Vindex Intelligence
Sign inStart free

Legal

Privacy Policy

Effective April 20, 2026

Attorney-review notice. This policy is a professionally drafted template. Before publishing, the operator must have a licensed attorney review and tailor it for the specific data flows, third-party processors, advertising partners, and jurisdictions in which the business operates (CCPA / CPRA, GDPR, GLBA, state privacy laws, etc.).

1. Information We Collect

  • Account information — name, email, phone, mailing address, password (hashed), and electronic signature image.
  • Credit-file information — credit-report PDFs and parsed tradelines that you upload, including creditor names, account numbers (masked where possible), balances, payment history, and inquiries.
  • Dispute correspondence — letters generated on your behalf, tracking numbers, and bureau response history.
  • Billing information — handled by our payment processors. We do not store full card numbers on our servers.
  • Technical data — IP address, browser, device, and usage logs.

2. How We Use It

We use your information solely to (a) provide the credit-restoration Service you requested, (b) generate, transmit, and track dispute correspondence, (c) bill you, (d) protect against fraud and abuse, (e) comply with legal obligations including the Gramm-Leach-Bliley Act (15 U.S.C. § 6801 et seq.), and (f) improve the Service. We do not sell your personal information.

3. Sharing

We share information only as follows:

  • Consumer reporting agencies and furnishers — to deliver disputes you have authorized.
  • Service providers — cloud hosting, AI inference, certified-mail vendors, and payment processors, each bound by confidentiality.
  • Legal compliance — when required by subpoena, court order, or applicable law.
  • Business transfers — in the event of a merger, acquisition, or sale of assets, with appropriate consumer notice.

4. Security

We use industry-standard safeguards including encryption in transit (TLS) and at rest, role-based access controls, audit logging, and least-privilege database policies. No system is impenetrable; in the event of a security incident, we will notify affected consumers as required by applicable breach-notification laws.

5. Retention

We retain your account and dispute records for as long as your account is active and for up to seven (7) years thereafter for tax, audit, and legal-defense purposes, unless a longer or shorter period is required by law. You may request deletion at any time, subject to lawful retention obligations.

6. Your Rights

Depending on where you reside, you may have the right to access, correct, delete, port, or restrict processing of your personal information, and to opt out of certain disclosures. California residents have additional rights under the CCPA and CPRA. EU/UK residents have rights under the GDPR. To exercise any right, contact us at the address below. We will respond within the timeframe required by law.

7. Children

The Service is not intended for individuals under 18 and we do not knowingly collect data from minors.

8. Changes

We will notify you of material changes by email or in-app notice at least thirty (30) days before they take effect.

9. Contact

For privacy questions or requests, contact [PRIVACY CONTACT EMAIL].