GDPR INFORMATION TEXT

Last updated:

1. DATA CONTROLLER

As >_ Vendeltta VPN Android application, we act as the data controller in accordance with the General Data Protection Regulation (GDPR).

Application Information:
Application Name: >_ Vendeltta VPN
Package Name: com.rakapps.vendeltta.vpn
Platform: Android
Developer: Vendeltta Team
Contact: destek@vendeltta.com

2. PURPOSE OF DATA PROCESSING

We process your personal data for the following purposes:

2.1. VPN Service Provision

  • To provide secure VPN connection services
  • To ensure application functionality and performance
  • To maintain system security and stability
  • To provide technical support and troubleshooting

2.2. Legal Obligations

  • To fulfill legal and regulatory requirements
  • To respond to official requests when required by law
  • To maintain records as required by legislation

2.3. Service Improvement

  • To improve application performance and user experience
  • To develop new features and services
  • To conduct research and analysis for service enhancement

3. LEGAL BASIS FOR DATA PROCESSING

We process your personal data based on the following legal grounds:

3.1. Contract Performance

Processing is necessary for the performance of the VPN service contract between you and us.

3.2. Legitimate Interest

Processing is necessary for our legitimate interests in providing and improving our services.

3.3. Legal Obligation

Processing is necessary for compliance with legal obligations.

3.4. Consent

For certain optional features, processing is based on your explicit consent.

4. CATEGORIES OF PERSONAL DATA

We process the following categories of personal data:

4.1. Device Information

  • Android version and device model
  • Screen resolution and hardware specifications
  • Application version and build information
  • Device identifiers (anonymized)

4.2. Usage Data

  • Application settings and preferences
  • Server connection statistics
  • Performance metrics and error reports
  • Feature usage patterns

4.3. Technical Data

  • IP addresses (masked format)
  • Connection protocols used (OpenVPN/WireGuard)
  • Server locations accessed
  • Connection timestamps

5. DATA RETENTION PERIODS

Your personal data is retained for the following periods:

  • Application Settings: Until application deletion
  • Premium License Data: License period + 2 years
  • Security Logs: 7 days
  • Error Reports: 30 days
  • Performance Statistics: 60 days
  • Communication Records: 3 years

6. DATA SHARING AND TRANSFERS

We may share your data with the following parties:

6.1. Service Providers

  • Google Play Store for application distribution
  • Firebase for crash reporting (anonymous)
  • Server hosting providers
  • Payment processors for premium features

6.2. Legal Authorities

  • When required by law or court order
  • To protect our rights and property
  • In emergency situations
Important: We do not share VPN usage data or personal browsing information with any third parties.

7. INTERNATIONAL DATA TRANSFERS

Your data may be transferred to countries outside the European Economic Area (EEA):

  • VPN servers may be located in different countries
  • Google Play Store services operate globally
  • Some service providers are based outside the EEA

We ensure appropriate safeguards are in place for such transfers, including:

  • Standard contractual clauses
  • Adequacy decisions
  • Other appropriate safeguards

8. YOUR RIGHTS UNDER GDPR

You have the following rights regarding your personal data:

8.1. Right to Information

  • To know what personal data we process
  • To understand the purpose and legal basis of processing
  • To know about data retention periods

8.2. Right to Access

  • To request a copy of your personal data
  • To verify the lawfulness of processing

8.3. Right to Rectification

  • To correct inaccurate personal data
  • To complete incomplete data

8.4. Right to Erasure

  • To request deletion of your personal data
  • Also known as the "right to be forgotten"

8.5. Right to Restrict Processing

  • To limit how we process your data
  • To suspend processing in certain circumstances

8.6. Right to Data Portability

  • To receive your data in a structured format
  • To transfer your data to another service

8.7. Right to Object

  • To object to processing based on legitimate interests
  • To object to direct marketing

8.8. Rights Related to Automated Decision Making

  • To not be subject to automated decision making
  • To request human intervention

9. EXERCISING YOUR RIGHTS

To exercise your rights, you can:

  • Email: destek@vendeltta.com
  • Website: vendeltta.com
  • Response Time: We will respond within 30 days
Note: We may request additional information to verify your identity before processing your request.

10. COMPLAINTS

If you believe we have not handled your personal data properly, you have the right to:

  • Contact us directly to resolve the issue
  • Lodge a complaint with your local data protection authority
  • Seek judicial remedy

11. DATA SECURITY

We implement appropriate technical and organizational measures to protect your data:

  • Encryption: AES-256 encryption for all data
  • Access Control: Limited staff access to personal data
  • Regular Audits: Security assessments and updates
  • Incident Response: Procedures for data breach response

12. CHANGES TO THIS NOTICE

We may update this GDPR information text from time to time. Changes will be:

  • Published on our website
  • Notified through the application
  • Effective 30 days after publication

13. CONTACT INFORMATION

For questions about this GDPR information text:

  • Email: destek@vendeltta.com
  • Website: vendeltta.com
  • Response Time: Within 30 days
Go Back