Privacy Policy

Information We Collect

Running a financial dashboard service means we need certain information to function. Here's what we gather and why each piece matters:

Account and Business Information

• Your name, email address, and phone number so we can reach you about your account
• Business details including company name and registration information for compliance purposes
• Billing information to process payments (we don't store full card numbers — our payment processor handles that)
• User preferences and dashboard configuration settings you choose

Financial Data You Connect

This is the core of what we do. When you connect your financial accounts to create dashboards, we access:

• Transaction records from connected bank accounts and financial platforms
• Account balances and historical financial data
• Revenue, expense, and cash flow information
• Financial statements and reports you upload or generate
• Custom metrics and calculations you set up within the platform

Technical and Usage Data

Like most online services, we collect technical information:

• IP addresses, browser types, and device information
• How you navigate through the platform and which features you use
• Dashboard views, report generations, and data export activities
• Error logs and performance data to fix problems and improve service
• Time stamps for security monitoring and audit purposes

How We Use Your Information

We're not in the business of selling data. Everything we collect serves a specific purpose for running and improving our dashboard service:

Purpose	What This Means
Service Delivery	Creating your financial dashboards, processing data connections, generating reports, and keeping everything running smoothly
Account Management	Handling your subscription, processing payments, sending service updates, and managing your user settings
Security Monitoring	Detecting unusual access patterns, preventing unauthorized use, and protecting your financial data from threats
Product Improvement	Understanding which features work well, identifying bugs, and developing new capabilities based on actual usage
Legal Compliance	Meeting Vietnamese financial regulations, responding to valid legal requests, and maintaining required records
Communication	Sending critical service notifications, security alerts, and occasional updates about features you might find useful

Data Sharing and Disclosure

Your financial information stays private by default. We only share data in these specific situations:

Service Providers We Work With

We use trusted third-party services to operate our platform. Each has their own security obligations:

• Cloud hosting providers for secure data storage and platform infrastructure
• Payment processors for subscription billing (they handle card data directly, not us)
• Financial data aggregators to connect with your bank accounts securely
• Email service providers for account notifications and communications
• Analytics tools to understand platform performance (aggregated data only)

Legal Requirements

Sometimes we're legally required to disclose information. This happens when:

• Vietnamese authorities issue valid legal requests for financial records
• We receive court orders or subpoenas that meet legal standards
• There's a genuine security threat we need to report to authorities
• We're defending our legal rights in disputes or investigations

We review every request carefully and only provide what's legally required.

Business Transitions

If Pulsaradiance is acquired or merges with another company, your data would transfer to the new entity. We'd notify you beforehand and give you options if the new privacy terms differ significantly.

Data Security Measures

Financial data requires serious security. Here's what we do to protect your information:

Encryption and Access Controls

• All data transmissions use TLS 1.3 encryption (bank-grade security)
• Financial data is encrypted at rest using AES-256 encryption standards
• Multi-factor authentication available for all user accounts
• Role-based access controls limit who on our team can see what data
• Regular access audits to track who accessed which information and when

Infrastructure Security

• Servers hosted in certified data centers with physical security controls
• Network firewalls and intrusion detection systems monitor for threats
• Regular security updates and patch management for all systems
• Automated backups with encryption stored in separate secure locations
• Incident response procedures ready if something goes wrong

Organizational Practices

Technology alone isn't enough. Our team follows strict protocols:

• Employees sign confidentiality agreements and receive security training
• Access to customer data is limited to staff who need it for their work
• We conduct regular security assessments and penetration testing
• Security monitoring runs continuously to detect unusual activity

Despite our precautions, no system is completely immune to security risks. If a breach occurs, we'll notify affected users promptly and explain what happened.

Your Rights and Control

This is your data. You have specific rights regarding how we handle it:

Access and Portability

You can request a copy of all personal and financial data we hold about you. We'll provide it in a structured, commonly-used format within 30 days. There's no charge for your first request in a calendar year.

Correction and Updates

Found something incorrect? You can update most information directly in your account settings. For data pulled from connected financial accounts, changes need to happen at the source (your bank or financial platform).

Data Deletion

You can request deletion of your account and associated data. Here's what happens:

• We delete your account access immediately upon request
• Personal information is removed from active systems within 30 days
• Financial data in dashboards is permanently deleted within 90 days
• Backup systems purge deleted data according to retention cycles (maximum 180 days)
• Some records may need to be retained for legal or compliance purposes

Usage Restrictions

You can object to certain data processing activities. For example, you can opt out of analytics that track your feature usage (though this may limit our ability to improve the product based on feedback).

Complaints and Concerns

If you believe we've mishandled your data, contact us first so we can address it. You also have the right to file a complaint with Vietnamese data protection authorities.

Data Retention

We don't keep data longer than necessary. Here's our retention approach:

Data Type	Retention Period	Reason
Active Account Data	Duration of subscription plus 90 days	Provide service and allow for account recovery
Financial Transaction Data	90 days after account closure	Complete any pending processes and audits
Billing Records	7 years from transaction date	Vietnamese tax and accounting requirements
Communication Logs	3 years from last contact	Customer service quality and dispute resolution
Security Logs	2 years from creation	Security investigations and threat analysis
Anonymized Analytics	Indefinitely	Product improvement (cannot identify individuals)

When retention periods expire, we securely delete data using methods that prevent recovery. For highly sensitive financial data, we use multi-pass overwriting before deletion.

International Data Transfers

Our primary operations are in Vietnam, but financial data sometimes crosses borders:

Where Your Data May Go

• Cloud infrastructure providers may store data in regional data centers across Asia-Pacific
• Some service providers operate from other countries (payment processors, support tools)
• Financial institutions you connect may be based outside Vietnam

Transfer Protections

When data leaves Vietnam, we ensure proper safeguards:

• Contractual obligations requiring equivalent data protection standards
• Encryption during transit and storage regardless of location
• Regular audits of service providers' security practices
• Compliance with cross-border data transfer regulations

If you have specific requirements about data location (some businesses do), contact us to discuss options.

Cookies and Tracking

Our platform uses cookies and similar technologies. Here's what they do:

Essential Cookies

These keep the platform working and can't be disabled without breaking functionality:

• Session cookies that keep you logged in as you navigate
• Security cookies that prevent unauthorized access
• Load balancing cookies that route your requests properly

Functional Cookies

These remember your preferences and settings (you can disable these if you want):

• Dashboard layout preferences and customization choices
• Display settings like date formats and currency preferences
• Recently viewed reports and saved filter settings

Analytics Cookies

These help us understand how the platform is used. They're aggregated and don't identify you personally. You can opt out in account settings.

We don't use advertising cookies or third-party tracking for marketing purposes.

Children's Privacy

Pulsaradiance is a business financial tool. We don't knowingly collect information from anyone under 18. If you're under 18, please don't use our service.

If we discover we've inadvertently collected data from a minor, we'll delete it immediately. Parents or guardians who believe we have information about a minor should contact us right away.

Changes to This Policy

We update this policy occasionally as our service evolves or regulations change. When we make significant changes:

• We'll email active users at least 30 days before changes take effect
• We'll post a notice on the platform dashboard
• The "Last Updated" date at the top will reflect the revision
• We'll maintain an archive of previous versions on request

Minor clarifications or formatting updates may not trigger notifications, but we'll always update the revision date.

Vietnam-Specific Compliance

As a Vietnam-based service, we follow local data protection requirements:

• We comply with Decree 13/2023/ND-CP on personal data protection
• Financial data handling follows State Bank of Vietnam regulations
• We maintain records of data processing activities as required
• Cross-border data transfers follow Ministry of Public Security guidelines
• We respond to lawful requests from Vietnamese authorities

If Vietnamese regulations conflict with international standards, local law takes precedence for Vietnam-based users.