Privacy Policy for Vaib Studio

Introduction

Welcome to Vaib Studio. We are committed to protecting your privacy and being transparent about how we collect, use, and share your information. This Privacy Policy explains our practices regarding data collection through our website (vaibstudio.com) and our consulting services.

Who We Are

Vaib Studio is a technology consulting company specializing in:

• Automation & AI Integration
• Marketing Technology & Growth
• Product Development & Innovation
• Training & Public Speaking
• Personal Job Automation

We practice "vibe coding"—an AI-assisted development philosophy that enables rapid, intuitive product development.

Information We Collect

1. Information You Provide Directly

Contact Forms & Inquiries:

• Name
• Email address
• Phone number (optional)
• Company name (optional)
• Message content and project details

Newsletter Subscriptions:

• Email address
• Name (optional)
• Subscription preferences

Consulting Engagements:

• Business information (company name, industry, size)
• Project requirements and specifications
• Technical infrastructure details
• Billing and payment information (processed by third-party payment processors)
• Communication records (emails, meeting notes, project documentation)

2. Information Collected Automatically

Website Analytics:

• IP address (anonymized)
• Browser type and version
• Device type (desktop, mobile, tablet)
• Operating system
• Pages visited and time spent on pages
• Referring website/source
• Geographic location (city/country level only)

Cookies & Similar Technologies:

• Essential cookies for website functionality
• Analytics cookies (Google Analytics)
• Preference cookies (theme settings, language)
• Session cookies for form submissions

How We Use Your Information

Primary Uses

Data Sharing & Third-Party Services

We share data with trusted third-party services to operate our business:

Client Data Handling

For Consulting Engagements

When you engage Vaib Studio for consulting services:

• Confidentiality: All client project data is covered by Non-Disclosure Agreements (NDAs)
• Data Ownership: You retain full ownership of your data and intellectual property
• Access Control: Only authorized team members working on your project have access to your data
• Secure Storage: Project files are stored on encrypted, secure servers
• Data Deletion: Upon project completion, we can delete all project data upon request (subject to legal retention requirements)

Data Processing Agreements (DPA)

For clients subject to GDPR or other data protection regulations, we can provide Data Processing Agreements that outline:

• Our role as a data processor
• Data processing activities and purposes
• Security measures and safeguards
• Sub-processor relationships
• Data breach notification procedures
• Data subject rights fulfillment

Data Security & Protection

Security Measures

We implement industry-standard security practices:

• Encryption: All data transmitted is encrypted using HTTPS/TLS
• Access Control: Role-based access with multi-factor authentication
• Secure Development: Following OWASP security best practices
• Regular Audits: Periodic security reviews of systems and code
• Incident Response: Documented procedures for security incidents
• Vendor Security: All third-party services are vetted for security compliance

Data Retention

• Contact Form Submissions: Retained for 2 years or until you request deletion
• Newsletter Subscriptions: Retained until you unsubscribe
• Website Analytics: Anonymized data retained for 26 months (Google Analytics default)
• Client Project Data: Retained for the duration of the engagement plus 1 year, unless otherwise specified in contract
• Financial Records: Retained for 7 years for tax compliance
• Communication Records: Retained for 3 years for business continuity

Your Privacy Rights & Choices

General Rights

You have the right to:

Cookie Management

You can control cookies through:

• Browser settings (Chrome, Firefox, Safari, Edge all support cookie management)
• Google Analytics opt-out: https://tools.google.com/dlpage/gaoptout
• Network Advertising Initiative opt-out: http://optout.networkadvertising.org/

Region-Specific Rights

California Residents (CCPA/CPRA)

If you are a California resident, you have additional rights:

• Right to Know: Request details about the personal information we collect, use, disclose, and sell
• Right to Delete: Request deletion of your personal information
• Right to Opt-Out: Opt-out of the "sale" or "sharing" of personal information (Note: We do not sell or share personal information)
• Right to Correct: Request correction of inaccurate personal information
• Right to Limit Use: Limit use of sensitive personal information
• Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights

To exercise these rights, contact us at hello@vaibstudio.com.

European Residents (GDPR)

If you are in the European Economic Area, UK, or Switzerland, you have additional rights:

• Right to Access: Request a copy of your personal data
• Right to Rectification: Request correction of inaccurate data
• Right to Erasure: Request deletion of your data ("right to be forgotten")
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in a machine-readable format
• Right to Object: Object to processing of your data
• Right to Withdraw Consent: Withdraw permission for data collection at any time
• Right to Lodge a Complaint: File a complaint with your local data protection authority

Legal Basis for Processing:

• Consent: For newsletter subscriptions and marketing communications
• Contract Performance: For providing consulting services and fulfilling contracts
• Legitimate Interests: For website analytics, security, and business operations
• Legal Obligation: For compliance with applicable laws (tax, financial records)

To exercise these rights, contact our Data Protection Officer at hello@vaibstudio.com.

International Data Transfers

Vaib Studio is based in the United States. If you are accessing our website or services from outside the US:

• Your data may be transferred to and processed in the United States
• We use Standard Contractual Clauses (SCCs) for EU data transfers
• We ensure all third-party services comply with applicable data protection regulations
• You consent to international data transfer when using our services

Children's Privacy

Our website and services are not intended for children under 13 years old. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal information, please contact us immediately at hello@vaibstudio.com, and we will delete the information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or business operations. When we make changes:

• We will update the "Last Updated" date at the top of this policy
• For material changes, we will notify you via email (if we have your email address) or prominent notice on our website
• Changes take effect 30 days after posting, unless otherwise specified
• Your continued use of our services after changes constitutes acceptance of the updated policy

We recommend reviewing this Privacy Policy periodically to stay informed about how we protect your information.

Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

Your Trust Matters

At Vaib Studio, we believe in building technology with transparency and respect for privacy. Our vibe coding philosophy extends to how we handle your data: with care, security, and clear communication.

We never sell your data. We never spam. We only use your information to provide better services and communicate value. If you ever have concerns about how we handle your data, we're here to help—just reach out.