Privacy Policy

Introduction

VitalStep ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our financial planning services.

Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the site.

Information We Collect

Personal Information

We may collect personal information that you provide directly to us, including:

• Name and contact information (email address, phone number)
• Financial information you enter into our calculators and planning tools
• Account credentials and authentication information
• Payment information for premium subscriptions
• Communication preferences and feedback

Automatically Collected Information

When you visit our website, we may automatically collect certain information:

• Log data (IP address, browser type, pages visited, time stamps)
• Device information (operating system, device type, screen resolution)
• Usage patterns and analytics data
• Cookies and similar tracking technologies

How We Use Your Information

We use the information we collect for legitimate business purposes, including:

• Providing and maintaining our financial planning services
• Personalizing your experience and improving our tools
• Processing payments and managing subscriptions
• Communicating with you about updates, offers, and support
• Analyzing usage patterns to improve our services
• Ensuring security and preventing fraud
• Complying with legal obligations

Data Sharing and Disclosure

We do not sell, trade, or otherwise transfer your personal information to third parties, except in the following limited circumstances:

• Service Providers: We may share information with trusted third-party service providers who assist us in operating our website and conducting our business
• Legal Requirements: We may disclose information when required by law or to protect our rights, property, or safety
• Business Transfers: In the event of a merger, acquisition, or asset sale, your information may be transferred
• Consent: We may share information with your explicit consent

Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction:

• Encryption of data in transit and at rest
• Secure server infrastructure and regular security updates
• Access controls and authentication mechanisms
• Regular security audits and vulnerability assessments
• Employee training on data protection practices

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

Your Rights Under GDPR

If you are a resident of the European Economic Area (EEA) or UK, you have certain data protection rights under the General Data Protection Regulation (GDPR):

• Right to Access: You can request a copy of the personal data we hold about you
• Right to Rectification: You can request correction of inaccurate or incomplete data
• Right to Erasure: You can request deletion of your personal data in certain circumstances
• Right to Restrict Processing: You can request limitation of how we process your data
• Right to Data Portability: You can request transfer of your data to another service
• Right to Object: You can object to processing of your data for certain purposes
• Right to Withdraw Consent: You can withdraw consent for data processing at any time

To exercise these rights, please contact us at [email protected].

Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our website:

• Essential Cookies: Required for basic website functionality
• Performance Cookies: Help us understand how visitors interact with our website
• Functional Cookies: Remember your preferences and settings
• Marketing Cookies: Used to deliver relevant advertisements (with your consent)

You can control cookie settings through your browser preferences. However, disabling certain cookies may affect website functionality.

Data Retention

We retain personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Specific retention periods include:

• Account information: Retained while your account is active and for up to 7 years after closure
• Financial data: Retained for the duration of your subscription and up to 7 years for tax purposes
• Marketing communications: Until you unsubscribe or withdraw consent
• Website analytics: Typically retained for 26 months

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that are different from the laws of your country. When we transfer your information internationally, we ensure appropriate safeguards are in place to protect your data in accordance with applicable data protection laws.

Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically.

Contact Information

If you have any questions about this Privacy Policy or our data practices, please contact us: