Privacy Policy

Last Updated: April 9, 2026 | Effective Date: April 9, 2026

1. Information We Collect

We collect several types of information from and about users of our Services:

1.1 Personal Information

We may collect personal information that identifies you as an individual, including but not limited to:

• Identity Information: Full name, date of birth, Social Security number, government-issued identification numbers
• Contact Information: Email address, postal address, phone number
• Business Information: Company name, business type, tax identification number (EIN)
• Financial Information: Bank account numbers, routing numbers, credit/debit card information
• Transaction Information: Payment history, transaction amounts, merchant information

1.2 Non-Personal Information

We also collect non-personal information automatically when you use our Services:

• IP address and device information
• Browser type and operating system
• Usage data and browsing patterns
• Cookies and similar tracking technologies
• Geolocation data (with your consent)

2. How We Collect Information

We collect information through various methods:

• Direct Collection: Information you provide when registering, completing forms, or communicating with us
• Automated Collection: Through cookies, web beacons, and similar technologies
• Third-Party Sources: Credit bureaus, identity verification services, and business partners
• Transaction Processing: Information generated during payment processing activities

3. How We Use Your Information

We use the information we collect for various business purposes, including:

• Processing payments and maintaining transaction records
• Verifying your identity and preventing fraud
• Complying with legal and regulatory requirements
• Providing customer support and responding to inquiries
• Improving our Services and developing new features
• Sending transactional notifications and account updates
• Marketing communications (with your consent)
• Analytics and research to enhance user experience

4. Legal Basis for Processing (GDPR Compliance)

For users in the European Economic Area (EEA), we process personal data based on the following legal grounds:

• Contractual Necessity: Processing necessary to perform our contract with you
• Legal Obligation: Compliance with applicable laws and regulations
• Legitimate Interests: Operating our business, fraud prevention, and security
• Consent: Marketing communications and optional features

5. How We Share Your Information

We may share your information with the following categories of recipients:

5.1 Service Providers

We engage trusted third-party service providers to perform functions on our behalf, including:

• Payment processors and banking partners
• Cloud hosting and data storage providers
• Identity verification and fraud prevention services
• Customer support and communication platforms
• Analytics and marketing service providers

5.2 Business Partners

We may share information with:

• Financial institutions involved in transaction processing
• Card networks (Visa, Mastercard, etc.)
• Merchant partners (when necessary for transaction completion)

5.3 Legal Requirements

We may disclose your information when required by law, including:

• Compliance with subpoenas, court orders, or legal process
• Response to requests from government agencies
• Protection of our rights, property, or safety
• Prevention or investigation of fraud or illegal activities

5.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction.

6. Data Security

We implement comprehensive security measures to protect your information:

• Encryption: SSL/TLS encryption for data in transit; AES-256 encryption for data at rest
• Access Controls: Role-based access controls and multi-factor authentication
• PCI DSS Compliance: Full compliance with Payment Card Industry Data Security Standards
• Regular Audits: Security assessments and penetration testing
• Employee Training: Regular security awareness training for staff

7. Data Retention

We retain your personal information for as long as necessary to:

• Provide our Services and fulfill the purposes outlined in this policy
• Comply with legal, regulatory, and tax obligations
• Resolve disputes and enforce our agreements

Typically, we retain transaction records for seven (7) years as required by financial regulations. When information is no longer needed, we securely delete or anonymize it.

8. Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

8.1 For All Users

• Access: Request a copy of your personal information
• Correction: Request correction of inaccurate information
• Deletion: Request deletion of your personal information (subject to legal requirements)
• Opt-Out: Unsubscribe from marketing communications

8.2 For California Residents (CCPA/CPRA)

Under the California Consumer Privacy Act and California Privacy Rights Act, California residents have additional rights:

• Right to Know: Request disclosure of personal information collected, used, shared, or sold
• Right to Delete: Request deletion of personal information (with exceptions)
• Right to Opt-Out: Opt-out of the sale of personal information
• Right to Non-Discrimination: Exercise privacy rights without discrimination
• Right to Correct: Request correction of inaccurate personal information
• Right to Limit: Limit use and disclosure of sensitive personal information

8.3 For EEA Residents (GDPR)

Under the General Data Protection Regulation, EEA residents have the following rights:

• Right to access, rectify, and erase personal data
• Right to restrict or object to processing
• Right to data portability
• Right to withdraw consent
• Right to lodge a complaint with a supervisory authority

9. Cookies and Tracking Technologies

We use cookies and similar technologies to:

• Remember your preferences and settings
• Understand how you use our Services
• Improve website functionality and performance
• Deliver personalized content and advertisements

You can manage cookie preferences through your browser settings. Note that disabling certain cookies may affect website functionality.

10. Children's Privacy

Our Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we discover that we have collected information from a child, we will promptly delete it.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States. We ensure appropriate safeguards are in place to protect your information during such transfers, including:

• Standard Contractual Clauses approved by the European Commission
• Adequacy decisions for countries with adequate data protection
• Certification under relevant privacy frameworks

12. SMS Communications

By providing your mobile phone number and opting in, you consent to receive SMS messages from Virtual Transfer regarding:

• Transaction notifications and payment alerts
• Account security notifications
• Service updates and maintenance notices
• Marketing and promotional offers (with separate consent)

Message and data rates may apply. Reply STOP to opt out at any time. Reply HELP for assistance. Carriers are not liable for delayed or undelivered messages.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

• Posting the updated policy on our website
• Sending an email notification to registered users
• Displaying a notice within our Services

Your continued use of our Services after changes constitutes acceptance of the updated policy.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Data Protection Officer:
Email: dpo@virtual-transfer.online

15. California Privacy Rights Notice

Categories of Personal Information Collected (Last 12 Months):

• Identifiers (name, email, phone, address)
• Commercial information (transaction records)
• Financial information (bank account, payment card numbers)
• Internet activity (browsing history, interactions)
• Geolocation data
• Professional or employment information

Categories of Personal Information Disclosed for Business Purposes:

• Service providers (payment processing, cloud storage, customer support)
• Financial institutions and card networks
• Legal and regulatory authorities

We do not sell personal information as defined by the CCPA.