Virads
Login or Sign Up

Privacy Policy

Our privacy policy and how we use your data

Effective Date: March 12, 2026

Overview

JPM Corp ("we", "us", or "our") prioritizes the protection of personal data for users of the Virads platform ("Platform"). This Privacy Policy explains how we collect, use, store, and protect your personal data in compliance with the General Data Protection Regulation (EU 2016/679, "GDPR") and Polish data protection laws.

1. Data Controller

JPM Corp, a sole proprietorship registered in Poland (REGON: 301570405), located at Swiety Marcin 29/8, Poznan, Poland, is the data controller for personal data collected through the Platform.

2. Personal Data Collected

We may collect the following categories of personal data:

  • Identification data: name, email address
  • Professional information: company name, position
  • Account data: login credentials, account preferences
  • Login and access data: logs, IP address, timestamps
  • Third-party authentication data: data received from Google or other OAuth providers
  • Browsing data: pages visited, timestamps, browser, operating system, user identifiers
  • Financial data: payment information processed through Stripe (we do not store credit card details directly)
  • Contact inquiry information: messages and information submitted through contact forms

We indicate which data points are mandatory for using our services and which are optional.

3. Legal Basis, Purposes & Retention

Service Provision

Legal Basis: Contract performance.
Retention: Duration of your account. Logs retained for 10 weeks. Inactive accounts for 2 years are deleted. Archived data retained for 5 years.

Billing & Invoicing

Legal Basis: Contract performance.
Retention: Transaction records for 5 years. Contracts for 10 years. Payment card data handled by Stripe per their retention policies.

Service Improvement & Analytics

Legal Basis: Legitimate interest.
Retention: Analytics data retained for up to 1 year. Aggregated data retained for up to 6 months.

Customer Communication

Legal Basis: Legitimate interest.
Retention: 3 years from last contact.

Newsletters & Marketing

Legal Basis: Consent.
Retention: Until consent is withdrawn or 3 years from last interaction.

Legal Compliance

Legal Basis: Regulatory obligation.
Retention: Invoices for 10 years. Transactions for 5 years. Contracts for 10 years.

Cookies & Analytics

Legal Basis: Consent.
Retention: Up to 25 months.

4. Data Recipients

Your personal data may be shared with:

  • Internal staff: authorized team members who need access to provide and improve services
  • Data processors:
    • Supabase — database hosting and authentication
    • Stripe — payment processing
    • PostHog — product analytics
    • AWS — cloud hosting infrastructure
  • Public authorities: only when required by law

5. International Data Transfers

Our primary infrastructure is hosted on AWS servers in the US (East Virginia). Data may be transferred outside the European Economic Area. Such transfers are protected by appropriate safeguards including:

  • EU-US Data Privacy Framework adequacy decisions
  • Standard Contractual Clauses (Article 46 GDPR)
  • Other mechanisms provided under Chapter V of the GDPR

6. Your Rights

Under the GDPR and applicable Polish data protection law, you have the following rights:

  • Right to be informed (this policy)
  • Right of access (Article 15 GDPR)
  • Right to rectification (Article 16 GDPR)
  • Right to restriction of processing (Article 18 GDPR)
  • Right to erasure / "right to be forgotten" (Article 17 GDPR)
  • Right to data portability (Article 20 GDPR)
  • Right to object (Article 21 GDPR)
  • Right to withdraw consent (Article 7 GDPR)
  • Right to lodge a complaint with the Polish supervisory authority (UODO — Urząd Ochrony Danych Osobowych) or any other competent EU supervisory authority

To exercise your rights, please contact us at virads@pm.me. We may request identity verification before processing your request.

7. Cookies

We use cookies and similar technologies to enhance your experience on the Platform. These include:

  • Essential cookies: required for the Platform to function (authentication, session management)
  • Analytics cookies: used via PostHog to understand how users interact with our services and to improve user experience

You can manage your cookie preferences through your browser settings. Disabling essential cookies may affect the functionality of the Platform.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These include encryption in transit and at rest, access controls, and regular security assessments.

9. Contact Information

For any questions regarding this Privacy Policy or your personal data, please contact us:

  • Email: virads@pm.me
  • Address: JPM Corp, Swiety Marcin 29/8, Poznan, Poland

10. Modifications

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or technical developments. Significant changes will be communicated to users through the Platform or via email.