Legal

Privacy Policy

Effective: November 1, 2025

This Privacy Policy explains what personal data Viseda collects, why we collect it, and what you can do about it. It applies to visitors of this website and users of the Viseda product. Written in plain English, not legalese — anything unclear, email us.

01

Who we are

Viseda is operated by Be Mobile Labs Ltd., a company registered in England and Wales. When we say “Viseda”, “we”, “us”, or “our” in this Privacy Policy, we mean Be Mobile Labs Ltd. and its subsidiaries.

For questions or requests about your personal data, you can reach us at privacy@viseda.io. Our Data Protection Officer can be reached at the same address.

02

What personal data we collect

We collect three broad categories of data.

Account data — name, work email, password hash, organization name, and role. Given directly by you at sign-up.

Usage data — actions taken inside your workspace (records created, buttons clicked, features used), collected via our own event pipeline. We do not use third-party session-replay tools.

Customer content — the records, files, and messages you and your team create inside Viseda. This is your data; we process it strictly to provide the service.

03

How we use your data

We use personal data for the following purposes:

  • Provide the service — authenticate you, deliver the features you use, and keep your workspace running.
  • Communicate with you — service emails (trial expiring, incident notifications, billing), and, if you opt in, product updates.
  • Improve the product — aggregate usage data helps us understand what to build next. We never use customer content for product research without a specific opt-in.
  • Prevent abuse — detect and stop unauthorized access, fraud, and abuse of the service.
  • Comply with law — retain records where required by tax, accounting, or legal obligation.

05

Who we share data with

We share personal data with a small set of vetted subprocessors that help us deliver the service. Each is bound by a Data Processing Agreement.

  • Cloud infrastructure — AWS (regional deployment available for Scale tier).
  • Payments — Stripe (for our subscription billing) and Stripe Connect (for your customers' payments).
  • Email delivery — Postmark (transactional email).
  • Support — Front (customer support inbox).
  • AI providers — Anthropic, OpenAI. Prompts and completions are not used to train external models.

The current list of subprocessors is maintained at viseda.io/subprocessors.

06

How long we keep it

Account data is kept while your workspace is active plus 30 days after cancellation, then deleted. Customer content is deleted on the same schedule unless legal obligation requires otherwise.

Backups are retained for 35 days, encrypted at rest, and purged on rotation.

07

Your rights

Depending on where you live, you may have rights to access, correct, delete, or port your personal data, and to object to or restrict certain processing. To exercise these rights, email privacy@viseda.io. We respond within 30 days.

If you are in the EU/UK and are unhappy with how we handle a request, you can complain to your local data protection authority.

08

International transfers

Default deployment is in the EU (Ireland). If your data needs to be transferred outside the EU/UK, we use Standard Contractual Clauses and the UK IDTA where required. Scale-tier customers can pin their data to EU or US residency at the workspace level.

09

Security

Viseda is SOC 2 Type II attested. In brief: TLS 1.2+ in transit, AES-256 at rest, role-based access, least-privilege internal access, continuous monitoring, and quarterly external penetration tests.

Report a security issue at security@viseda.io. We honor responsible disclosure and run a private bug bounty.

10

Cookies & analytics

We use a small set of first-party cookies for authentication and preferences. Analytics is done with our own event pipeline; no third-party trackers are loaded in the app. On the marketing site, we use privacy-respecting analytics (no cross-site tracking, no fingerprinting).

11

Children

Viseda is not intended for use by anyone under 16. We do not knowingly collect data from children. If you believe a child has provided data to us, please contact us and we will delete it.

12

Changes to this policy

We may update this policy. Material changes will be announced via in-app notice and email to workspace admins at least 30 days before taking effect.

Questions about this document? Email legal@viseda.io or write to us at Be Mobile Labs, London, UK. See our Privacy Policy and Terms of Service for related documents.