Privacy & Data Protection

Privacy Policy

Your privacy is our priority. Learn how we collect, use, and protect your personal information.

GDPR Compliant
CCPA Compliant
SOC 2 Certified

Last Updated: January 15, 2025

Information CollectionData UsageSecurityData TransfersThird-Party SharingYour Rights

Introduction

Welcome to Vybe, operated by Megmaa Solutions ("we," "us," or "our"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our VOIP communication services, including our website, mobile applications, and related services (collectively, the "Services").

By accessing or using Vybe, you agree to this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access the Services.

Information We Collect

Information You Provide

  • Account information (name, email address, phone number)
  • Payment information (processed securely through PCI-compliant gateways)
  • Profile information and preferences
  • Communications and support requests
  • Government-issued ID (for phone number verification in regulated jurisdictions)

Automatically Collected Information

  • Device information (IP address, device type, operating system)
  • Usage data (call logs, message metadata, feature usage)
  • Location data (when you grant permission)
  • Cookies and similar tracking technologies

How We Use Your Information

Primary Uses

  • Provide and maintain Vybe services
  • Process transactions and send notifications
  • Improve and optimize our platform
  • Personalize your experience
  • Communicate with you about updates and features
  • Prevent fraud and ensure security
  • Comply with legal obligations

Data Security

Security Measures

  • End-to-end encryption for all communications
  • Industry-standard SSL/TLS encryption for data in transit
  • Encrypted storage of personal information
  • Regular security audits and penetration testing
  • Multi-factor authentication options
  • SOC 2 Type II compliance

Data Breach Protocol

  • Immediate investigation and remediation
  • Notification to affected users within 72 hours
  • Cooperation with regulatory authorities
  • Transparent communication about incidents

International Data Transfers

Cross-Border Processing

  • Data may be processed in the United States and other countries
  • Standard Contractual Clauses (SCCs) for EU data transfers
  • Privacy Shield Framework compliance (where applicable)
  • Adequate protection measures for all international transfers

Third-Party Sharing

We Share Data With

  • Service providers (cloud hosting, payment processing, analytics)
  • Business partners with your explicit consent
  • Legal authorities when required by law
  • Affiliates and subsidiaries (under same privacy standards)

We Never

  • Sell your personal information to third parties
  • Share your data for advertising without consent
  • Disclose call content or messages to third parties

Your Privacy Rights

All Users Can

  • Access your personal information
  • Update or correct your data
  • Delete your account and associated data
  • Opt-out of marketing communications
  • Export your data in a portable format
  • Withdraw consent at any time

GDPR Rights (EEA Residents)

  • Right to erasure ('right to be forgotten')
  • Right to data portability
  • Right to restrict processing
  • Right to object to processing
  • Right to lodge complaints with supervisory authorities

CCPA Rights (California Residents)

  • Know what personal information is collected
  • Know whether personal information is sold or disclosed
  • Opt-out of the sale of personal information
  • Non-discrimination for exercising privacy rights

Cookies and Tracking Technologies

We use cookies, web beacons, and similar tracking technologies to collect information about your browsing activities and improve your experience. You can control cookies through your browser settings.

View Cookie Policy

Data Retention

We retain your personal information for as long as necessary to provide our Services, comply with legal obligations, resolve disputes, and enforce our agreements. When data is no longer needed, we securely delete or anonymize it.

  • Account data: Retained while account is active
  • Call logs: Retained for 90 days
  • Payment records: Retained for 7 years (legal requirement)

Children's Privacy

Vybe is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and believe we have collected information about a child, please contact us immediately.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. We encourage you to review this Privacy Policy periodically.

Questions About Privacy?

If you have questions or concerns about this Privacy Policy or our data practices, please contact our privacy team.

Email: privacy@vybe.app

Data Protection Officer: dpo@vybe.app

Mail: Megmaa Solutions, Privacy Team, [Address]

GDPR Data Request