VaultData is built on a simple principle: your data stays yours. We process data on your infrastructure and never transmit your business data to external AI services. This policy covers only the limited information we collect to operate our website and communicate with you.
1. Who We Are
VaultData ("we," "us," or "our") is an AI data preparation platform that helps businesses clean, structure, and curate datasets for local AI model training. Our website is located at vault-data.org. For questions about this policy, contact us at [email protected].
2. Information We Collect
2.1 Information You Provide Directly
When you fill out our consultation request form or contact us, we collect:
- Company name — to identify your organisation
- Business email address — to communicate with you about your request
- Estimated data volume — to scope our services appropriately
- Industry — to understand your compliance and data context
2.2 Information Collected Automatically
When you visit our website, we automatically collect limited technical data:
- IP address — collected for security purposes, rate limiting, and spam prevention
- Browser type and version — to ensure compatibility
- Referring URL and pages visited — to understand how users find and use our site
- Timestamps — to track when requests are made
2.3 Cookies and Similar Technologies
We use a small number of cookies to operate the website:
- Preference cookies — to remember your dark/light mode setting (stored in
localStorage, not transmitted to our servers) - Security cookies — set by Cloudflare Turnstile to prevent automated spam submissions
We do not use advertising cookies or cross-site tracking cookies. We do not fingerprint your device.
3. How We Use Your Information
We use the information we collect for the following purposes:
- Responding to consultation requests — to contact you about your enquiry and scope a potential engagement
- Service communication — to send relevant updates, onboarding information, or follow-ups you have requested
- Security and abuse prevention — IP addresses and rate-limiting data help us protect our infrastructure from spam and malicious traffic
- Service improvement — aggregate, anonymised analytics help us understand which parts of the website are most useful
- Legal compliance — to comply with applicable laws and respond to lawful requests from authorities where required
We do not sell your personal information. We do not use your information for automated profiling or decision-making that produces legal effects.
4. Third-Party Services
We work with a limited set of third-party providers to operate our website:
- Cloudflare — provides DNS, DDoS protection, and the Turnstile CAPTCHA widget. Cloudflare may process your IP address as part of its security services. See Cloudflare's Privacy Policy.
- Google Fonts — we load the Inter typeface from Google's CDN, which may result in your IP address being transmitted to Google. We use
display=swapto minimise blocking. - Hosting providers — our servers are hosted on cloud infrastructure providers. These providers process data on our behalf under data processing agreements and do not use your data for their own purposes.
- Telegram — new consultation requests generate a notification to our internal team via the Telegram Bot API. Only the information you submit in the form is included in this notification.
If we add payment processing in the future, we will update this policy and use PCI-compliant providers who process payment data under their own privacy policies.
5. Data Storage and Security
Consultation request data (company name, email, data volume, industry) is stored in a secured database on our servers. We implement the following security measures:
- Encrypted connections (TLS/HTTPS) for all data in transit
- Server-side input validation and sanitisation to prevent injection attacks
- Rate limiting to prevent brute-force and automated abuse
- Access controls restricting database access to authorised team members only
- Regular security reviews of our infrastructure
No security system is completely impenetrable. While we take reasonable steps to protect your information, we cannot guarantee absolute security. We will notify affected users and relevant authorities as required by applicable law in the event of a data breach.
6. Data Retention
We retain consultation request data for as long as necessary to manage our business relationship with you and as required by applicable law. If you request deletion of your data, we will remove it from our active systems within 30 days, unless we are required to retain it for legal or compliance reasons.
7. International Data Transfers
VaultData operates with distributed infrastructure. Your data may be stored or processed in the United States or other countries where our hosting providers operate. These countries may have different data protection laws than your country of residence.
Where required by applicable law (for example, for users in the European Economic Area), we rely on appropriate legal mechanisms for cross-border transfers, such as Standard Contractual Clauses where applicable. By submitting a consultation request, you acknowledge that your information may be transferred internationally as described in this policy.
8. Your Rights
Depending on your location, you may have the following rights regarding your personal data:
- Access — request a copy of the personal data we hold about you
- Correction — request that we correct inaccurate or incomplete information
- Deletion — request that we delete your personal data ("right to be forgotten")
- Opt-out of communications — unsubscribe from emails at any time by replying with "unsubscribe" or contacting us directly
- Data portability — request your data in a structured, machine-readable format
- Object to processing — object to certain types of processing, including direct marketing
To exercise any of these rights, contact us at [email protected]. We will respond within 30 days. We may need to verify your identity before fulfilling your request.
9. Cookies Policy
Our website uses the following types of cookies and local storage:
- Essential cookies — required for the website to function, including security cookies set by Cloudflare. These cannot be disabled without affecting core functionality.
- Preference storage — your theme preference (light/dark mode) is saved in your browser's
localStorageand never sent to our servers.
We do not use Google Analytics, Meta Pixel, or any other behavioural advertising or tracking scripts. If you block all cookies, the website will still function normally, though the security check on our contact form requires Cloudflare's CAPTCHA service to work.
You can manage or delete cookies through your browser settings at any time. For more information, visit allaboutcookies.org.
10. Children's Privacy
VaultData is a B2B service intended for business use. We do not knowingly collect personal information from individuals under the age of 16. If we become aware that a child has provided us with personal data, we will delete it promptly.
11. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes, we will update the "Last updated" date at the top of this page. We encourage you to review this policy periodically.
Your continued use of our website after any changes constitutes your acceptance of the updated policy. If you disagree with the changes, please stop using our website and contact us to request deletion of your data.
12. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal data, please reach out:
- Email: [email protected]
- Website: vault-data.org
We aim to respond to all privacy-related enquiries within 5 business days.