Vilva - Figma for knowledge work!

Effective date: May 10, 2025

1. Introduction

Vilva.ai ("Vilva," "we," "our," or "us") provides an AI‑powered knowledge‑management platform that helps you capture, organize, and visualize ideas as interconnected graphs. Protecting your privacy is important to us. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you access or use the Service.

By using the Service, you consent to the practices described below. If you do not agree, please do not use the Service.

2. Information We Collect

Category	Examples	Purpose
Information you provide	Account data (name, email), profile photo, workspace names, nodes, links, files, chat prompts & responses	To create and maintain your account, provide core features, and personalize your experience
Automatically collected	Device identifiers, IP address, browser type, referring URLs, crash logs, usage metrics, cookies, local storage	To operate the Service, ensure security, detect abuse, and improve performance
Third‑party sources	OAuth identity providers (e.g., Google, GitHub), payment processors, marketing partners	To authenticate you, process payments, and improve outreach

Sensitive data – We do not knowingly collect sensitive personal data (e.g., health, biometric, or children's data) unless you voluntarily provide it in content you upload.

3. How We Use Information

We use the information we collect to:

Provide, maintain, and improve the Service, including AI model tuning;
Authenticate users and secure accounts;
Process transactions and send related information, including confirmations and invoices;
Monitor and prevent fraud, abuse, and security incidents;
Respond to inquiries, comments, and requests for technical support;
Develop new products and features;
Conduct analytics and aggregate statistics;
Send administrative messages and, with your consent, marketing communications;
Comply with legal obligations and enforce our Terms of Service.

4. Legal Bases for Processing (EEA/UK Users)

We process personal data based on: contractual necessity, legitimate interests (e.g., security, product improvement), consent (where required, such as for marketing cookies), and legal obligations.

5. Sharing & Disclosure

We do not sell your personal information. We disclose information only:

To trusted service providers (cloud hosting, AI model hosting, analytics, payment processors) under strict confidentiality obligations;
When required by law, subpoena, or government request;
To protect the rights, property, or safety of Vilva, our users, or the public;
In connection with a merger, acquisition, or sale of assets (you will be notified and have choices);
With your express consent.

6. Your Choices & Rights

Depending on your location, you may have rights to access, correct, delete, or port your data, object to or restrict processing, and withdraw consent. Submit requests at privacy@vilva.ai. We respond within 30 days.

7. Cookies & Similar Technologies

Vilva uses first‑party and third‑party cookies, local storage, and similar technologies for session management, preferences, analytics, and marketing. You can control cookies through browser settings. Disabling cookies may limit functionality.

8. Data Retention

We retain personal data for as long as your account is active or as needed to provide the Service. We may retain logs and backups for up to 90 days after deletion for security and disaster‑recovery purposes, unless a longer period is required by law.

9. Security

We implement industry‑standard administrative, technical, and organizational safeguards, including encryption in transit (TLS 1.2+), encryption at rest, least‑privilege access controls, routine penetration testing, and incident‑response procedures.

10. International Transfers

We are based in the United States. If you access the Service from outside the U.S., you consent to transferring, storing, and processing your information in the U.S. and other jurisdictions. We rely on Standard Contractual Clauses or equivalent safeguards for cross‑border data transfers where required.

11. Children's Privacy

Vilva is not directed to children under 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, contact us so we can delete it.

12. Third‑Party Links & Services

The Service may contain links to third‑party sites, APIs, or AI models not operated by Vilva. We do not control and are not responsible for their privacy practices. Review their policies before providing data.

13. Changes to This Privacy Policy

We may update this Policy from time to time. We will post the revised policy with a new "Last updated" date and, if changes are material, provide prominent notice or obtain consent where required.

14. Contact Us

Questions or concerns? Email privacy@vilva.ai or write to: Vilva, Inc., 1412, W Chase Ave, 403, Chicago, IL 60626, USA.