Privacy & Policy

Last updated: July 22, 2025

Introduction

Welcome to VibePM 2.0. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform. We are committed to protecting your privacy and ensuring the security of your personal information and workspace data.

By using VibePM, you agree to the collection and use of information in accordance with this policy.

Information We Collect

We collect several different types of information for various purposes to provide and improve our Service to you:

Account Information

  • Name, email address, and profile picture (collected via Google OAuth)
  • Account preferences and settings

User Content

  • Files, documents, and metadata that you authorize VibePM to access from your Google Drive
  • Workspace configurations and project data

AI Interaction Data

  • Prompts you send to the AI assistant
  • Responses you receive and context data (e.g., selected documents for analysis)
  • Chat history is stored to provide continuous conversation context

Usage Information

  • How you navigate and use the VibePM application
  • Feature usage patterns and performance metrics

Technical Information

  • IP address, browser type, operating system, and device information
  • Access times and referring website addresses

How We Use Your Information

We use the collected information for various purposes:

To Provide the Service

  • Power core features like file management, document viewing, search, and AI-powered chat
  • Synchronize your Google Drive content with your VibePM workspace
  • Enable collaboration features within your team

To Improve the Service

  • Analyze usage patterns to identify popular features
  • Enhance user experience based on feedback and behavior
  • Develop new features and capabilities

For Security

  • Protect your account from unauthorized access
  • Prevent fraud and ensure platform integrity
  • Monitor for suspicious activities

To Communicate with You

  • Send service-related announcements
  • Respond to support requests
  • Provide updates about new features (with your consent)

How We Share Your Information

We are committed to protecting your data. We share information only in the following circumstances:

Third-Party Services

We use select third-party services to provide and improve our platform:

  • Google Cloud Platform: For Google Drive API integration and Google OAuth authentication
  • N8N / OpenAI: To process your queries and provide AI-powered features. Prompts and relevant document content are sent for analysis
  • PostgreSQL & Redis: Our database and cache providers where your encrypted data is stored
  • Azure DevOps: For work item synchronization when you connect your Azure DevOps organization
  • GitHub: For repository integration and automated documentation generation
  • UniPay: For secure payment processing of subscriptions. Payment information is processed directly by UniPay and we do not store your credit card details

Legal Requirements

We may disclose your information if required by law, subpoena, or other legal process, or if we believe disclosure is necessary to:

  • Comply with legal obligations
  • Protect our rights, privacy, safety, or property
  • Enforce our terms of service

Business Transfers

In the event of a merger, acquisition, or asset sale, your information may be transferred. We will provide notice before your information is transferred and becomes subject to a different privacy policy.

Data Security

We implement industry-standard security measures to protect your data:

  • Encryption in Transit: All data transmitted between your device and our servers is encrypted using TLS 1.3
  • Encryption at Rest: Your data is encrypted at rest using AES-256 encryption
  • Secure Authentication: We use Google OAuth for secure authentication without storing passwords
  • Database Security: Row Level Security (RLS) ensures data isolation between projects
  • Regular Security Audits: We conduct regular security assessments and updates

Data Retention

We retain your information for as long as necessary to provide our services:

  • User data is retained as long as you have an active account
  • When you delete your account, we initiate a comprehensive data deletion process
  • Some information may be retained for legal or legitimate business purposes
  • Backup data is purged according to our backup retention policy

Your Rights and Choices

You have several rights regarding your personal information:

  • Access: Request a copy of the personal information we hold about you
  • Correction: Request correction of inaccurate personal information
  • Deletion: Request deletion of your personal information and account
  • Data Portability: Request your data in a structured, commonly used format
  • Consent Withdrawal: Withdraw consent for data processing where applicable

To exercise these rights, please contact us through your account settings or at our support email.

Children's Privacy

VibePM is not directed to individuals under the age of 13. We do not knowingly collect personal information from children under 13. If you become aware that a child has provided us with personal information, please contact us so we can take appropriate action.

Changes to This Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last updated" date at the top of this policy
  • Sending you an email notification for significant changes

We encourage you to review this Privacy Policy periodically for any changes.

Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

  • Through the support section in your VibePM account
  • Via email at: sandro.suladze@gmail.com

We aim to respond to all privacy-related inquiries within 48 hours.