Verynet LLC – Privacy Policy
Last Updated: November 8, 2025
This Privacy Policy explains how Verynet LLC (“Verynet,” “we,” “us,” or “our”) collects, uses, discloses, and safeguards personal information when you interact with our website (https://verynet.co), our services, and any related online or offline offerings. It also describes your rights and choices regarding your personal information. We are committed to protecting your privacy and handling your personal data in a transparent and lawful manner.
By using Verynet’s website or Services, or by providing us with your information, you consent to the practices described in this Privacy Policy. If you do not agree with this policy, please do not use our website or services.
Please note that this Privacy Policy is primarily focused on how Verynet uses information as a service provider and website operator. If you are a customer of our hosting or development services, you may also collect personal data through websites or applications we host or build for you; in those cases, you are responsible for providing a privacy policy to your users and complying with data protection laws as the “data controller” for that data (see Section 6 of our Terms of Service). This Privacy Policy does not apply to the content you host with us, except to the extent we access or process it in connection with providing the Service (in which case we handle it according to this policy and our contractual obligations).
- Information We Collect
We may collect several categories of information from and about users, which can include “Personal Information” (information that can identify a specific individual) as well as non-identifying information. The types of information we collect depend on your interactions with us, as detailed below:
1.1 Information You Provide Directly
Account and Contact Data: When you inquire about our services, sign up for an account (e.g., in our Blesta billing portal), or contact us (via contact forms, email, or phone), you may provide personal information. This includes your name, email address, phone number, billing address, company name, and any other information you choose to give us. For instance, our contact form asks for your name, email, and message details. If you engage our services, we may also collect business details like your organization’s name and any project requirements you share.
Payment Information: If you purchase a service, our third-party payment processors (such as PayPal or Stripe) will collect your payment card details or bank information. Verynet itself does not collect or store full credit card numbers or bank account numbers. We may retain limited payment information for record-keeping, such as the last four digits of a card, card type, and billing address, but actual payment transactions are handled securely by the external processor. We do keep records of transactions (amount paid, date, service purchased) for accounting and support purposes.
Support and Communications: If you contact us for support or with questions (via email, support ticket, or phone), we will collect the information you choose to share in that correspondence. This may include contact details and a description of the issue. We may record and retain copies of communications (such as emails or chat logs) for training and quality assurance.
Project Data: For our consulting or development services, you might provide us with access to existing systems or data (for example, content to load onto a website, or credentials to third-party services like a domain registrar). We will use this information only for the purpose of delivering the service you requested. Any personal information within materials you give us (such as a list of your customers’ emails to import into a site) will be treated as confidential and used only as agreed.
1.2 Information We Collect Automatically
When you visit our website or use our online Services, we (and our analytics and advertising partners) automatically collect certain information about your device and usage of our site through cookies, pixels, and similar tracking technologies. This information may include:
Technical Identifiers: IP address, browser type, browser language, device type, operating system, and Internet Service Provider (ISP). We collect IP addresses for security (e.g., firewall and login logging) and analytical purposes (to understand from what regions our site is accessed). An IP address, in combination with other data, may be considered personal data in some jurisdictions.
Usage Data: Dates and times of access, pages viewed, links clicked, and the route by which you navigated to our site (referring URL or search query). We use Google Analytics and similar tools to help analyze how users use our site, which provides aggregate information such as which pages are most visited, how long users spend on each page, etc.. This data does not directly identify you by name but may be or become linked to a unique identifier (like a cookie ID or IP address) that could be considered personal data.
Cookies & Similar Tech: Our site uses “cookies” (small data files stored on your browser) and related technologies (such as web beacons or pixel tags embedded in pages or emails). These technologies allow us and our partners to collect or receive certain information about you and your device automatically. For example, we use cookies to remember your preferences, keep you logged into your account portal, and gather analytics data. We also use tracking pixels from advertising partners (like Facebook and TikTok) that track actions you take on our site after interacting with our ads (see Section 3.2 on Advertising). These pixels may record information about your browsing session such as the pages you visited, actions taken (e.g., clicking a button), and a hashed identifier or cookie that can be used to tie your visit to an ad impression. We and third-party partners may use cookies and pixels to collect or receive information about your visits and usage of our site and other websites, and use that information to provide measurement services and target ads.
Server Logs: Our servers (including those for Plesk control panels and hosting) automatically maintain logs which may include the IP addresses that access various services, the actions performed (e.g., logging into Plesk, modifying a setting), and timestamps. These logs are primarily used for security monitoring, debugging issues, and generating usage statistics (like bandwidth usage, etc.). For instance, Plesk keeps an Action Log of user actions in the control panel, and our web servers log each HTTP request.
Analytics Services: We specifically use tools such as Google Analytics to gather usage data on our website. Google Analytics uses its own cookies to track interactions. It may collect data like your IP address, device identifiers, browser information, and on-site behavior (pages visited, time spent, etc.). Google Analytics provides us aggregated reports; we do not obtain personally identifying information through these reports. However, Google may have access to some of your data; see Section 3 and Google’s privacy policy for details. We respect any “Do Not Track” (DNT) signals or global privacy control to the extent required by law, but currently our site does not alter its practices in response to a standard DNT header (there is no consensus on DNT handling; if you wish to opt out of analytics, see Section 5.2 below for opt-out options).
1.3 Information from Third Parties
We may receive personal information about you from third-party sources in certain scenarios:
Third-Party Sign-In or Integration: If in the future we enable sign-on through third-party platforms (e.g., logging in with Google or Facebook), we would receive basic profile information from those platforms with your consent. (Currently, we do not offer this login method, but mention it for completeness.)
Advertising Partners: Our advertising partners (such as Google Ads, Facebook Ads, TikTok Ads) might provide us with information about the effectiveness of our campaigns, which could indirectly include data about you (like an advertising ID or confirmation that you took an action like visiting our site or filling a form after clicking an ad). This data is usually provided in aggregate or anonymized form. We do not receive your actual profile data from these platforms unless you explicitly share it (for example, if you contact us through a Facebook lead generation ad form).
Referrals and Resellers: If you were referred to us by a third-party reseller or partner, they may have provided us with your contact information so we can provision your service.
Public Databases: For domain registration services, certain personal information (domain registrant contact) may be published in WHOIS directories, unless domain privacy is used. If we manage a domain for you, we will have the registrant information you provided, which often includes name, address, email, and phone for the domain record. We treat that information according to this Privacy Policy and domain regulatory requirements (e.g., we share it with the domain registrar and ICANN as needed).
We do not purchase marketing lists or personal data from data brokers. All personal information we have comes from the sources described above.
1.4 Categories of Personal Information Collected
To summarize, in the past 12 months we may have collected the following categories of personal information (as defined by laws like CCPA) from consumers:
Identifiers: Such as name, email address, IP address, account username.
Customer Records Information: Contact and billing information, correspondence, and any personal data contained in project files you provide.
Internet or Other Electronic Network Activity: Browsing history, pages and content viewed, features used, session logs, and referral info (from cookies and logs).
Geolocation Data: Approximate location derived from IP address (e.g., city or region level).
Professional or Employment Information: Only if you provide it as part of an inquiry or project (e.g., your business name or title).
Inferences: We do not typically profile individuals in ways that produce special inferences; however, analytics may allow us to infer user preferences (e.g., an inference that a user is interested in WordPress services because they visited those pages).
We do not collect sensitive personal information like Social Security numbers, driver’s license numbers, financial account passwords, or precise health/genetic data in the ordinary course of business. We also do not knowingly collect information from children under 13 (see Section 7.6).
- How We Use Your Information
Verynet uses personal information we collect for the following business and commercial purposes:
2.1 To Provide and Maintain Services
We use collected information to perform our contractual obligations and run our Services:
Account Provisioning: We use contact and account data to set up and maintain your user account, provide you with login credentials, verify your identity when you log in, and provide our services (e.g., hosting environment setup, domain registration on your behalf).
Service Delivery: Any information you provide that is necessary for a given service will be used accordingly. For example, if you sign up for web hosting, we use your domain name and preferences to configure the server. If we’re developing a website for you, we use the content and specs you provide to build the site.
Payments and Billing: We use payment-related information to process your service fees (via our third-party processors) and manage invoicing. We keep records of transactions and use contact info to send billing notices, receipts, and related communications.
Service Communications: We may send you administrative emails to confirm your order, notify you of renewals, provide service alerts (such as scheduled maintenance, security alerts, or important updates about your account). These communications are part of the Services and not promotional in nature. For instance, we might email you if your domain is expiring or if we need to inform you of a server downtime window.
2.2 For Customer Support and Communications
We use your information to provide customer support, respond to your inquiries, and improve our customer service:
Support Requests: If you reach out with issues or questions, we will use your contact and any relevant account information to troubleshoot and resolve the problem. This may involve accessing your account settings or logs, with your permission, to diagnose issues.
Feedback: If you provide feedback or reviews, we may use your name and comments in marketing (with your consent), or internally to improve our services. We may also contact you to clarify feedback or to ask if you want to share a testimonial.
Service Improvements: Information gleaned from support interactions or surveys may be aggregated and analyzed to identify common pain points and improve features or documentation.
2.3 For Analytics and Service Enhancement
We use data (mostly aggregated or pseudonymized) to understand how our website and services are used and to improve them:
Website Analytics: Using tools like Google Analytics, we analyze traffic and usage patterns on our website (e.g., which pages get the most visits, how users navigate the site). This helps us optimize site content and user experience. For example, if we see many visitors dropping off at a certain page, we might redesign that page.
Service Usage Monitoring: For our hosting and application services, we might analyze how resources are being used (CPU, storage) and common user actions in the Plesk panel or WordPress sites. This helps us ensure stability and plan capacity. It can also help in improving user guides if we notice confusion at certain steps.
Development of New Features: We might use usage data and feedback to prioritize new service offerings or features (e.g., if many users are asking for a particular integration or reporting a particular limitation, that guides our development).
Troubleshooting and Security: Automatically collected data (logs, IP addresses) is used to detect and mitigate technical issues or malicious activities. For instance, analyzing logs can help us spot a potential DDoS attack or a misconfigured script that needs attention.
2.4 Marketing and Advertising (With Consent or as Permitted by Law)
We may use contact information and inferences for marketing purposes:
Email Marketing: If you join our mailing list or become a customer, we may send you newsletters or promotions about new services, special offers, or other information we think may interest you. These will be sent in accordance with applicable laws (we’ll obtain consent where required). You can opt out of marketing emails at any time by clicking the “unsubscribe” link in the email or contacting us (see Section 7.4 on your rights). We will still send transactional or account-related emails as noted earlier.
Advertising and Retargeting: We participate in online advertising to reach potential customers and retarget past visitors. For example, we use Google Ads, Facebook Ads, and TikTok Ads to display ads on their platforms or partner networks. We utilize tracking pixels (like the Facebook Pixel and TikTok Pixel) on our site, which allow those platforms to recognize visitors and possibly match them to user profiles. This helps us, for instance, to show a Verynet advertisement on Facebook to someone who previously visited our site. We also use Google’s advertising cookies to show ads to visitors based on their past visits (this is Google Analytics Advertising and remarketing). The information used for these targeted ads may include cookie identifiers, pages visited on our site, and perhaps an inferred interest in our services. No directly identifiable personal data (like your name or email) is shared from us to ad networks; the process relies on pseudonymous identifiers (cookie IDs, advertising IDs). We may also create custom audiences using hashed customer emails (for example, uploading a list to Facebook to target our existing customers with an update); such lists are hashed and used solely to match users on the platform.
Ad Measurement: Our ad partners provide us summary reports about ad campaign performance (e.g., how many people saw or clicked an ad, how many converted to sign up). We use these to gauge the effectiveness of our marketing. We do not receive personal details of each user from these reports.
Third-Party Tracking Disclosure: As required by Facebook’s terms and similar policies, we hereby disclose that third parties, including Facebook and TikTok, may use cookies, web beacons, and other storage technologies to collect or receive information from our website and elsewhere on the internet and use that information to provide measurement services and target ads. Section 5.2 of this Policy provides information on how users can opt out of the collection and use of information for ad targeting and where to exercise such choices.
We will not sell your personal information to third parties for their own marketing purposes. “Sell” in this context means exchanging personal data for money; we do not do this. However, some data sharing (for example, with advertising networks via cookies) might be considered a “sale” or “sharing” under certain privacy laws (like the CCPA/CPRA) since personal identifiers (like cookie IDs, IP addresses) can be used for cross-context behavioral advertising. We treat such sharing as outlined in this Policy and give you choices to opt out (see Section 5 and 7.3).
2.5 To Protect Rights, Property, or Safety
We may use and disclose personal information as necessary to:
Ensure Network and Information Security: For example, we might use IP addresses to block malicious traffic, or use data about usage anomalies to prevent unauthorized access or attacks.
Prevent Fraud: If we suspect billing fraud or identity theft (e.g., someone using a stolen credit card), we will use relevant information to investigate and act (which could include contacting authorities or alerting the cardholder).
Enforce Terms and Policies: We may process data to investigate potential violations of our Terms of Service or Acceptable Use Policy. For instance, if we receive a complaint that a hosted site has illegal content, we will review the data necessary to verify that claim.
Legal Compliance: We will use personal information to comply with our legal obligations (such as maintaining transaction records for tax/audit purposes, or responding to lawful requests – see Section 4 on sharing for details).
Emergency Situations: If someone’s safety is at risk or there’s an urgent threat (like an attack or a crime in progress) and we have information that could help, we might use or share personal data to prevent harm.
2.6 Other Purposes (with Notice or Consent)
If we intend to use your personal information for a purpose not listed above, we will update this Privacy Policy and/or provide you with specific notice at the time of data collection or before the new use. For instance, if we launched a mobile app and wanted to use precise location data, we’d seek your permission. Or if we were to process sensitive categories of data for a new feature, we would explain the purpose and get opt-in consent if required by law.
In all cases, we will only use your personal information as permitted or required by applicable law, and we will not use it in ways that are incompatible with the purposes for which it was collected without obtaining your consent.
- How We Share or Disclose Information
Verynet respects the confidentiality of your personal information. We do not sell your personal data to third parties for their independent use. However, in the normal course of operating our business and providing our Services, we do share information with certain trusted third parties and under certain circumstances, as detailed below:
3.1 Sharing with Service Providers and Partners
We employ third-party companies and individuals to perform functions on our behalf – these service providers have access to personal information only as needed to perform their services and are contractually obligated to maintain confidentiality and security. Key categories of service providers include:
Payment Processors: As mentioned, we use third-party payment gateways (like PayPal, Stripe) to process payments. These entities will receive billing information and payment details as necessary to process your transaction. They are responsible for ensuring the security of payment info. We share with them your order number, amount to charge, and maybe your email (to send receipts), and they return a confirmation or failure notice to us.
Hosting and Infrastructure: Our own website and billing portal may be hosted on third-party infrastructure or use cloud services (for example, we might use a cloud data center provider or a CDN to serve our site). These providers process data stored on their servers or transmitted through their networks. We ensure any hosting providers we use employ strong security measures.
Email and Communication Tools: We use third-party platforms to send operational emails, marketing newsletters, or support communications. For instance, if we use an email marketing service or a CRM, your name and email might reside there for the purpose of sending emails. Similarly, if we offer live chat support or a support ticket system provided by a third party, any info you submit will go through that system. These providers are only allowed to use your info per our instructions (e.g., to send the emails or manage support tickets).
Analytics and Advertising Partners: As described in Section 1.2 and 2.4, we use Google Analytics, Google Ads, Facebook (Meta) Pixel, TikTok Pixel, and possibly similar services. These third parties set cookies or integrate scripts on our site that enable them to collect information about your interactions with our site and combine it with information on their platforms. For example: Google Analytics may receive your IP and cookie ID; Facebook may receive a hashed identifier and info that you visited certain pages, allowing them to match it to your Facebook profile if you have one. We ensure that where possible we use settings to minimize data (Google Analytics IP anonymization, for instance) and we do not send them information like your name or account details. These partners are independent controllers of the data they collect through their tools and use it according to their own privacy policies. We encourage you to review those policies (see Google’s and Facebook’s privacy notices).
Domain and SSL Registrars: If you register a domain or purchase an SSL certificate through us, we share the necessary information with the domain registrar or certificate authority to fulfill that request. This typically includes the registrant’s name, address, email, and phone (for domain registration, as required by ICANN) or the organization details for an SSL certificate. These providers will treat that data per ICANN rules or their policies, and some info (like domain WHOIS details) may become public unless privacy services are used.
Consultants and Professional Advisors: We may share limited personal data with attorneys, accountants, auditors, or insurers where necessary for legal, compliance, or accounting purposes. For example, our accountants might see transaction records that include customer names and amounts, when preparing financial statements. Our legal counsel might need to review certain communications or records if a legal issue arises.
Subcontractors: For certain projects (like custom development), we might work with vetted subcontractors or freelancers. They would have access to data only as required for the project (e.g., they might see a client’s website content to work on it) and are bound by confidentiality agreements.
In all such cases, we aim to share the minimum information necessary for the service provider to perform their function, and we require that they not use the information for any other purpose.
3.2 Business Transfers
If Verynet (or substantially all of its assets) were to undergo a business transaction such as a merger, acquisition by another company, reorganization, or sale of assets, personal information we have collected may be transferred to the acquiring or succeeding entity as part of the transaction. We would ensure that any such entity is bound by terms that are at least as protective of your privacy as those in this policy. You would be notified (for example, via a prominent notice on our website or email) of any change in ownership or uses of your personal information, as well as any choices you may have regarding your personal information (for instance, if the new entity planned to materially change the privacy practices, you might have the opportunity to opt out or delete your data).
3.3 Legal Obligations and Safety
We may disclose personal information when required to do so by law or in the good-faith belief that such action is necessary:
Compliance with Laws: We may disclose information to comply with applicable laws, regulations, legal processes, or enforceable governmental requests (such as subpoenas, court orders, or requests from law enforcement or regulatory authorities). If a law enforcement request is for content or user data, we will only release it if required by a valid legal process. We strive to notify users of requests for their data before disclosure, if allowed by law and practicable, so you can object or seek legal protection, except in cases where the request or circumstances clearly prohibit doing so (e.g., emergency or where notice would be counterproductive).
Enforcing Our Rights: We may disclose information to enforce or apply our Terms of Service or other agreements, including investigation of potential violations. For example, if necessary to resolve a dispute over fees or to address a violation of our Acceptable Use Policy (like illegal content on our servers), we might share relevant facts with attorneys or courts.
Protecting Rights and Safety: We may disclose information if we believe it’s necessary to protect the rights, property, or safety of Verynet, our customers, our employees, or others. For instance, we might share information with law enforcement if we believe someone is using our services for phishing, fraud, or to threaten someone’s safety. Or if a customer is engaged in abusive behavior towards our staff, we might use and share information as appropriate to mitigate that.
Fraud Prevention: In cases of attempted fraud or security incidents, we may share details with appropriate third parties. For example, if a payment is disputed as fraudulent, we might share transaction and user info with the payment processor or investigative bodies to resolve it. If IP addresses are attacking our systems, we might share those with cybersecurity networks or blocklists.
3.4 Aggregate or De-Identified Information
We may share information that has been aggregated, anonymized, or de-identified, such that it cannot reasonably be used to identify you. For example, we might publish trends or usage statistics (like “X% of our customers use WordPress” or “We received Y visitors last month from Europe”) that do not contain any personal data. Or we may share a hashed or coded customer identifier with a partner in a way that they cannot reverse to identify you (unless you separately gave them that info). Such information is not considered personal under many privacy laws, and we may use it for business purposes like market analysis, improving services, advertising (e.g., showing off customer counts), or investor relations.
3.5 With Your Consent or At Your Direction
In addition to the scenarios above, we will share your personal information with third parties if and when you expressly consent or direct us to do so. For instance:
If you request that we integrate or transfer your data to a third-party service (for example, if you ask us to migrate your website from Verynet to another host, we will send your data to that host per your request).
If you utilize a feature on our site that requires sharing data (for example, if in the future we have social media sharing or you use a third-party login).
In any situation where you have been notified that personal information will be shared in a particular way and you provide it (for example, if we run a joint promotion with a partner and tell you that signing up will share your info with that partner, and you choose to sign up).
We will make it clear at the point of collection if any information will be shared publicly or with third parties in a way not already covered by this Policy.
3.6 Retention by Third Parties
Any third parties with whom we share personal information as described above are generally contractually or legally bound to protect that information and use it only for the purposes for which it was disclosed. However, keep in mind that third parties like Google or Facebook that collect data via cookies on our site are operating under their own privacy policies. Once data is shared with a third party as per this Policy, it becomes subject to that third party’s practices. We do our due diligence to choose reputable partners and services.
If you have questions about specific third parties that might have access to your data through Verynet, feel free to contact us (see Section 7.7).
- Cookies and Tracking Technologies
Cookies are small text files that websites place on your device as you browse. We and our partners use cookies and similar technologies (like pixel tags, scripts, and local storage) to provide our services and gather information. This section explains our use of these technologies:
4.1 Types of Cookies We Use
Necessary Cookies: These are essential for the operation of our website and services. For example, authentication cookies keep you logged in as you navigate our client portal, and session cookies remember selections or preferences as you use the site. Without these cookies, some parts of our site (like the account login or shopping cart) wouldn’t work properly.
Preferences Cookies: These cookies allow our site to remember choices you make (like your language or region, or whether you dismissed a particular banner) to provide a more personalized experience.
Analytics Cookies: We use cookies from Google Analytics and similar providers to collect information about site usage and performance. They help us understand how visitors interact with our website (e.g., which pages are visited, how long users stay, what links they click). All this data is aggregated and helps us improve our site’s structure and content. Google Analytics cookies may track things like your IP (with anonymization), browser, and referring site. We have enabled Google Analytics 4 with IP masking to reduce identifiability of users. Google’s ability to use and share information collected by Google Analytics about your visits is restricted by their Terms of Service and Privacy Policy.
Advertising Cookies: These cookies are set by advertising platforms (like Google, Facebook, TikTok) to deliver ads, measure their performance, and enable features like retargeting. For example, the Google Ads cookie (often a DoubleClick cookie) helps show you relevant ads on Google’s network based on your visit to our site. Facebook and TikTok pixels set cookies that help us reach you on those platforms and measure ad results. Advertising cookies may log information such as the pages you viewed, whether you completed certain actions (like filling a form), and an identifier to recognize your browser/device.
Third-Party Cookies: Besides the cookies we set (first-party cookies), third-party services may set their own cookies through our site. For example, if we embed a YouTube video or a social media widget, those services might set cookies. We currently do not heavily use such third-party content embeds, but if we do, those third parties have their own cookie policies.
4.2 How We Use These Technologies
To enable core functionality: As mentioned, things like logging in, storing session data, etc., rely on cookies.
To analyze and improve: Using analytics cookies and similar technologies, we gather data on usage which helps troubleshoot problems and optimize user experience (for instance, identifying which FAQs are most used to better tailor our support).
For advertising and marketing: Cookies and pixels allow us to show ads to interested audiences and avoid showing irrelevant ads. They also let us cap how many times you see an ad and measure if an ad led to, say, a site visit or purchase. For example, if you visited our pricing page, our ad partners might later show you an ad for a promotion on that service.
For security: We may use cookies or similar to detect malicious activity. For instance, a cookie might help differentiate legitimate users from bots, or we might use a cookie to throttle request rates.
4.3 Your Choices for Cookies
When you first visit our site, you will see a cookie notice or banner (if required by applicable law, e.g., if you’re in the EU) informing you about our use of cookies and giving you options. You can manage your cookie preferences through that interface. You can also typically disable or delete cookies through your browser settings:
Most web browsers allow control of cookies through settings (you can usually find options under “Privacy” or “Security”). You can set the browser to block or alert you about cookies, or to delete cookies when you close it. However, if you disable all cookies, some features of our site may not function (like keeping you logged in).
To specifically opt out of Google Analytics, you can install the Google Analytics Opt-out Browser Add-on.
For interest-based advertising cookies from third parties, you can visit industry opt-out sites: NAI’s opt-out page or DAA’s opt-out page (for choices on web-based advertising). For European users, YourOnlineChoices.eu provides an opt-out mechanism as well.
For mobile devices, you can typically limit ad tracking via the device settings (e.g., “Limit Ad Tracking” on iOS or “Opt out of Ads Personalization” on Android).
Specific to Meta (Facebook) and TikTok: You can adjust your ad preferences on those platforms by going to your account settings (e.g., Facebook’s ad preferences allows opting out of seeing ads based on partner data). Facebook also honors the DAA’s WebChoices opt-outs and offers a site here where you can manage off-Facebook data usage.
Please note that even if you opt out of targeted advertising, you may still see non-personalized ads from us (for instance, ads based on context, like an ad on a tech website that isn’t tailored to you specifically).
4.4 Do Not Track Signals
“Do Not Track” (DNT) is a setting in some browsers that requests that a web application disable its tracking of an individual user. There is currently no consensus on how to interpret DNT signals, and our systems do not respond differently to a browser with a DNT signal. Instead, we offer the cookie and opt-out choices described above to all users. As standards evolve, we will reevaluate how to respond to DNT. Users can exercise control through other means as described (cookie settings, industry opt-outs, etc.).
For further details on cookies, you can review our Cookie Policy (if available on our site) or contact us with any questions.
- Data Retention and Security
5.1 Data Retention
We retain personal information for as long as necessary to fulfill the purposes for which it was collected, as outlined in this policy, unless a longer retention period is required or permitted by law. In general:
Account Information: If you have an account with us, we keep your account data while your account is active and for a reasonable period thereafter in case you decide to re-activate services. If you delete your account or it is terminated, we will remove or anonymize personal information associated with your account within a certain timeframe (typically within 60-90 days), except for data we need to retain for legitimate business or legal purposes.
Service Usage Data: Logs and backups from servers (which might include IP addresses, etc.) are usually retained for a short period (often 30-90 days) for troubleshooting and recovery purposes, then overwritten or deleted. Some security-related logs may be kept longer if they are part of security audits.
Project Files: For development projects or support tickets, we may retain files and communications for a period in case you need them. For example, if we built a website for you, we might keep a copy of the site deliverables for a year or two for backup, unless you ask us to delete them earlier. Support tickets are often retained so we have history if you have future issues.
Financial Records: We retain billing records, invoices, and payment history for at least the duration required by tax and accounting laws (commonly 7 years in the U.S.). This is to comply with legal obligations and for our financial auditing.
Marketing Data: If you have consented to receive marketing emails, we retain your contact info for that purpose until you unsubscribe or ask us to delete it. If you opt out, we may keep your email on a suppression list to ensure we respect your opt-out.
Analytics Data: Our Google Analytics data is typically retained for 26 months (which is a common default), after which it’s deleted or aggregated. We use aggregated analytics indefinitely to inform trends.
Legal Holds: If we are subject to a legal obligation to preserve data (such as a court order, subpoena, or if data is needed for litigation), we will retain the data as required. We also might retain data if needed to enforce our agreements or for resolving disputes.
When we no longer have a legitimate need or legal obligation to keep your personal information, we will securely delete it or anonymize it. For example, if a prospective customer never ends up using our services, we might delete their inquiry data after some time. Or if you requested a quote but didn’t sign up, we might purge those details after a year.
5.2 Data Security Measures
We implement a variety of security measures to protect your personal information:
Encryption: Our websites and portals enforce HTTPS for all communications, encrypting data in transit between your browser and our servers. For sensitive actions (like entering login credentials or payment information via our processors), TLS encryption is used. We encourage you to look for the lock icon in your browser.
Access Controls: Personal data is accessible only to those within our organization (or contractors) who have a need to know. Access to systems containing personal data (like the billing system, support system) is protected with strong authentication (passwords and, where possible, multi-factor authentication). We limit the number of staff who can access highly sensitive data.
Storage Security: We store personal data on secure servers. Where we use third-party cloud providers, we rely on their robust physical security and we apply our own logical security (e.g., encryption at rest when supported, secure keys). Customer passwords are stored hashed using strong algorithms – we never store plaintext passwords.
Firewalls and Monitoring: Our servers are protected by firewalls, intrusion detection systems, and other monitoring tools to alert us of suspicious activities. We keep software up to date with security patches. We also employ brute-force mitigation for login areas (like rate-limiting login attempts).
Backups: We maintain backups to ensure resilience, but backups are also stored securely. Access to backup data is controlled. When backups are retired, we ensure data is deleted properly.
Training and Policies: We train our staff about the importance of data security and privacy. We have internal policies for handling customer data safely. For instance, support staff are trained not to ask for passwords via email and to verify identity before sharing account details.
Vendor Selection: For any third-party service providers (payment, etc.), we choose reputable firms with strong security practices and compliance certifications (like PCI DSS compliance for payment processors).
Incident Response: We have a process to handle any suspected data breaches or security incidents. If any personal data is compromised despite our efforts, we will notify affected individuals and authorities as required by law, and take steps to mitigate and prevent recurrence.
Despite all these measures, no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security. You also play a role in security: Keep your account credentials confidential and use a strong unique password. If you suspect any unauthorized access to your account or any security vulnerabilities, please contact us immediately.
5.3 International Data Transfers
We are a U.S.-based company. If you are accessing our services from outside the United States, be aware that your personal information will likely be transferred to and stored on servers in the United States. The U.S. may not have the same level of data protection as in your home country. However, we take steps to ensure appropriate safeguards when we transfer data internationally:
If you are in the European Economic Area (EEA), United Kingdom, or Switzerland, and we transfer your personal data to the U.S. or another country that doesn’t have an adequacy decision from your jurisdiction, we will rely on Standard Contractual Clauses (SCCs) or other appropriate legal mechanisms to ensure an adequate level of protection. We have incorporated the latest SCCs in our data processing agreements where applicable.
For other regions, we similarly ensure that transfers are lawful. By using our services or providing us with your information, where allowed by local law, you consent to the transfer of your data to the U.S. and any other country in which we or our service providers maintain facilities.
We continuously monitor changes in law (such as the EU’s GDPR requirements on data transfer) and will adjust our practices accordingly. If needed, we will implement additional supplementary measures for EU data, such as encryption or specific access controls, to protect it during and after transfer.
If you have questions about cross-border data handling, or need a copy of relevant transfer safeguards (like the SCCs), please contact us (see Section 7.7).
- Your Rights and Choices
Depending on your jurisdiction and the applicable data protection laws, you may have certain rights regarding your personal information. We are committed to providing you with access and control over your data. This section outlines those rights and how you can exercise them:
6.1 Access and Portability
You have the right to request access to the personal information we hold about you. This is sometimes called a “Data Subject Access Request.” Upon request, we will provide you with a copy of the personal data we have on file in a common format. For example, if you have an account, much of your basic info is accessible by logging in (profile details, billing history, etc.). For any additional data or to ensure a comprehensive export, you can contact us.
How to Request Access: Email us at privacy@verynet.co with the subject “Data Access Request.” Please include enough information to verify your identity (we may ask for confirmation details that only the account owner would know, or use our existing authentication if you’re logged in). Once verified, we will gather the data and provide it to you in a reasonable time (typically within 30 days, unless the request is complex).
Portability: If requested, and where feasible, we can provide the data in a structured, commonly used, machine-readable format (such as JSON or CSV). This can help if you want to port your data to another provider. Note that this mostly applies to data you provided. Derived data or internal notes may not be portable.
6.2 Rectification (Correction)
You have the right to correct or update any inaccurate or incomplete personal information we have about you. We encourage you to keep your information up to date:
If you have an online account, you can log in and update certain information directly (like your contact details, billing info).
If any information is not editable by you or if you need assistance, you can contact us with the specifics of what needs to be corrected. For example, if your name was misspelled in our records or your email has changed, let us know and we will update it.
We may need to verify the accuracy of the new data you provide, especially if it’s a critical identifier (like changing your legal name might require documentation).
We will respond to correction requests promptly. In some cases, we might refuse a request if we have legitimate grounds (for example, if we believe the new info is incorrect), but we will inform you and explain why.
6.3 Deletion (Right to be Forgotten)
You have the right to request deletion of your personal data. This is not absolute – there are exceptions – but we will honor it to the fullest extent required by law:
You can request that we delete your account and associated personal information. Email us at privacy@verynet.co with a clear request for deletion. We will verify your identity and then proceed to remove your data from active databases.
We will also instruct our service providers to delete your data from their records where applicable.
Exceptions: We may retain certain information if necessary for:
Completing a transaction or providing a service you requested (for example, if your account has an ongoing service, deletion might mean canceling that service).
Detecting and protecting against security incidents, fraudulent or illegal activity (we might retain information if needed to investigate misuse).
Compliance with legal obligations (as mentioned, we keep billing records for tax purposes; if you made purchases, we can’t erase those records prematurely).
Exercise or defense of legal claims.
Public interest or free expression rights (unlikely to apply for us, but generally, data published or content you may have posted).
If we must retain any data for the reasons above, we will isolate it from active use and ensure it’s only used for the permitted purpose.
Partial Deletion: If you don’t want a full account deletion but want certain data removed (like you uploaded something and want it removed), specify that and we will do so if possible.
Once we process deletion, your account will likely be closed. You may lose any stored data or settings. Ensure you have backups of anything you need before requesting account deletion.
We will confirm with you once deletion is completed. Keep in mind that residual copies might remain in backups for a short time, but will be overwritten per our retention policy.
6.4 Opt-Out of Marketing
Emails: If you no longer want to receive marketing or promotional emails from us, you can opt out at any time. Click the “unsubscribe” link in any of those emails and follow the instructions. Alternatively, you can contact us at contact@verynet.co and request to be removed from our marketing list. Please note that even if you opt out of marketing, we may still send you transactional or service-related emails (like billing notices, security alerts, etc.).
Targeted Ads: As discussed in Section 4.3, you can opt out of targeted online advertising by using tools provided by our advertising partners or through industry opt-out websites (NAI, DAA, etc.). If you opt out, you might still see our ads, but they will not be personalized using your data.
Do Not Sell/Share (for CCPA): If you are a California resident, you have the right to opt out of the “sale” or “sharing” of your personal information. As explained, we do not sell personal info for money, but our use of advertising cookies may be deemed a “sale”/“sharing” under California law. You can use the cookie preferences tool on our site to disable advertising cookies, which constitutes a “Do Not Sell/Share” request. Additionally, you can send us a request explicitly stating you want to opt out of sale/sharing of your info, and we will apply a flag to suppress any such activity for your data (for example, we can place your account on a list that ensures no data is passed to advertising partners from it).
Postal Mail or Calls: We don’t really do postal or telemarketing, but if we ever did and you wanted to opt out, you can let us know similarly and we will honor that.
6.5 California Privacy Rights (CCPA/CPRA)
If you are a California resident, in addition to the rights above (access, deletion, opt-out), you have:
Right to Know: You can request that we disclose to you the categories of personal info we’ve collected, the categories of sources, the business purpose for collecting or selling (if applicable), the categories of third parties we share it with, and specific pieces of personal info we have about you. Essentially, this is an expanded access request. We can provide this for the 12-month period preceding your request, as required by CCPA. We include much of this information in this Privacy Policy itself (see Section 1.4 and Section 3), but we will provide it individually on request.
Non-Discrimination: We will not discriminate against you for exercising any CCPA rights. That means, for instance, if you opt out of data sharing or request deletion, we won’t deny you services, charge you different prices, or provide different quality of service just because of that choice (aside from maybe the natural consequence that we can’t provide a service without your data). If any financial incentive is offered (like a discount in exchange for data), we’ll explain it and you can opt in by consenting to it; you can also opt out of such incentive at any time.
Shine the Light (CA Civil Code §1798.83): California’s “Shine the Light” law allows users to request information about our disclosures of certain categories of personal info to third parties for their direct marketing purposes. As we do not share personal info with third parties for their own direct marketing (without consent), this isn’t really applicable. But you can contact us for any clarifications.
Authorized Agent: You can authorize someone (like an attorney or a person registered with the CA Secretary of State) to make requests on your behalf. We will need proof that the agent has permission (like a signed permission) and may still ask you to verify your identity directly.
Limit Use of Sensitive Info: Under CPRA, California residents can ask businesses to limit the use of “sensitive personal information” to certain purposes (like providing the service). We generally do not collect sensitive info (as defined by law, such as Social Security Numbers, precise geolocation, etc.). If we ever did, we would use it only for necessary purposes, so effectively we already limit it. But if applicable, you can request further limitations and we will accommodate as required.
6.6 GDPR and Other International Rights
If you are in the EEA, UK, Switzerland, or other jurisdictions with similar laws:
You have the rights of Access, Rectification, Erasure, Restriction of processing, Objection to processing, and Data Portability.
Right to Object: You can object to processing of your personal data where we rely on legitimate interests, including any profiling based on those interests. If you object, we will cease processing unless we have compelling legitimate grounds or it’s needed for legal claims. Specifically, you can always object to your data being used for direct marketing (which we will honor immediately).
Right to Restrict: You can ask us to restrict processing of your data in certain circumstances (for example, if you contest its accuracy, or if the processing is unlawful but you don’t want it deleted, or if you need us to retain it beyond our normal period for a legal claim).
Right to Withdraw Consent: If we rely on consent for any processing, you can withdraw that consent at any time (withdrawal doesn’t affect legality of processing done before withdrawal).
Right to Complain: You have the right to lodge a complaint with your local data protection supervisory authority if you believe we have infringed your rights. We do ask that you kindly contact us first so we can address your concerns directly.
We will respond to your requests within the legal timeframe (30 days under GDPR, extendable by further 60 if needed with notice).
We may refuse or charge for requests that are manifestly unfounded or excessive, but we will justify our decision if so.
6.7 Verification of Requests
For any rights request, we need to ensure the person making the request is the person about whom the data pertains (or their authorized agent). We may ask for information to verify identity. For example:
If you have an account, we may ask you to send the request from the email associated with that account and confirm a recent transaction or detail.
If you don’t have an account or we suspect any risk, we might ask for additional identifying info. We will only use that info to verify identity and for security or fraud-prevention.
We won’t require you to create an account just to exercise your rights (though if you already have an account, verifying via login is convenient).
Any personal data collected in the verification process will be used only for that purpose.
We aim to be transparent and cooperative regarding your privacy rights. If you have any questions about your rights or how to use them, please reach out to us.
- Additional Information
7.1 Third-Party Websites and Services
Our website or services may contain links to third-party websites (for example, links to partner tools, social media pages, or articles) that we do not operate. If you click a third-party link, you will be directed to that third party’s site. Similarly, if you use any third-party services in connection with ours (like a third-party plugin on your hosted site, or a payment through PayPal’s site), you are interacting with the third party, not directly with Verynet.
This Privacy Policy does not apply to third-party websites or services. We are not responsible for the privacy practices of any third parties. We encourage you to review the privacy policies of every site or service you visit or use, especially before providing any personal information to them.
Examples:
If you leave our site via a hyperlink to, say, a blog post on another company’s site, any information you provide there is governed by their policy.
If we recommend a third-party service like a WordPress plugin, and you go use it, that plugin’s provider will have their own data practices.
Payment processing on PayPal or Stripe: While we collect some info to send to them, the actual processing is under their policies.
We do strive to only link to or integrate with reputable providers. For instance, our payment processors and analytics providers are well-known entities with clear privacy commitments. However, always exercise caution and read their policies.
Our websites and services uses third-party tools, services, libraries and plugins that may collect personal or usage data independently of Verynet LLC. These include, but are not limited to, services such as Google Analytics, Google Ads, Facebook Pixel, TikTok Pixel, and WordPress plugins such as Elementor, WP Rocket, and others.
While we make reasonable efforts to understand the data practices of the tools we use, we do not control how these third parties collect, store, or use data. Some third-party services may collect data without explicitly informing us or providing us access to the information collected.
As such, we cannot guarantee that we can identify or retrieve all data collected by third-party plugins or embedded services. If you submit a data access or deletion request, we will make a good-faith effort to respond to your request to the extent reasonably possible, but we may not be able to fulfill requests related to third-party systems beyond our control or visibility.
We recommend reviewing the privacy policies of any third-party tools or services you interact with while using our website.
7.1.1 Third-Party Tools and External Services:
Verynet LLC uses third-party tools, plugins, software libraries, frameworks (such as WordPress plugins, Python packages, React/MUI components), analytics scripts, and embedded services as part of our websites, platforms and services. These third-party technologies may independently collect, process, or store personal or usage data in accordance with their own privacy practices.
While we make reasonable efforts to review and select reputable third-party tools, we do not control the data collection or data use practices of these third parties. Therefore, we cannot guarantee that we will be aware of all data collected by such tools or be able to access, retrieve, correct, or delete that data on your behalf.
If you wish to exercise your data rights (such as access, correction, or deletion) related to data collected by a third-party integration or service, you may need to contact that provider directly. We will make a good-faith effort to assist where possible, but we cannot be held responsible for data collection, usage, or retention practices carried out by third parties outside of our operational control.
We recommend that you review the privacy policies of all third-party services, applications, and libraries used in conjunction with our platform to understand how your data may be collected and processed.
7.2 Children’s Privacy
Our services are not directed to children under the age of 13, and we do not knowingly collect personal information from children under 13. If you are under 13, please do not attempt to register for our services or send any personal information about yourself to us. If we learn that we have inadvertently collected personal data from a child under 13, we will take steps to delete such information as soon as possible.
For minors between 13 and 18 (or the relevant age of majority in your location), our services should only be used with the permission and involvement of a parent or guardian. We expect that minors will have appropriate consent before providing personal information or using our services.
If you are a parent or guardian and you believe we might have any information from or about a child under 13, please contact us immediately at privacy@verynet.co. We will promptly investigate and remove the information.
Note: In certain jurisdictions, the age threshold for consent might be higher (for example, 16 in parts of the EU for certain processing). We will adhere to those requirements. If we become aware that we have collected personal information from someone under the applicable age of consent without proper authorization, we will delete it.
7.3 Changes to this Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make changes, we will:
Post the updated policy on this page with a new “Last Updated” date.
If the changes are significant, we may also provide a more prominent notice, such as a banner on our website or an email notification. For example, if we were to start processing data for a new purpose not originally disclosed, or if users’ rights change due to law changes, we’d let you know directly.
We will not reduce your rights under this Privacy Policy without your consent. If anything, changes are likely to be clarifications or enhancements of privacy measures.
We encourage you to review this Policy periodically to stay informed about how we are protecting your information. Your continued use of our services after any update constitutes your acknowledgment of the changes and agreement to the updated policy to the extent permitted by law.
If you do not agree with any changes, you should stop using our services and can request that we delete your personal information as per Section 6.3.
7.4 Contacting Us
If you have any questions, concerns, or requests regarding this Privacy Policy or about how your personal information is handled, please feel free to contact us:
Email: privacy@verynet.co (or contact@verynet.co). This is often the best way; please include “Privacy” in the subject line so it can be routed properly.
Mail: Verynet LLC – Privacy Department (if you need a mailing address, please email us to obtain it, as we do not publish a physical address online due to no physical office presence).
Phone: If you prefer to discuss by phone, you can email us your number and a convenient time and we will call you, or you can find our business contact number on our website. (Note: Email is preferred for clear record-keeping of any privacy inquiries.)
Data Protection Officer (if applicable): While we are not required by law to appoint a DPO, we do have a designated privacy lead in our team. You can direct communications to “Attn: Privacy Lead” at our email or mailing contact.
We will respond to your inquiry as soon as possible, generally within a few business days. For formal data rights requests, we will confirm receipt and then respond within the legally required timeframe (usually within 30 days).
Thank you for trusting Verynet with your web services needs. We value your privacy and are dedicated to safeguarding your personal information while delivering quality services.