are small text files stored on a device that help the platform remember your preferences. |
3. What Data We May Collect
- “Registration Data” means first name, last name, telephone number, email address, password (hashed).
- Order Details: address, default parameters, comments, photo/video.
- Communication: chat, email, and telephone records.
- Technical/Analytical Information: IP address, device model, operating system, browser, version.
4. Purposes of Data Processing and Legal Bases
| Purpose | Legal Basis (GDPR Article 6) |
|---|---|
| Service provision, order processing, invoicing | (b) performance of a contract. |
| Customer identification and authorization | (b) performance of a contract / (f) legitimate interest. |
| Service quality improvement, analytics | (f) legitimate interest. |
| Marketing offers (SMS, email, push) | (a) consent. |
| Compliance with legal requirements (legal matters) | c) legal obligation. |
| Fraud prevention and security | (f) legitimate interest. |
5. Cookies and Similar Technologies
- 5.1. We rely on (1) essential (strictly necessary) cookies for the proper functioning of the platform, and (2) analytical/marketing cookies such as Google Analytics and Meta Pixel.
6. Who Has Access to the Data
- “Vardo” – for the direct provision of the service.
- Law enforcement agencies – only on the basis of a lawful request.
We never sell, rent, or share personal data with third parties.
7. Data Retention Periods
| Data type | Retention period |
|---|---|
| Registration data | 2 years after account cancellation |
| Order history / invoices | 6 years |
| Marketing consent | until consent is withdrawn |
| Technical logs | 12 months |
8. Security
- 8.1. We employ SSL/TLS encryption, OAuth 2.0/Firebase Authentication, bcrypt-encrypted passwords, and other state-of-the-art security standards.
9. Your rights
- Right of access – to obtain information about your data.
- Correction/Update – to correct inaccurate data.
- Deletion – within the limits prescribed by law.
- Restriction – temporary suspension of data processing.
- Withdrawal of direct marketing – opt-out at any time.
- Withdrawal of consent to the privacy policy – by deactivating/deleting your account. This can be done at any time; however, any processing carried out prior remains lawful.
10. Changes to the policy
The policy may be updated periodically. In the event of changes, the new version will be posted on the website and in the mobile application.
