Privacy Notice

Last updated: 6/11/2026

1. Who we are

B I G Vault ("we", "us") provides an all-in-one personal and business operations vault — finances, documents, reminders, and team workspaces. For personal data we collect about our account holders and visitors, B I G Vault acts as the data controller.

2. Personal data we collect

• Account data: name, email, password hash, profile photo, phone, preferred currency.
• Workspace data: company information you create, contacts, containers, sales, financial records you enter.
• Support communications: messages you send us.
• Usage and device data: IP address, browser, device identifiers, log and telemetry data, cookies.

Payment card details are collected directly by our payment provider Paddle and are not stored by B I G Vault.

3. How we use it (purposes & legal bases)

• Create and operate your account, deliver the Service — contract performance.
• Security, fraud prevention, abuse detection — legitimate interests.
• Customer support — contract performance.
• Service improvement and analytics — legitimate interests.
• Marketing emails (only where permitted) — consent, withdrawable at any time.
• Compliance with legal obligations (tax, accounting) — legal obligation.

4. Who we share data with

• Service providers / sub-processors: hosting, database, email delivery, error monitoring and analytics tooling.
• Paddle.com, our Merchant of Record, for sale of the product, subscription management, payment processing, tax compliance and invoicing.
• Professional advisers (legal, accounting) where necessary.
• Authorities where required by law.

5. International transfers

Personal data may be transferred outside your country to our service providers. Where required, we rely on appropriate safeguards such as Standard Contractual Clauses or adequacy decisions.

6. Retention

We keep account and workspace data for as long as your account is active. After closure, data is deleted or anonymised within a reasonable period, except where we must retain it for legal obligations (e.g. invoices and tax records).

7. Your rights

Subject to applicable law you may have rights to access, rectify, erase, restrict or port your personal data, to object to processing and to withdraw consent. EU/UK users may also lodge a complaint with their local supervisory authority. To exercise these rights, contact us through your account.

8. Security

We use appropriate technical and organisational measures including encryption in transit, access controls and audit logging. No system is perfectly secure; please use a strong password and report any suspected compromise.

9. Cookies

We use strictly necessary cookies for authentication and security, and may use limited analytics cookies to understand usage. You can manage cookies in your browser settings.

10. Changes

We may update this Notice; we will indicate the "Last updated" date at the top.

11. Contact

For privacy questions, contact B I G Vault through your account. For payment-related data handled by Paddle, see Paddle's Privacy Policy.