01
Who we are
Viseda is operated by Be Mobile Labs Ltd., a company registered in England and Wales. When we say “Viseda”, “we”, “us”, or “our” in this Privacy Policy, we mean Be Mobile Labs Ltd. and its subsidiaries.
For questions or requests about your personal data, you can reach us at privacy@viseda.io. Our Data Protection Officer can be reached at the same address.
02
What personal data we collect
We collect three broad categories of data.
Account data — name, work email, password hash, organization name, and role. Given directly by you at sign-up.
Usage data — actions taken inside your workspace (records created, buttons clicked, features used), collected via our own event pipeline. We do not use third-party session-replay tools.
Customer content — the records, files, and messages you and your team create inside Viseda. This is your data; we process it strictly to provide the service.
03
How we use your data
We use personal data for the following purposes:
- Provide the service — authenticate you, deliver the features you use, and keep your workspace running.
- Communicate with you — service emails (trial expiring, incident notifications, billing), and, if you opt in, product updates.
- Improve the product — aggregate usage data helps us understand what to build next. We never use customer content for product research without a specific opt-in.
- Prevent abuse — detect and stop unauthorized access, fraud, and abuse of the service.
- Comply with law — retain records where required by tax, accounting, or legal obligation.
04
Legal basis (GDPR)
Where GDPR applies, we rely on the following bases: performance of contract (to deliver the service you bought), legitimate interests (product improvement, fraud prevention), consent (marketing emails, non-essential cookies), and legal obligation (accounting, tax).
06
How long we keep it
Account data is kept while your workspace is active plus 30 days after cancellation, then deleted. Customer content is deleted on the same schedule unless legal obligation requires otherwise.
Backups are retained for 35 days, encrypted at rest, and purged on rotation.
07
Your rights
Depending on where you live, you may have rights to access, correct, delete, or port your personal data, and to object to or restrict certain processing. To exercise these rights, email privacy@viseda.io. We respond within 30 days.
If you are in the EU/UK and are unhappy with how we handle a request, you can complain to your local data protection authority.
08
International transfers
Default deployment is in the EU (Ireland). If your data needs to be transferred outside the EU/UK, we use Standard Contractual Clauses and the UK IDTA where required. Scale-tier customers can pin their data to EU or US residency at the workspace level.
09
Security
Viseda is SOC 2 Type II attested. In brief: TLS 1.2+ in transit, AES-256 at rest, role-based access, least-privilege internal access, continuous monitoring, and quarterly external penetration tests.
Report a security issue at security@viseda.io. We honor responsible disclosure and run a private bug bounty.
11
Children
Viseda is not intended for use by anyone under 16. We do not knowingly collect data from children. If you believe a child has provided data to us, please contact us and we will delete it.
12
Changes to this policy
We may update this policy. Material changes will be announced via in-app notice and email to workspace admins at least 30 days before taking effect.