Privacy Policy

Effective Date: March 6, 2025
Last Updated: March 6, 2025

This Privacy Policy for ViroCards B.V. (operating as Viropay, "Company," "we," "us," or "our") explains how we collect, use, and protect your information when you use our services ("Services"). These include:

  • Visiting our website at https://viropay.com

  • Using our SaaS management platform

  • Installing and using our browser extension

  • Engaging with our sales, marketing, or support teams

If you do not agree with our policies, please do not use our Services. For questions or concerns, contact us at info@viropay.com.

1. Information We Collect

A. Information You Provide

We collect information you voluntarily share when interacting with our Services:

  • Account Information: Name, email address, job title, company name

  • Authentication Details: Login credentials or SSO connections

  • Communication Data: Information shared when contacting support or participating in surveys

B. Information Collected Automatically

When you use our platform, we automatically collect:

  • Device Information: Browser type, operating system, device type

  • Technical Data: IP address, network information, diagnostic logs

  • Platform Usage: How you interact with our platform features

C. Browser Extension Data

Our browser extension collects only:

  • SaaS Login Events: When you access approved SaaS applications in our database

  • Usage Duration: How long you actively use each SaaS application

  • Usage Frequency: How often you use each SaaS application

Important: Our extension tracks only SaaS applications in our approved database. We do NOT track:

  • Personal browsing history

  • Non-SaaS websites

  • Content of your work within applications

  • Passwords or credentials

2. How We Use Your Information

We use your information exclusively to:

  • Provide Our Services: Deliver and maintain our SaaS management platform

  • Optimize SaaS Licenses: Help identify underutilized subscriptions

  • Improve User Experience: Enhance our platform functionality

  • Support Customers: Respond to inquiries and resolve issues

  • Ensure Security: Protect our Services from unauthorized access

3. Legal Basis for Processing

For users in the European Economic Area (EEA) or United Kingdom, we process your data based on:

  • Consent: When you've explicitly permitted us to process your data

  • Contract Performance: To deliver the Services you've requested

  • Legitimate Interests: To improve our Services and ensure security

  • Legal Obligations: To comply with applicable laws

4. Data Sharing and Disclosure

We do not sell your personal information. We may share data with:

  • Service Providers: Trusted vendors who process data on our behalf (hosting, analytics)

  • Your Organization: If you're using our Services through your employer

  • Legal Requirements: When required by law, court order, or governmental authority

All third parties with access to your data are contractually obligated to maintain confidentiality and security.

5. Data Protection and User Privacy

Pseudonymization

We employ privacy-by-design principles:

  • Active and moderately active users are represented by anonymous identifiers

  • Identifying information is only revealed for inactive users when necessary for license management

  • Administrators see aggregated data by default unless specific action is required

Data Security

We implement robust security measures:

  • Encryption of data in transit and at rest

  • Regular security assessments

  • Access controls and authentication requirements

  • Secure data storage practices

6. Data Retention

We retain your information only as long as necessary to:

  • Provide our Services

  • Comply with legal obligations

  • Resolve disputes

  • Enforce agreements

When data is no longer needed, we delete or anonymize it.

7. Cookies and Tracking

We use cookies and similar technologies to:

  • Maintain your session

  • Remember your preferences

  • Analyze usage patterns

  • Enhance your experience

You can manage cookies through your browser settings.

8. International Data Transfers

Our servers are located in the Netherlands and other EEA countries. For international transfers, we implement appropriate safeguards in accordance with GDPR requirements.

9. Your Privacy Rights

If you're in the EEA or UK, you have rights to:

  • Access your personal data

  • Correct inaccurate data

  • Delete your data (with certain limitations)

  • Restrict how we use your data

  • Object to processing based on legitimate interests

  • Export your data in a portable format

To exercise these rights, contact us at info@viropay.com.

10. Children's Privacy

Our Services are not intended for individuals under 18. We do not knowingly collect data from minors.

11. Changes to This Policy

We may update this Privacy Policy periodically. Significant changes will be communicated through our website or via email.

12. Contact Us

For questions or concerns about this Privacy Policy:

Email: info@viropay.com
Address: Vrijeheerlijkheid 39, 1566 MH Assendelft, Netherlands

PRODUCT

Spend Management

Usage Insights

Procurement Assistant

Savings Calculator

FOR WHO

For CFOs

For CTOs

For CEOs

COMPANY

Pricing

Community

Changelog

POLICY

Privacy Policy

Terms & Conditions

Use of Data

Security

© 2025 Viropay. All rights reserved.

GDPR Compliant

ISO in progress

PRODUCT

Spend Management

Usage Insights

Procurement Assistant

Savings Calculator

FOR WHO

For CFOs

For CTOs

For CEOs

COMPANY

Pricing

Community

Changelog

POLICY

Privacy Policy

Terms & Conditions

Use of Data

Security

© 2025 Viropay. All rights reserved.

GDPR Compliant

ISO in progress

PRODUCT

Spend Management

Usage Insights

Procurement Assistant

Savings Calculator

FOR WHO

For CFOs

For CTOs

For CEOs

COMPANY

Pricing

Community

Changelog

POLICY

Privacy Policy

Terms & Conditions

Use of Data

Security

© 2025 Viropay. All rights reserved.

GDPR Compliant

ISO in progress