Privacy Policy

Last Updated: 13 February 2025

This Privacy Policy explains how Viral Marketing Lab (“Viral Marketing Lab,” “we,” “us,” or “our”) collects, uses, shares, and safeguards your information when you visit www.viralmarketinglab.com (the “Site”) and when you use any related products, services, or features (collectively, the “Services”). By accessing or using the Services, you agree to this Policy. If you do not agree, please discontinue use of the Services.

We follow the core principles of applicable data-protection laws: lawfulness; fairness and transparency; purpose limitation; data minimization; accuracy; storage limitation; integrity and confidentiality; and accountability. We only collect what we need, review what we hold, and delete what we don’t need. We may update this Policy from time to time and will display the latest effective date above.

1) What We Collect

A. Information You Provide

When you register or interact with the Site, we may collect:

• Identity & Contact: first name, family name, email address, phone number.

• Account & Profile: login credentials and any profile details you add.

• Usage-Related Details: information you submit while using features (forms, subscriptions, comments).

• Payments: payment card details are provided directly to our payment processor Escrow. We do not store full card numbers. Escrow may share limited data (e.g., status, non-sensitive metadata) to resolve operational issues. Please review Escrow’s own privacy policy before submitting payment details.

Please avoid sharing sensitive data (e.g., full card numbers, national IDs, health data, religious affiliation). If you choose to share such information, do so carefully.

B. Information Collected Automatically

When you visit the Site, we (and/or service providers) may automatically collect:

• Log & Device Data: IP address, browser type, device identifiers, operating system, timestamps, pages viewed, errors/crash logs.

• Usage Data: search queries, features used, clickstream, session duration, links/buttons clicked.

• Location Data: approximate location inferred from IP (you can limit this via device/browser settings).

We use cookies, local storage, pixel tags/web beacons, and similar technologies (“Technologies”) to operate and improve the Site, measure performance, and understand engagement. You can manage cookies in your browser; disabling some may affect functionality.

C. Information From Other Sources

We may receive information from public databases, marketing/affiliate partners, social networks, and data providers (e.g., business/title details, social profile URLs) to update records, personalize content, or promote events—according to your marketing preferences and applicable law.

2) How We Use Your Information

We process personal information to:

• Provide & Improve Services: account creation, authentication, customer support, feature delivery, UX research, and security.

• Communicate: respond to inquiries; send service, security, and policy updates; request feedback; post testimonials with consent.

• Personalize & Market: tailor content and offers (with consent where required); you can opt out at any time.

• Operate Payments: process or facilitate payments and send transaction receipts (via third-party processors).

• Protect Rights & Enforce Terms: detect/prevent fraud, misuse, or illegal activity; comply with legal requests.

Legal bases (as applicable): legitimate interests (e.g., security, product improvement, fraud prevention), contract performance, consent (e.g., marketing), and legal obligations. You can withdraw consent by emailing natia@natiakurdadze.com.

3) Notifications & Marketing Preferences

We may send you updates or content we believe is useful. You can opt out of non-essential emails at any time by using the unsubscribe link or contacting natia@natiakurdadze.com. Service/transactional emails may still be sent.

4) Who Controls Your Data

For the purposes described here, Viral Marketing Lab is the data controller responsible for deciding how and why your data is processed and ensuring lawful handling.

5) How We Share Information

We do not sell your personal information. We may share it with:

• Service Providers/Processors: hosting, analytics, maintenance, communications, payment processing, and support—only for the purposes described and under confidentiality obligations.

• Legal/Compliance: government or law-enforcement requests, court orders, or to protect rights, safety, and property.

• Business Transfers: in a merger, acquisition, reorganization, insolvency, or sale of assets, your data may be transferred. We will require the transferee to honor this Policy where feasible and notify you of material changes.

• With Your Consent: for any other disclosures you authorize.

When possible, we pseudonymize and minimize data shared with third parties.

6) Third-Party Links & Services

The Site may link to third-party websites or services. We are not responsible for their content or privacy practices. Review their policies before providing information.

7) Children’s Privacy

Our Services are not directed to individuals under 18. We do not knowingly collect personal information from children under 18. If you believe a child has provided data, contact natia@natiakurdadze.com and we will delete the account and associated data. We do not market to children under 13 and comply with COPPA.

8) Information Security

We use administrative, technical, and physical safeguards (including SSL/TLS) to protect personal information. However, no method is 100% secure. Please:

• Avoid sharing passwords or card details with others.

• Log out after use.

• Change your password and notify us immediately if you suspect unauthorized access.

Storage location: Information is processed and stored on secure servers located in the United Kingdom. Data may be transferred to the EEA, United States, or other regions for maintenance and support, subject to appropriate safeguards.

9) Data Retention

We retain data only as long as necessary for the purposes described or as required by law. Generally:

• While you maintain an account and for up to six (6) years thereafter (to comply with law or defend claims).

• Longer where required by legal obligations, to evidence compliance (e.g., consent records), or while a claim/dispute is pending.

• Upon account deletion, we delete or pseudonymize your data after any required safety/retention window, retaining only what is necessary for legal, tax, or regulatory purposes.

For deletion or retention questions, contact natia@natiakurdadze.com.

10) Your Rights

Subject to applicable law, you may have the right to:

• Be Informed: about the data we collect and why (this Policy).

• Access: request a copy of your personal information.

• Rectify: correct inaccurate or incomplete data.

• Delete: request erasure where no longer needed or where consent is withdrawn.

• Object/Restrict: processing based on legitimate interests or for direct marketing.

• Portability: receive data in a machine-readable format to transfer to another provider.

• Automated Decisions/Profiling: request human review where decisions have legal or similarly significant effects.

To exercise rights, email natia@natiakurdadze.com. We may need to verify your identity before responding.

11) U.S. Compliance Disclosures

A. California Online Privacy Protection Act (CalOPPA)

• You may visit our Site anonymously.

• We link to this Policy prominently (including the word “Privacy”).

• We will post updates on this page.

• You can update your information by emailing us and/or logging into your account.

• Do-Not-Track: We honor DNT signals and do not plant cookies or use advertising when a DNT mechanism is enabled.

B. Fair Information Practices

If a data breach occurs, we will notify affected users via email within seven (7) business days. We support individual redress rights, including recourse to courts or agencies for non-compliance.

C. CAN-SPAM Act

We collect email addresses to send information, respond to inquiries, process orders, and provide updates. We will:

• Not use false/misleading headers or subjects.

• Identify messages as advertisements where applicable.

• Monitor third-party email services for compliance.

• Honor opt-out/unsubscribe requests promptly via the link at the bottom of each email.

12) Updating Your Information & Account Deletion

To update your information or request account deletion, email natia@natiakurdadze.com.

• Upon a deletion request, we deactivate your account and make it no longer viewable.

• Restore window: for up to 30 days, restoration may be possible if deactivated in error.

• After 30 days, deletion begins across active systems, subject to legal retention.

If we materially change this Policy, we will notify you via email (to your account email) or by posting a notice on the Site. Continued use after changes become effective constitutes acceptance of the revised Policy.

13) Contact Us

For questions, requests, or concerns about this Privacy Policy or your personal data, please contact:
Email: natia@natiakurdadze.com

We are committed to handling your information responsibly and will do our best to resolve any concerns.