Privacy Policy

Last updated: 21s Jan 2026

This Privacy Policy explains how VSoft Technologies Pty Ltd (ABN: 82 078 466 092) ("we", "us", or "our"), based in the Australian Capital Territory, Australia, collects, uses, discloses, and protects personal information when you interact with:

Our websites, including https://www.finalbuilder.com;
Our software products (including trials, beta versions, licensed products, and subscriptions);
Our online services, support channels, sales, and reseller relationships.

This Privacy Policy replaces all previous versions and applies globally to all users of our Services.

1. Scope and Application

This Privacy Policy applies to individuals whose personal information we collect or process in connection with our business, including:

Website visitors and users;
Customers and prospective customers;
Trial users and software evaluators;
Licensed users and subscribers;
Reseller and partner contacts;
Support and service contacts;
Newsletter subscribers and marketing recipients.

Important: This policy does not apply to employee or contractor data, which is governed by separate internal policies.

2. Personal Information We Collect

We collect personal information in the following ways:

2.1 Information You Provide Directly

You may provide personal information when you:

Create an account, register a product, or activate a license;
Request a trial, download software, or access documentation;
Purchase products or services;
Contact us for support, sales inquiries, or technical assistance;
Subscribe to newsletters or marketing communications;
Participate in surveys, beta programs, user research, or promotions;
Submit feedback, testimonials, or reviews;
Attend our events or webinars.

This information may include:

Contact information: Name, email address, phone number, postal address, and company name;
Account information: Username, password (encrypted), account preferences, and profile details;
Commercial information: Purchase history, license keys, subscription details, and payment information (processed securely by third-party payment providers);
Professional information: Job title, company size, industry, and use case information;
Communications: Content of support requests, sales inquiries, chat transcripts, and email correspondence;
Technical support data: System configurations, error logs, screenshots, and diagnostic information you provide.

2.2 Information Collected Automatically

When you visit our websites or use our software, we may automatically collect:

Device information: IP address, browser type and version, operating system, device type, screen resolution, and unique device identifiers;
Usage information: Pages viewed, features accessed, downloads, clicks, time spent, referring URLs, and session duration (collected through privacy-friendly analytics that do not track users across sites);
Location data: General geographic location derived from IP address (country and city level);
Diagnostic and telemetry data: Application performance metrics, error reports, crash logs, and feature usage statistics (only when telemetry is enabled in software settings);
Cookie and tracking data: Information collected through cookies and similar technologies (see Section 3).

2.3 Information from Third Parties

We may receive information about you from:

Payment processors: Transaction confirmation and payment status;
Resellers and partners: Contact information when you purchase through authorized channels;
Marketing platforms: Engagement metrics when you interact with our campaigns;
Public sources: Publicly available business information to verify company details or prevent fraud.

3. Cookies and Tracking Technologies

We use cookies, web beacons, pixels, local storage, and similar technologies on our websites and in our software.

3.1 What We Use Cookies For

Operate and secure our websites;
Remember your preferences and settings;
Analyze usage and improve performance;
Measure marketing effectiveness;
Provide enhanced functionality.

You can control cookies through:

Our cookie consent manager (available on first visit and in the website footer);
Your browser settings;
Cookie opt-out tools provided by third parties.

For comprehensive information about the specific cookies we use, how long they last, and how to manage them, please see our separate Cookie Policy.

4. How We Use Personal Information

We use personal information for the following purposes:

4.1 Service Delivery and Operations

Provide, operate, and maintain our software products and online services;
Process and fulfill orders, licenses, and subscriptions;
Activate licenses and manage access controls;
Deliver software updates, patches, and security fixes;
Process payments and maintain billing records (through third-party processors);
Provide technical support and customer service;
Respond to inquiries, requests, and feedback.

4.2 Communications

Send transactional emails (order confirmations, license keys, password resets);
Deliver administrative notices (service changes, policy updates, security alerts);
Send marketing communications about products, features, and promotions (with appropriate consent);
Invite you to participate in surveys, beta programs, or user research.

4.3 Product Improvement and Development

Analyze usage patterns and feature adoption;
Conduct product analytics and performance monitoring;
Identify and diagnose technical issues;
Develop new features and improve existing functionality;
Conduct user research and gather feedback.

4.4 Business Operations

Conduct business planning and analytics;
Perform financial reporting and accounting;
Manage vendor and partner relationships;
Verify compliance with license terms;
Detect and prevent fraud, abuse, and security threats.

4.5 Legal Compliance

Comply with applicable laws, regulations, and legal obligations;
Respond to lawful requests from authorities;
Protect our legal rights and interests;
Enforce our terms of service and license agreements;
Prevent illegal activities and policy violations.

5. Legal Bases for Processing

Depending on your jurisdiction, we rely on the following legal bases for processing personal information:

Contractual necessity: To perform our contract with you (e.g., provide software and services you purchased);
Legitimate interests: To improve our products, prevent fraud, ensure security, and operate our business efficiently;
Legal compliance: To comply with legal obligations such as tax and accounting requirements;
Consent: Where we have obtained your explicit consent (e.g., marketing communications), which you may withdraw at any time.

5.2 Australia (Privacy Act 1988)

We comply with the Australian Privacy Principles (APPs), processing personal information only where:

You have consented to the collection;
Collection is required or authorized by law;
Collection is reasonably necessary for our functions or activities;
Collection is related to a permitted general situation or permitted health situation.

5.3 Other Jurisdictions

We process personal information in accordance with applicable local data protection laws and only where we have a valid legal basis to do so.

We do not sell personal information to third parties.

We may disclose personal information to the following categories of recipients:

6.1 Service Providers and Processors

We engage third-party service providers who process personal information on our behalf, including:

Hosting and infrastructure providers: Cloud hosting, content delivery networks (CDN), and server management;
Payment processors: Secure payment processing and fraud prevention;
Email and communication platforms: Email delivery, newsletter management, and customer communications;
Analytics providers: Self-hosted Plausible Analytics for privacy-friendly website usage tracking;
Support platforms: Customer service, helpdesk, and ticketing systems;
Marketing tools: Campaign management, CRM, and marketing automation.

All service providers are contractually required to protect your information and use it only for specified purposes.

6.2 Resellers and Business Partners

Authorized resellers who fulfill and support your orders;
Technology partners for product integrations and compatibility;
Professional advisers (legal counsel, accountants, auditors) when necessary.

6.3 Legal and Regulatory Authorities

We may disclose information when required by law or to:

Comply with legal processes (court orders, subpoenas, warrants);
Respond to lawful government requests;
Protect our rights, property, or safety;
Prevent fraud, security threats, or illegal activity;
Enforce our terms and agreements.

6.4 Corporate Transactions

In the event of a merger, acquisition, reorganization, or sale of assets, personal information may be transferred to the successor entity, subject to the same privacy protections.

7. International Data Transfers

VSoft Technologies is based in Australia, and your personal information may be processed, stored, or transferred to countries outside your jurisdiction, including:

Australia: Our primary operations and data storage;
United States: Cloud hosting and service provider infrastructure;
European Union: Data center locations and service providers;
Other countries: Where our service providers operate.

7.1 Safeguards for International Transfers

When transferring personal information internationally, we ensure appropriate safeguards are in place:

For EEA/UK transfers: We use Standard Contractual Clauses (SCCs) approved by the European Commission, adequacy decisions, or other approved mechanisms;
For Australian transfers: We comply with APP 8.1, ensuring recipients are subject to substantially similar privacy protections;
Contractual protections: Binding agreements with service providers requiring data protection standards equivalent to this policy.

You may request information about the safeguards we use for international transfers by contacting us.

8. Data Retention

We retain personal information only for as long as necessary to fulfill the purposes outlined in this policy or as required by law.

8.1 Retention Periods

Data Type	Retention Period	Reason
Account information	Duration of relationship + 3 years	Service provision and legal obligations
Transaction records	7 years after transaction	Tax, accounting, and audit requirements
Support communications	3 years after case closure	Customer service and quality assurance
Marketing data	Until opt-out + 30 days	Marketing compliance and preference management
Website analytics	26 months	Usage analysis and improvement
Security logs	90 days to 1 year	Security monitoring and incident response

8.2 Deletion and Anonymization

When retention is no longer necessary, we will:

Securely delete personal information using industry-standard methods;
Anonymize data for statistical or analytical purposes where identification is no longer possible;
Return or destroy data as required by contract or law.

You may request deletion of your personal information subject to our legal retention obligations (see Section 10).

9. Data Security

We implement comprehensive technical and organizational security measures to protect personal information against unauthorized access, loss, misuse, alteration, or disclosure.

9.1 Security Measures

Encryption: Data in transit is protected using TLS/SSL encryption; sensitive data at rest is encrypted;
Access controls: Role-based access restrictions, multi-factor authentication, and principle of least privilege;
Network security: Firewalls, intrusion detection systems, and regular security monitoring;
Secure development: Security testing, code reviews, and vulnerability assessments;
Employee training: Regular privacy and security training for staff with data access;
Vendor management: Security requirements for third-party service providers;
Incident response: Documented procedures for detecting, responding to, and recovering from security incidents.

9.2 Data Breach Notification

In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will:

Notify affected individuals without undue delay (within 72 hours where required by GDPR);
Report the breach to relevant supervisory authorities as required by law;
Provide information about the nature of the breach, likely consequences, and measures taken;
Take appropriate remedial actions to mitigate harm.

9.3 Limitations

While we implement strong security measures, no system is entirely secure. We cannot guarantee absolute security of information transmitted over the internet or stored in our systems. You are responsible for maintaining the confidentiality of your account credentials.

10. Your Privacy Rights

Depending on your location, you may have specific rights regarding your personal information.

10.1 General Rights

You may have the right to:

Access: Request a copy of the personal information we hold about you;
Correction: Request correction of inaccurate or incomplete information;
Deletion: Request deletion of your personal information (subject to legal retention requirements);
Restriction: Request restriction of processing in certain circumstances;
Objection: Object to processing based on legitimate interests;
Data portability: Receive your data in a structured, machine-readable format;
Withdraw consent: Withdraw consent where processing is based on consent (without affecting prior lawful processing).

If you are located in the EEA, UK, or Switzerland, you have additional rights:

Right to lodge a complaint with a supervisory authority (see Section 10.5);
Right to object to direct marketing at any time;
Right not to be subject to automated decision-making, including profiling (where applicable);
Right to receive information about safeguards for international transfers.

10.3 California Residents (CCPA/CPRA)

If you are a California resident, you have the right to:

Know what personal information we collect, use, disclose, and sell;
Request deletion of your personal information (subject to exceptions);
Opt-out of the sale or sharing of personal information (we do not sell personal information);
Correct inaccurate personal information;
Limit use of sensitive personal information;
Non-discrimination for exercising your privacy rights.

Shine the Light: California residents may request information about third-party disclosures for direct marketing purposes (we do not share for this purpose).

10.4 Australian Residents (Privacy Act)

If you are located in Australia, you have rights under the Australian Privacy Principles:

Access your personal information and request corrections;
Make a complaint to us or the Office of the Australian Information Commissioner (OAIC);
Request information about overseas disclosures.

10.5 How to Exercise Your Rights

To exercise any of these rights:

Email us at the contact information in Section 16;
Provide verification: Include sufficient information to verify your identity;
Specify your request: Clearly state which right(s) you wish to exercise.

We will respond to verified requests within the timeframe required by applicable law (typically 30 days, extendable by 30 days with notice).

Supervisory Authorities:

EEA/UK: Contact your local data protection authority
Australia: Office of the Australian Information Commissioner (OAIC) - www.oaic.gov.au
California: California Attorney General's Office - oag.ca.gov

11. Marketing Communications and Preferences

11.1 Marketing Opt-In and Opt-Out

We may send marketing communications where:

You have opted in to receive them;
We have a legitimate interest and you have not opted out (where permitted by law);
We are permitted by applicable law to contact you.

You can opt-out at any time by:

Clicking the "unsubscribe" link in any marketing email;
Updating your email preferences in your account settings;
Contacting us directly at the information in Section 16.

11.2 Transactional Communications

Please note that you cannot opt-out of essential transactional communications (order confirmations, license notifications, security alerts, account notices) as these are necessary to provide our services.

12. Automated Decision-Making and Profiling

We do not engage in automated decision-making or profiling that produces legal or similarly significant effects. Any automated processing we conduct (such as fraud detection or usage analytics) involves human review before any significant decisions are made.

13. Children's Privacy

Our Services are not directed to, and we do not knowingly collect personal information from, children under the age of 13 (or the applicable age of digital consent in your jurisdiction, such as 16 in some European countries).

If we learn that we have collected personal information from a child without proper parental consent, we will delete that information promptly. If you believe a child has provided us with personal information, please contact us immediately.

14. Third-Party Websites and Services

Our websites and software may contain links to third-party websites, plugins, or services not operated by us. We are not responsible for the privacy practices of these third parties.

We encourage you to review the privacy policies of any third-party sites or services before providing them with personal information.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect:

Changes in our practices or services;
Changes in applicable laws or regulations;
Technical or organizational developments.

15.1 Notice of Changes

We will:

Post the updated policy on this page with a revised "Last updated" date;
Provide notice of material changes through email or prominent website notice where required;
Obtain consent for material changes where required by law.

Your continued use of our Services after changes take effect constitutes acceptance of the updated policy.

We encourage you to review this policy periodically to stay informed about how we protect your information.

16. Contact Us

16.1 Privacy Questions and Requests

If you have questions about this Privacy Policy, wish to exercise your privacy rights, or want to make a complaint:

VSoft Technologies Pty Ltd
Privacy Officer
Email: [INSERT PRIVACY EMAIL]
Website: https://www.finalbuilder.com
Postal Address: [INSERT POSTAL ADDRESS]

For GDPR-related inquiries from EEA, UK, or Swiss residents:

Email: [INSERT DPO EMAIL if applicable]

16.3 Response Times

We aim to respond to all privacy inquiries within:

30 days for general inquiries;
30 days (extendable to 60 days) for rights requests under GDPR;
45 days (extendable to 90 days) for CCPA/CPRA requests;
30 days for Australian Privacy Act requests.

For additional information about our data practices, please review:

Cookie Policy - Detailed information about cookies and tracking technologies
Terms of Service - Terms governing use of our services
License Agreement - Software licensing terms

Document Version: 2.0
Effective Date: 21st Jan 2026

This Privacy Policy is provided in English. Translations may be provided for convenience, but the English version governs in case of conflicts.