VrilsoftApi

Privacy Policy

How Vrilsoft Api handles your data and complies with EU / GDPR requirements.

Who we are

Vrilsoft Api is a service operated from within the European Union. Our infrastructure for this application is hosted on servers located in Paris, France. We do not publish a physical postal address on this site; if you need to contact us, please use the contact options provided within the application or on our main website.

What data we collect

Vrilsoft Api is intentionally minimal in the personal data it processes. For normal operation of your account we only collect and store:

  • Your email address (for login, account communications, and security notifications).
  • Your chosen username.
  • Your password hash, generated using modern cryptographic algorithms. We never store your password in plain text and cannot retrieve it.

In addition, our systems may log technical information such as IP addresses, user agent strings, and timestamps in server logs for security, abuse prevention, and operational monitoring. These logs are retained only as long as reasonably necessary for these purposes.

Legal basis for processing (GDPR)

Under the General Data Protection Regulation (GDPR), we process your data on the following legal bases:

  • Contractual necessity – We need your email, username, and password hash to create and operate your Vrilsoft Api account, authenticate you, and provide access to the services you request.
  • Legitimate interests – We process limited technical and security data (such as logs, failed login attempts, and abuse signals) to maintain the security, availability, and integrity of the service, prevent fraud, and defend against attacks.
  • Consent – Where required for optional communications (such as newsletters or certain notifications) we rely on your explicit opt‑in, and you may withdraw that consent at any time.

How we store and protect your data

All data for Vrilsoft Api is stored on servers located in Paris, France, within the European Union. We use encryption in transit (HTTPS/TLS) for all client–server communication. Sensitive credentials, such as passwords and API secrets, are protected using industry‑standard cryptographic methods and are not stored in plain text.

Access to production systems is restricted to authorised personnel only and is governed by least‑privilege and need‑to‑know principles. Operational backups are encrypted and retained only for as long as necessary to ensure service continuity and disaster recovery.

Data sharing and international transfers

We do not sell your personal data. We may share limited data with third‑party service providers who help us operate the service (for example, infrastructure, email delivery, or logging providers). Where such providers are located outside the EU/EEA, we use appropriate safeguards such as Standard Contractual Clauses or equivalent mechanisms to ensure an adequate level of protection for your data.

Retention

We keep your account data for as long as your Vrilsoft Api account remains active. If you close your account or request deletion, we will remove or irreversibly anonymise your personal data within a reasonable period, subject to any retention required by law (for example, for fraud prevention or accounting records). Technical logs are retained only as long as necessary for security and operational purposes.

Your rights under GDPR

As an individual in the EU/EEA, you have the following rights in relation to your personal data:

  • Right of access – to obtain confirmation of whether we process your data and to receive a copy.
  • Right to rectification – to have inaccurate or incomplete data corrected.
  • Right to erasure – to request deletion of your data in certain circumstances (for example, when it is no longer needed for the purposes for which it was collected).
  • Right to restriction – to request that we limit processing of your data in specific cases.
  • Right to data portability – to receive certain data in a structured, commonly used, machine‑readable format and transmit it to another controller.
  • Right to object – to object to processing based on our legitimate interests, including profiling, where applicable.
  • Right to withdraw consent – where processing is based on consent, you may withdraw it at any time.

To exercise any of these rights, please contact us through the channels provided in the application or on our main website. We may need to verify your identity before acting on your request.

Cookies and tracking

Vrilsoft Api may use strictly necessary cookies or similar technologies to maintain sessions and security (for example, to keep you signed in). We do not use third‑party advertising cookies on this application. Any analytics we perform are limited to aggregate, pseudonymised data used to understand service usage and improve reliability and security.

Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, or best practices. When we make material changes, we will update the date of the latest revision and may notify you via the application or by email where appropriate and this will be done in accordance with your notifications settings in your profile.