Privacy Policy

Wappnet Systems ("Company", "we", "us", or "our") operates Vistara Cloud (vistaracloud.com). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our multi-cloud management platform and related services.

Please read this Privacy Policy carefully. By using Vistara Cloud, you consent to the data practices described in this policy. If you do not agree with the terms of this Privacy Policy, please do not access or use our Services.

1. Information We Collect

1.1 Information You Provide

We collect information that you voluntarily provide when using our Services:

• Account Information: Name, email address, password, company name, and contact details when you register for an account.
• Cloud Provider Credentials: API keys, access tokens, IAM credentials, and service account information required to connect to your cloud providers (AWS, Azure, GCP, Digital Ocean, Hetzner).
• Payment Information: If applicable, billing address and payment method details (processed securely through third-party payment processors).
• Communication Data: Information you provide when contacting our support team, including email correspondence and feedback.
• Team Information: Names and email addresses of team members you invite to your organization.

1.2 Information Collected Automatically

When you access our Services, we automatically collect certain information:

• Device Information: Browser type, operating system, device type, and unique device identifiers.
• Log Data: IP address, access times, pages viewed, referring URLs, and actions taken within the Services.
• Usage Information: Features used, files accessed, storage operations performed, and interaction patterns.
• Cookies and Tracking Technologies: We use cookies, web beacons, and similar technologies to enhance your experience and collect usage data.

1.3 Information We Do NOT Collect or Store

Importantly, we want to be clear about what we do NOT collect:

• Your Cloud Storage Data: We do not store, copy, or retain the actual files and data from your cloud storage services. Vistara Cloud acts as an interface to display and manage your data directly from your cloud providers.
• File Contents: When you browse, upload, download, or manage files through our platform, the data flows directly between your device and your cloud provider. We do not intercept, cache, or store this content.

2. How We Use Your Information

We use the collected information for the following purposes:

• Provide Services: To operate, maintain, and deliver the features and functionality of Vistara Cloud.
• Authentication: To verify your identity and manage access to your account and connected cloud services.
• Communication: To send you service-related notifications, updates, security alerts, and support messages.
• Improvement: To analyze usage patterns, diagnose technical issues, and improve our Services.
• Security: To detect, prevent, and address fraud, abuse, security risks, and technical issues.
• Legal Compliance: To comply with applicable laws, regulations, and legal processes.
• Marketing: With your consent, to send promotional communications about new features, products, or services.

3. How We Protect Your Information

We implement robust security measures to protect your data:

• Encryption at Rest: Cloud provider credentials are encrypted using AES-256 encryption before storage.
• Encryption in Transit: All data transmitted between your browser, our servers, and cloud providers is encrypted using TLS 1.3.
• Access Controls: Strict access controls and authentication mechanisms limit access to sensitive data.
• Security Audits: Regular security assessments and vulnerability testing of our systems.
• Secure Infrastructure: Our services are hosted on secure, enterprise-grade cloud infrastructure with SOC 2 compliance.
• Employee Training: Our team receives regular security awareness training.

While we strive to protect your information, no method of transmission or storage is 100% secure. We cannot guarantee absolute security but are committed to implementing industry best practices.

4. Data Retention

We retain your information for as long as necessary to:

• Provide you with the Services
• Comply with legal obligations
• Resolve disputes and enforce agreements
• Maintain business records as required by law

When you delete your account, we will delete or anonymize your personal information within 30 days, except where we are required to retain it for legal or legitimate business purposes.

5. Information Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

5.1 Service Providers

We may share information with trusted third-party service providers who assist us in operating our Services, such as:

• Cloud infrastructure providers
• Analytics services
• Email delivery services
• Customer support tools

These providers are contractually obligated to protect your information and use it only for the purposes we specify.

5.2 Legal Requirements

We may disclose your information if required by law, regulation, legal process, or governmental request, or to:

• Protect the rights, property, or safety of Wappnet Systems, our users, or the public
• Enforce our Terms of Service
• Detect, prevent, or address fraud or security issues

5.3 Business Transfers

If Wappnet Systems is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change and any choices you may have.

6. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

• Access: Request a copy of the personal information we hold about you.
• Correction: Request correction of inaccurate or incomplete information.
• Deletion: Request deletion of your personal information, subject to legal retention requirements.
• Portability: Request a copy of your data in a structured, machine-readable format.
• Objection: Object to processing of your personal information for certain purposes.
• Restriction: Request that we restrict processing of your information in certain circumstances.
• Withdraw Consent: Where processing is based on consent, you may withdraw consent at any time.

To exercise these rights, please contact us at kishan@wappnet.com.

7. Cookies and Tracking Technologies

We use cookies and similar technologies to:

• Essential Cookies: Enable core functionality such as authentication and security.
• Analytics Cookies: Help us understand how users interact with our Services.
• Preference Cookies: Remember your settings and preferences.

You can control cookies through your browser settings. However, disabling certain cookies may limit your ability to use some features of our Services.

8. Third-Party Cloud Providers

Our Services integrate with third-party cloud providers (AWS, Azure, Google Cloud Platform, Digital Ocean, Hetzner). When you connect your cloud accounts:

• Your interactions with those services are also governed by their privacy policies
• We access your cloud resources only as authorized by you
• We recommend reviewing the privacy policies of your cloud providers

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. When we transfer your information internationally, we implement appropriate safeguards to protect your data, including:

• Standard contractual clauses approved by relevant authorities
• Ensuring recipients maintain adequate security measures
• Compliance with applicable data transfer regulations

10. Children's Privacy

Our Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we learn that we have collected information from a child, we will take steps to delete that information promptly.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

• Posting the new Privacy Policy on this page
• Updating the "Last updated" date at the top
• Sending you an email notification for significant changes

We encourage you to review this Privacy Policy periodically for any changes.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

13. Data Protection Officer

For GDPR-related inquiries or to contact our Data Protection Officer, please email: kishan@wappnet.com