Privacy Policy

Effective Date: 1/1/2024

At Vurtuo Consulting LLC (“Vurtuo,” “we,” “our,” “us”), we are committed to protecting your privacy and handling your personal information responsibly. This Privacy Policy explains how we collect, use, store, and protect personal data obtained through our website (https://www.vurtuo.com) and in the course of our consulting and technology services.

1. Who We Are

Vurtuo Consulting LLC
Email: privacy@vurtuo.com
We are a U.S.-based technology consulting firm specializing in Salesforce, Dayforce, web development, and automation services. We sometimes process personal data or personally identifiable information (PII) as part of project engagements.

2. What Information We Collect

We collect and process the following types of personal data:

a. Direct Information
- Name, email, phone number, Job title, company name
- Any data you submit through contact forms, intake forms, contracts, or support requests

b. Business & Project Data
- System architecture, configuration data, sandbox credentials, or sample datasets (only when required and contractually authorized)
- Customer lists, HR data, or system logs during integrations or support work

c. Technical Data
- IP address, browser type, pages visited, session information (for site analytics and security)
- Cookies and related tracking technologies

3. How We Use Your Information

We use your information to:

- Respond to inquiries and proposals
- Deliver consulting services and support
- Configure or implement systems per engagement scope
- Communicate about service updates, onboarding, or administrative matters
- Improve our website, security posture, and user experience
- Comply with applicable legal obligations

We do not sell personal information, and we limit access to only those personnel or partners with a business need.

    4. Legal Bases for Processing (GDPR)

    If you are in the EU/EEA, we process your data on one or more of the following legal bases:

    - Performance of a contract (e.g., executing a project)
    - Legitimate interest (e.g., analytics, system security)
    - Consent (e.g., marketing opt-in, cookies)
    - Legal obligation (e.g., recordkeeping or tax compliance)

    5. Data Sharing and Processors

    We may share your data with:

    - Subcontractors or implementation partners under NDA
    - Cloud service providers (e.g., Salesforce, Microsoft, Airtable) for project delivery
    - Legal or regulatory bodies when required by law

    All third parties are vetted and subject to data protection agreements.

    6. International Data Transfers

    If you are located outside the United States, your data may be transferred to and processed in the U.S. or other jurisdictions. Where required, we implement appropriate safeguards such as:

    - Standard Contractual Clauses (SCCs)
    - Data Protection Addenda
    - Vendor compliance with GDPR, CCPA, or equivalent laws

    7. How Long We Retain Your Information

    We retain your information only for as long as necessary to fulfill the purposes described in this policy or as required by law.

    Client & Project Data
    - Retained for the duration of the engagement, plus up to 7 years for audit and compliance purposes.

    Communication Records
    - Retained for 3–5 years to support client reference, service continuity, and internal tracking.

    Technical Logs
    - Retained for 30 to 180 days, unless extended for system diagnostics or security investigations.

    Legal / Financial Data
    - Retained as required by applicable tax laws, financial regulations, or contractual obligations.

    8. Your Rights

    Depending on your jurisdiction, you may have the following rights:

    - Access – Request a copy of the data we hold about you
    - Correction – Update or correct inaccurate data
    - Deletion – Request erasure of your data where applicable
    - Restriction – Limit how we use your data
    - Objection – Opt out of processing, including marketing
    - Data Portability – Request a machine-readable copy of your data
    - Non-Discrimination – Exercise rights without penalty (CCPA)

    To exercise any of these rights, contact us at privacy@vurtuo.com.

    9. Cookies and Website Tracking

    Our website uses cookies and similar technologies to:

    - Maintain site functionality and security
    - Analyze site traffic and usage patterns
    - Remember user preferences (where applicable)

    By using our site, you consent to our use of cookies. You can manage cookie settings in your browser or refer to our Cookie Policy for details.

    10. Children’s Privacy

    Our services and website are not intended for children under the age of 13 (or 16 in some jurisdictions). We do not knowingly collect personal data from children. If you believe a child has provided us with information, please contact us to delete it.

    11. Security Measures

    We implement administrative, technical, and physical safeguards to protect your data, including:

    - Role-based access controls
    - Data encryption (in transit and at rest where applicable)Vendor risk management
    - Internal security policies and training

    12. Policy Updates

    We may update this Privacy Policy periodically. When we do, we will revise the "Effective Date" and may notify users via email or on the website. Continued use of the site implies acceptance of changes.

    13. Contact Us

    If you have any questions about this Privacy Policy or how we handle your data, contact:

    Vurtuo Consulting LLC
    Email: info@vurtuo.com
    Website: https://www.vurtuo.com

    Join our newsletter for more updates!

    Thank you! Your submission has been received!
    Oops! Something went wrong while submitting the form.

    Subscribe to our newsletter for exclusive news, insights, and offers delivered straight to your inbox.

    Social Icon
    Twitter
    Social Icon
    Facebook
    Social Icon
    Youtube
    Social Icon
    Instagram
    © 2024 Vurtuo. All Rights Reserved.
    Privacy Policy
    Terms & Conditions
    Cookie Policy