Privacy Policy

Last Updated: April 01, 2025

Based Tech Syndicate, doing business as Viduli (“Viduli,” “we,” “us,” or “our”), is committed to respecting and protecting your privacy. This Privacy Policy explains how we collect, use, share, and protect your personal information when you access or use our cloud infrastructure platform and related services (collectively, the “Services”).

1. Information We Collect

We collect the following categories of information:

1.1 Information You Provide Directly

• Contact Information – such as your name, email address, phone number, or mailing address.

• Account Credentials – such as usernames, passwords, or other authentication data.

• Payment Information – such as billing details or credit card data (collected and processed securely via third-party processors).

• User-Uploaded Content – including any code, configuration files, or datasets you choose to upload, deploy, or process on the platform.

1.2 Information We Collect Automatically

• Usage Data – such as access times, pages viewed, IP address, actions taken on the platform, and interactions with features.

• Device and Technical Information – such as browser type, operating system, device identifiers, and other telemetry data to support performance, troubleshooting, and diagnostics.

• Cookies and Tracking Technologies – including analytics via tools such as PostHog to understand how users engage with our Services.

2. Developer-Specific Information

As part of our infrastructure services, Viduli allows developers to upload, run, and manage code, environments, and application configurations.

We may process the following:

• Uploaded Code: Applications, scripts, or services deployed to the platform.

• Environment Variables and Secrets: Encrypted configuration data for application runtime.

• Deployment Metadata: Service definitions, resource usage, scaling logs, container orchestration data.

• Application Logs: Output generated by deployed services, stored temporarily for debugging or support.

We do not access the content of your code, files, or secrets unless:

• You grant us permission for support or debugging purposes;

• Access is required to comply with legal obligations;

• Access is necessary to investigate Terms of Service violations (e.g., abuse, spam, malware hosting).

3. How We Use Your Information

We use the information we collect to:

• Provide, operate, and maintain the Services;

• Facilitate account creation, authentication, and secure access;

• Process billing and manage financial transactions via our payment processor (e.g., Stripe);

• Respond to user inquiries, provide customer support, and deliver important service-related notices;

• Personalize your experience and offer platform enhancements based on your usage;

• Monitor and improve platform performance, security, and reliability;

• Detect, investigate, and prevent fraudulent, unauthorized, or illegal activity.

We do not use your code, deployments, or uploaded application data for training machine learning models or for internal analytics beyond platform optimization.

4. Information Sharing and Disclosure

We do not sell or rent your personal information to third parties. We may share your information in the following circumstances:

4.1 Service Providers

We engage third-party vendors and service providers to assist with hosting, analytics, customer support, payment processing, and infrastructure monitoring. These providers include, but are not limited to:

• PostHog – product analytics

• Stripe – payments and billing

• Cloud hosting & CDN providers – for global service delivery

All subprocessors are contractually obligated to protect your data and comply with applicable privacy laws.

4.2 Legal Compliance

We may disclose your information where required to do so by law, subpoena, or legal process, or in response to valid government requests.

4.3 Business Transfers

If Viduli is involved in a merger, acquisition, asset sale, or other corporate transaction, your information may be transferred as part of that process, in accordance with applicable data protection laws.

4.4 With Your Consent

We may share your information with third parties when you explicitly authorize us to do so.

5. Data Processing Agreement (DPA)

To the extent Viduli processes personal data on your behalf in the course of providing Services, the following applies:

• Role of Parties: You are the Data Controller; Viduli is the Data Processor.

• Processing Purpose: We process personal data solely to deliver and maintain the Services, as described in this Policy and our Terms of Service.

• Security Measures: We implement organizational and technical safeguards (encryption, access control, audit logging, etc.).

• Data Transfers: If data is transferred internationally, we rely on standard contractual clauses or equivalent mechanisms to ensure lawful transfer.

• Subprocessing: We use subprocessors only for the purposes outlined herein, and we maintain a current list available upon request.

• Data Subject Rights: We will assist you in fulfilling data access, rectification, erasure, and portability requests as required under applicable law.

A standalone DPA suitable for GDPR or similar regimes is available upon request via [email protected].

6. Your Rights and Choices

Depending on your jurisdiction and applicable law, you may have the following rights:

• Access – You may request access to the personal data we hold about you.

• Correction – You may request corrections or updates to inaccurate or incomplete personal data.

• Deletion – You may request that we delete your account and associated personal data, subject to legal retention requirements.

• Data Portability – You may request a copy of your data in a machine-readable format.

• Marketing Preferences – You may opt-out of receiving non-essential communications from us by following the unsubscribe instructions in any message or by contacting us.

To exercise any of these rights, please contact us at [email protected]. We may require verification of your identity before fulfilling requests.

7. Data Security

We implement appropriate administrative, technical, and physical safeguards to protect the confidentiality, integrity, and availability of your personal information, including:

• TLS encryption for data in transit

• Encryption of stored secrets and environment variables

• Role-based access controls and multi-factor authentication

• Secure isolation of user workloads and tenant boundaries

• Continuous monitoring and regular security audits

However, no system can be guaranteed to be 100% secure, and you acknowledge that you use the Services at your own risk.

8. Data Retention

We retain personal and platform data as long as necessary to:

• Provide the Services;

• Comply with legal obligations;

• Resolve disputes;

• Enforce our agreements.

Data associated with deleted accounts is purged after a retention period, unless legally required to retain it.

9. International Data Transfers

If you access the Services from outside the United States, please note that your information may be transferred to, stored in, and processed in the United States or other countries where our infrastructure or third-party service providers operate. We take steps to ensure such transfers comply with applicable data protection laws.

10. Updates to This Policy

We reserve the right to modify this Privacy Policy at any time. When changes are made, we will update the "Last Updated" date at the top of this document. In the case of material changes, we will provide notification via email or through the Services.

We encourage you to review this Policy periodically to stay informed of our privacy practices.

9. Contact Us

If you have any questions, concerns, or complaints about this Privacy Policy or our data practices, you may contact us at:

Email: [email protected]