Legal

Privacy Policy

Last updated: April 15, 2026

Overview

Vaglica Group ("we", "our", or "us") operates the Vaglica Service Platform at app.vaglicagroup.com. This Privacy Policy explains how we collect, use, and protect your information.

Information We Collect

We collect information you provide directly, including your business name, contact name, email address, and phone number during account registration; financial data you connect via third-party integrations (e.g., QuickBooks) — accessed only with your explicit authorization; customer and lead data you upload or import; and usage data and logs generated while using the platform.

Google User Data

When you connect your Google account, we request access to Gmail (to send outreach emails on your behalf), Google Calendar (to schedule meetings), Google Sheets (to manage your CRM), and Google Drive (to store reports). We only access data necessary to provide our service. We do not sell, share, or use your Google data for advertising. Your tokens are encrypted on our servers. You can revoke access at any time at Google Account Permissions.

Social Media Data

When you connect social media accounts (Facebook, Instagram, LinkedIn, X/Twitter), we request permission to publish content on your behalf and read engagement metrics. Tokens are encrypted at rest. We do not access your personal feeds or private messages beyond what is necessary for scheduled publishing.

How We Use Your Information

We use your information to provide and operate the platform, send outreach emails from your connected account, publish social media content on your behalf, track and manage leads in your CRM, provide analytics and performance reports, improve our services, and comply with legal obligations.

Third-Party Integrations

When you connect third-party services such as QuickBooks (Intuit), we access only the data necessary to fulfill the features you enable. We do not sell or share your data with third parties for advertising purposes.

Data Storage & Security

Your data is stored on secure servers with encrypted connections (TLS/SSL). Authentication tokens are encrypted at rest using Fernet symmetric encryption. API credentials for third-party integrations are encrypted using AES-256 before storage.

Data Sharing

We do not sell, trade, or share your personal data or third-party user data with others. We may share data only with your explicit consent, to comply with legal obligations, or to protect our rights.

Data Retention

We retain your data for as long as your account is active. When you delete your account, we delete all associated data including authentication tokens within 30 days.

Your Rights

You may access, update, or delete your personal data at any time through your account settings; revoke third-party service connections; request a copy of your data; or delete your account by contacting support.

Cookies

We use essential cookies for authentication (JWT tokens stored in browser local storage). We do not use advertising or tracking cookies.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or a notice within the platform.

Contact

Vaglica Group — rocco@vaglicagroup.com