Last Modified: March 18, 2023
Disclosure: Vuala use and transfer of information received from Google APIs to any other app will adhere to Google API Services User Data Policy, including the Limited Use requirements.
This privacy policy (the " Privacy Policy "), is intended to clearly and precisely inform users (hereinafter, the " Users ") who browse the Website hosted under the domain name https://vualapp.com/ and any of the subdomains dependent on it (the " Website ") on the processing of personal data collected by the company READY TO VUALA S.L. (" VUALA" or the " Company ") through the aforementioned Website.
This Privacy Policy is only applicable to the Website that VUALA makes available to Users, the Company declining any responsibility for the different privacy policies and protection of personal data that may be contained in the web pages to which the User can access through the hyperlinks located on the Website and not directly managed by VUALA.
This Privacy Policy applies to the information that VUALA collects through the Website, such as through a registration form or contact form or through navigation.
In accordance with the provisions of the applicable regulations, the Company informs Users that the data they provide through the Website will be incorporated into their data files, for which it is responsible.
The completion of the registration form by the Users, as well as the data provided by the User during the provision of the services, necessarily implies, and without reservations, the knowledge and acceptance of this Privacy Policy. Therefore, Users are recommended to read this Privacy Policy carefully beforehand.
Identity and contact details of the data controller
The owner of this Website is the company READY TO VUALA S.L., with CIF: B72670805 and registered office Via Augusta 114, 7º 1ª, 08006 Barcelona, Spain.
Your contact e-mail: [email protected].
Data necessary for certain treatments
The provision of data by Users through the registration form or the contact form, as well as while browsing the Website is voluntary, although not providing certain data may make it impossible to access certain services provided by the society.
Users will be responsible, in any case, for the veracity, accuracy, validity and authenticity of the personal data provided, reserving the Company, the right to exclude from the services Users who have provided false data, without prejudice to the other actions that proceed in law.
Information collected from Users
We collect several different types of information for various purposes to provide and improve our Service to you.
Types of Data Collected
The Company processes the following personal data of Users:
- Identification data, for example, name and surname.
- Contact information, such as e-mail address or telephone number.
- User transaction data, for example, details about payments, receipts or invoices between the User and suppliers.
- Technical data, for example, the login data of the Users to access the account of the service providers.
- Data from user profiles on other platforms and websites, for example, username and password of those accounts where the User is registered and which are necessary for the provision of VUALA Services.
- Other personal data that may appear on invoices and that must be used for the provision of services.
- Financial data
- Electronic mail data
Financial Data
The primary function of the Service is the collection, analysis, classification and processing of financial documents such as invoices, receipts, bills and credit notes ("Financial Documents"). When you manually upload documents or connect your e-mail box to the Service, your data is shared with us. For manually uploaded documents, any document you upload is shared with us. For more information about information collected from your e-mail box, please see the Electronic Mail Data section elsewhere in this Privacy Policy.
We use your Financial Documents in order to help you, or your bookkeeper or client, prepare tax documents. This includes analyzing the Financial Documents, removing duplicates, extracting amount, vendor and item information from each such document, and so forth. Such analysis includes our own proprietary algorithm, as well as 3rd-party services operated by Amazon Web Services and Google, Inc. Financial Documents are used for the sole purpose of rendering the service as described, as well as limited debugging and quality assurance purposes, when such circumstances arise, and only when approved in advance and in writing, by an authorized officer of the company.
Documents are stored in a highly-secure server facility operated by Amazon Web Services, protected by a wide range of security measures, including passwords, security tokens, bank-level encryption and others.
Documents are stored in a highly-secure server facility operated by Amazon Web Services, protected by a wide range of security measures, including passwords, security tokens, bank-level encryption and others.
The default setting of the Service is that no sharing with any 3rd-party, with the limited exception of the 3rd-parties listed above and for the purpose listed above, takes place. The Service does, however, allow you to explicitly share, or download and share, Financial Documents with your client, bookkeeper, employee, person or organization, for further processing. If, however, you do not elect to share, or download and share your data, it will not be shared without your explicit consent.
Electronic Mail Data
In order to help you find Financial Documents, you may elect to use the "Connect to E-mail" feature. This feature, once authorized by you ("Authorization" hereinafter), will be able to access and fetch Financial Documents from your e-mail box automatically. Please be advised that the Authorization grantes us read-only access to all messages sent, received and written since the email box was created. We use the Authorization subject to the following policy:
- We only retrieve documents that we believe, using our proprietary algorithm, to be Financial Documents;
- From time to time, the Service may retrieve a document believed to be a Financial Documents, even though it is not. In such cases, the document will be displayed to you and you will have the ability to remove it from the Service;
- Documents collected, including all Financial Documents, are used, stored and shared in the manner described above for all other Financial Documents added to the Service.The specific permissions requested during the Authorization process vary according to your e-mail service provider. The following overview is a summary of the permissions requested and the reason for requesting them, according to each service provider:
Google G Suite / G-mail:
(1) Permission: Associate you with your personal info on Google. Reason: This means we can tie your identity to your specific Google account. For more information on why we need your identifying information, please see below.
(2) Permission: See your personal info. Reason: This permission provides us with your first and last name. We use this information to associate your first and last name with the account we create for you at Vuala.
(3) Permission: View your email address. Reason: This permission provides us with the email address associated with your account. We use this information to associate your email address with the account we create for you at Vuala.
(4) Permission: View your email messages and settings. Reason: This permission allows us provides us read-only access to your messages for the sole purpose of locating and fetching financial documents, such as invoices and receipts. We will not, and cannot, make any changes or delete any messages from your inbox.
How the application accesses, uses, stores or shares user data:
This section out lines how the Service and shares information collected through the "Connect to E-mail" feature, and applies to Google G-mail.
Permission: The manner in which the application accesses user data. Reason: By using the "Connect to E-mail" feature, you will grant us read-only access to all messages sent, received and written since the email box was created. Therefore, we will try to minimize such access to the minimum required in order to render the Service to you. This includes using filters that limit the scope of messages we fetch from your mailbox, even before they are analyzed, and deleting from our systems any messages that, in retrospect, are obviously "false positives" that are irrelevant for the Service to be rendered. When such "false positives" are encountered, we will make every reasonable effort to avoid fetching such messages in the future.
Permission: The manner in which the application uses user data. Reason: We use your Financial Documents in order to help you, or your bookkeeper or client, prepare tax documents. This includes analyzing the Financial Documents, removing duplicates, extracting amount, vendor and item information from each such document, and so forth. Such analysis includes our own proprietary algorithm, as well as 3rd-party services operated by Amazon Web Services and Google, Inc. Financial Documents are used for the sole purpose of rendering the service as described, as well as limited debugging and quality assurance purposes, when such circumstances arise, and only when approved in advance and in writing, by an authorized officer of the company.
Permission: The manner in which the application stores user data. Reason: Documents are stored in a highly-secure server facility operated by Amazon Web Services, protected by a wide range of security measures, including passwords, security tokens, bank-level encryption and others.
Permission: The manner in which the application shares user data. Reason: The default setting of the Service is that no sharing with any 3rd-party, with the limited exception of the 3rd-parties listed above and for the purpose listed above, takes place. The Service does, however, allow you to explicitly share, or download and share, Financial Documents with your client, bookkeeper, employee, person or organization, for further processing. If, however, you do not elect to share, or download and share your data, it will not be shared without your explicit consent.
Usage Data
We may also collect information how the Service is accessed and used ("Usage Data"). This Usage Data may include information such as your computer's Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.
Tracking & Cookies Data
We use cookies and similar tracking technologies to track the activity on our Service and hold certain information.
Cookies are files with small amount of data which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your device. Tracking technologies also used are beacons, tags, and scripts to collect and track information and to improve and analyze our Service.
You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.
Examples of Cookies we use:
Session Cookies. We use Session Cookies to operate our Service.
Preference Cookies. We use Preference Cookies to remember your preferences and various settings.
Security Cookies. We use Security Cookies for security purposes.
E-mail Cookies. If you use the "Connect to E-mail" feature, your service provider uses its own cookies for security purposes. Please contact your service provider for more information about these cookies.
Use of Data
Vuala uses the collected data for various purposes:
To provide and maintain the Service, to notify you about changes to our Service, to allow you to participate in interactive features of our Service when you choose to do so, to provide customer care and support, to provide analysis or valuable information so that we can improve the Service, to monitor the usage of the Service, to detect, prevent and address technical issues
Transfer Of Data
Your information, including Personal Data, may be transferred to � and maintained on � computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction.
If you are located outside United States and choose to provide information to us, please note that we transfer the data, including Personal Data, to United States and process it there.
Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer.
Vuala will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and no transfer of your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of your data and other personal information.
Disclosure Of Data: Legal Requirements
Vuala may disclose your Personal Data in the good faith belief that such action is necessary to:
To comply with a legal obligation, to protect and defend the rights or property of Vuala, to prevent or investigate possible wrongdoing in connection with the Service, to protect the personal safety of users of the Service or the public and to protect against legal liability
Security Of Data
The security of your data is important to us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.
Links To Other Sites
Our Service may contain links to other sites that are not operated by us. If you click on a third party link, you will be directed to that third party's site. We strongly advise you to review the Privacy Policy of every site you visit.
We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.
Children's Privacy
Our Service does not address anyone under the age of 18 ("Children").
We do not knowingly collect personally identifiable information from anyone under the age of 18. If you are a parent or guardian and you are aware that your Children has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from children without verification of parental consent, we take steps to remove that information from our servers.
Changes To This Privacy Policy
We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page.
We will let you know via email and/or a prominent notice on our Service, prior to the change becoming effective and update the "effective date" at the top of this Privacy Policy.
You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.
Purposes and legal bases of the treatment
The Company wants to treat all the data received in a lawful manner and for this it must support the treatment of your data on a sufficient legal basis. In accordance with the foregoing, we indicate below for what purposes the Company treats the data and what is the legal basis on which each of them is based:
VUALA uses this data to provide its services, for example, to make it easier for Users to manage and keep the invoices generated.
- VUALA uses this data to provide its services, such as for the automatic download of invoices from supplier websites or to make it easier for Users to manage and preserve the invoices generated by their service providers. This data processing is necessary so that the Company can provide its services and carry out the execution of the contract between the Company and the registered users who have contracted the services of VUALA. In the event that the User does not provide any of these data, the Company would not be in a position to provide any of its Services.
- VUALA may also use the data to process, manage and solve any complaints or suggestions or queries from the User. The Company considers that it has a legitimate interest to carry out such data processing insofar as it allows it to improve its services and the User experience.
- The Company may use User data to contact them and inform them of the latest news on the Services provided by the Company. These communications will be made only and exclusively after obtaining the consent of the User.
- Only in the event that the User wishes to receive the service of notices and/or recommendations on amounts and rates applied, VUALA will collect the data related to the amounts, costs and rates applied to their invoices and will process them tocompare them with those applied to other Users who receive similar services. This data processing is necessary to carry out the execution of the contract between the Company and the users who have contracted the aforementioned service of notices and/or recommendations offered by VUALA.
User Acceptance
By accepting the Terms of Use of the Website and this Privacy Policy, the User acknowledges having read and understood the conditions of use and the legal terms established in this Privacy Policy, and expressly and unequivocally accepts the application of the same to the use you make of the Website while browsing and the provision of the corresponding Services.
Users declare themselves expressly informed and authorize the Company to collect and process their data for the purposes indicated in this Privacy Policy as described therein.
Users must notify the Company of any changes that occur in the data provided, responding, in any case, to the veracity and accuracy of the data provided at all times. Likewise, Users must refrain from uploading any false or inadmissible content in accordance with Law, morality, good faith and public order or that may, in any way, infringe the rights of third parties.
The Company reserves, where appropriate and without prejudice to other actions that may correspond to it, the right not to provide services, unsubscribe or withdraw content from those Users who provide false or incomplete data. All this does not imply, in any case, the assumption by the Company of any responsibility for damages or losses that may arise from the falsity or inaccuracy of the data provided or inappropriate content, for which only the User will be responsible.
Data communication and international transfers
The personal data collected through the Website will not be transferred to any third party to be used for their own purposes other than those for which the User has consented to their treatment.
However, the personal data of Users may be accessed by authorized personnel of the Company and other third parties or collaborators who provide services in favor of the Company, in order to manage the provision of services, the contractual relationship and/or or pre-contractual with the Users. In these cases in which access is allowed to other collaborating companies, said access to data on behalf of third parties will be regulated in the corresponding contract, as required by current regulations.
The Company, for the processing of personal data, may use the services of data processors and sub-processors who may host some of your data outside the European Union and the European Economic Area. The foregoing could imply an international transfer of data to countries that the European Union considers do not yet have an adequate level of data protection. For example, your laws may not guarantee you the same rights, or there may not be a data protection supervisory authority capable of addressing your claims.
Notwithstanding the foregoing, the Company is concerned that, in the event that data is shared outside the European Economic Area, the resulting international transfers are subject to any of the adequate guarantees described in the applicable regulations, such as the signing of standard clauses. of data protection.
The Company may also disclose the personal data collected in the specific cases in which said transfer is established and is enforceable by the applicable regulations; or when required by the competent authorities.
Conservation periods
The Company stores the personal data of the Users to the extent that they are needed in order to be able to use the data according to the purpose for which it was collected, and according to the legal basis of its treatment. The Company will keep the User's personal data as long as there is a contractual and/or commercial relationship with the User and as long as the User does not exercise the rights to oppose and/or suppress the processing of personal data.
In cases in which the user exercises the right of deletion or when the data is no longer necessary for the purpose for which they were collected, the data will be duly blocked, without giving it any use, as long as they may be necessary for the exercise or defense of claims or some type of judicial, legal or contractual responsibility may arise from its treatment, which must be attended and for which its recovery is necessary.
User Rights
At any time, and/or when deemed appropriate, Users may make use of their rights of Access, Rectification, Cancellation, Opposition, Portability and Oblivion by writing to the contact email that we have enabled for this: [email protected] ; attaching a copy of the passport or ID (owner of the data) and expressly indicating in the subject the request that you wish to make:
-Access: Through the exercise of this right you can know what personal data of yours is being processed by the Company; its purpose, origin or possible transfer to third parties.
-Rectification: It consists of being able to modify your personal data that is inaccurate or incomplete, having to specify in the request what data you want to be modified.
-Cancellation: Allows the cancellation of your personal data for inadequate or excessive.
-Opposition: With the right of opposition you can oppose that the treatment is not carried out in certain cases or for a specific purpose, such as in the hypothetical case that your data is used for advertising and commercial prospecting activities or if the treatment had the purpose of adopting a decision regarding you based solely on automated processing of your personal data.
-Portability: You may receive your personal data provided in a structured format, commonly used and mechanical reading, and be able to transmit it to another person in charge, whenever technically possible.
-Oblivion: You may request the deletion of personal data without due delay when any of the cases contemplated occurs. For example, illegal data processing, or when the purpose that motivated the processing or collection has disappeared.
Privacy Policy Modifications
The Company reserves the right to modify this Privacy Policy to adapt it to new legislation or jurisprudence, as well as industry and/or trade practices. Any modification in this Privacy Policy will be informed to the User and, if necessary, his consent will be requested. In the event that the User does not give his consent for the processing of this data, he may not continue to enjoy the provision of services by the Company.
Security measures
The Company will treat your personal data in an absolutely confidential manner. Likewise, it has implemented adequate technical and organizational measures, according to the type of data collected, to guarantee the security of your personal data and prevent its destruction, loss, illegal access or illegal alteration. When determining these measures, criteria such as the scope, context and purposes of the treatment have been taken into account; the state of the art and the existing risks.
If you have any questions about our Privacy Policy, please contact us by sending an e-mail to [email protected]. Likewise, if you consider that your rights are not being duly addressed, you have the right to file a claim with the Spanish Agency for Data Protection, whose contact details are: Telephone numbers: 901 100 099 91.266.35.17; Postal Address: C/ Jorge Juan, 6 28001-Madrid; Electronic Headquarters: https://sedeagpd.gob.es/sede-electronica-web/ and website: www.agpd.es
Contact Us
If you have any questions about this Privacy Policy, please contact us by email at [email protected]