Privacy Policy
Effective Date: June 10, 2026 • Last Updated: June 10, 2026
Applies to: vaultjs.com (marketing website only)
1. Introduction and Scope
Vault JS, Inc. (“Vault JS,” “we,” “our,” or “us”) operates the website located at vaultjs.com (the “Site”). This Privacy Policy describes how we collect, use, disclose, and retain personal information from visitors to our marketing website.
This policy applies exclusively to data collected through vaultjs.com. It does not govern data processed through the Vault JS platform, customer accounts, or page-runner scan outputs, which are addressed separately in our platform terms and data processing agreements.
By visiting vaultjs.com, you acknowledge that you have read and understood this Privacy Policy.
2. Information We Collect
2.1 Information You Provide Directly
When you submit an inquiry form on our Site — including requests for a demo, a free site analysis, or a publication such as a whitepaper — we collect:
- First name and last name
- Business email address
- Phone number
- Company name
- Job title or position
- Company website URL
- Product tier or area of interest selected
- Any information you choose to include in the Comments field
We collect this information solely in response to a direct action you take — submitting a form. We do not collect this information passively from visitors who browse the Site without submitting a form.
2.2 Information Collected Automatically
When you visit vaultjs.com, certain information is collected automatically through the technologies described in Section 4. This includes:
- Internet Protocol (IP) address
- Browser type, version, and language settings
- Operating system and device type
- Pages visited and time spent on each page
- Referring URL (the page you visited before arriving at our Site)
- Date and time of visit
- Screen resolution
- Behavioral signals used for bot detection (via Google reCAPTCHA)
This information is collected by third-party services operating on our behalf and is used in aggregated or anonymized form to understand overall website usage patterns.
2.3 Information from Third-Party Services
Our third-party technology partners may independently collect information about your visit in accordance with their own privacy policies. We do not receive your raw personal data from these partners except in the aggregate or anonymized form described in Section 3.
3. How We Use Your Information
We use the information we collect for the following purposes:
- To respond to your inquiry, schedule a demo, or fulfill a publication request
- To contact you about Vault JS products, services, and relevant industry developments, where you have provided consent or where we have a legitimate business interest in doing so
- To analyze aggregate website traffic and improve the user experience on vaultjs.com
- To protect the security and integrity of our Site, including fraud and bot prevention via reCAPTCHA
- To comply with applicable legal obligations
We do not use your personal information for automated decision-making or profiling that produces legal or similarly significant effects on you.
4. Cookies and Tracking Technologies
4.1 What Cookies Are
Cookies are small text files stored on your device by your web browser when you visit a website. They allow websites to remember information about your visit, such as your preferences and session state. Similar technologies include tracking pixels (also called tags), which are small transparent images embedded in web pages that signal when a page has been loaded.
4.2 Categories of Cookies We Use
We use the following categories of cookies on vaultjs.com:
- Functionality Cookies — Essential to the basic operation of the Site. These cookies enable core features such as page navigation and access to secure areas. They cannot be disabled as the Site cannot function properly without them.
- Analytics Cookies — Used to understand how visitors interact with our Site in aggregate. We use Google Analytics for this purpose. These cookies collect information such as which pages are visited most frequently and how users navigate the Site. Data is used in anonymized, aggregate form solely to improve the Site experience.
- Advertising Cookies — Used to understand the effectiveness of our marketing campaigns. We use the LinkedIn Insight Tag, which enables us to measure conversions and understand the professional characteristics of our Site visitors in aggregate. This data is used for campaign optimization, not to serve personalized ads directly on our Site.
4.3 Managing Your Cookie Preferences
You may adjust your cookie preferences at any time using the Cookie Settings link in the footer of our Site. Non-essential cookies (Analytics and Advertising) are disabled by default for first-time visitors and are only activated upon your affirmative consent.
You may also configure cookie preferences through your browser settings. Please note that disabling all cookies may affect the functionality of vaultjs.com and other websites you visit.
4.4 Global Privacy Control (GPC)
Vault JS recognizes and honors the Global Privacy Control (GPC) signal, a browser-level privacy preference mechanism with legal standing in California (CCPA/CPRA), Colorado, Connecticut, and other jurisdictions. If your browser transmits a GPC signal indicating that you do not wish your data to be sold or shared, we will treat that signal as a valid opt-out request and suppress non-essential data collection accordingly, without requiring any further action from you.
5. Third-Party Data Processors
The following third-party services operate on vaultjs.com and may collect or process personal data in connection with your visit. Each operates under its own privacy policy, which we encourage you to review.
Google Analytics
Website traffic analysis and usage pattern reporting. Data collected includes IP address, pages visited, session duration, and browser and device information. Data is processed by Google LLC. Privacy Policy
Google reCAPTCHA
Form bot-detection and spam prevention. reCAPTCHA analyzes behavioral signals including mouse movement, keystrokes, and browser fingerprint, along with IP address, to determine whether a form submission originates from a human or automated bot. Provided by Google LLC. Privacy Policy
LinkedIn Insight Tag
Conversion tracking and campaign analytics. The Insight Tag creates a browser cookie that collects metadata including IP address, timestamps, and page events to help us understand the effectiveness of our LinkedIn marketing campaigns. Privacy Policy | Opt-out
HubSpot
Customer relationship management (CRM). When you submit a form on our Site, your contact information is stored in HubSpot to facilitate follow-up communications. Provided by HubSpot, Inc. Privacy Policy
Vault JS Proprietary Lead Database
We maintain an internal, proprietary database to record and manage inquiries submitted through our Site. This database stores only information you have voluntarily provided via form submission. It is not shared with external third parties and is used exclusively for sales and customer relationship management.
Cloudflare
Content delivery network (CDN), DNS management, and cybersecurity services. Cloudflare operates as a reverse proxy, meaning all traffic to vaultjs.com passes through Cloudflare’s network. Cloudflare may collect IP addresses, HTTP request headers, and performance and security telemetry to provide DDoS protection and performance optimization. Privacy Policy
WordPress Hosting Provider
vaultjs.com is built on WordPress and hosted by a third-party provider. Standard server access logs maintained by our hosting provider may include IP addresses, request timestamps, and browser identifiers, used for security monitoring and technical troubleshooting.
Open-Source CDN Providers (unpkg.com, cdn.jsdelivr.net)
vaultjs.com loads certain open-source JavaScript libraries via public CDN services (unpkg.com and cdn.jsdelivr.net). These requests are part of the Site’s technical infrastructure and occur regardless of cookie consent state, as they deliver functional code rather than tracking. These CDNs may log standard request metadata such as IP address and browser type as part of normal server operations. Privacy Policy (unpkg) | Privacy Policy (jsDelivr)
6. How We Share Your Information
We do not sell your personal information to third parties.
We do not share your personal information with third parties for their own independent marketing purposes.
We share information only in the following limited circumstances:
- With service providers acting on our behalf (listed in Section 5) who are contractually required to protect your data and use it only for purposes we specify.
- When required by law, court order, or regulatory authority, or when we believe disclosure is necessary to protect the rights, property, or safety of Vault JS, our customers, or the public.
- In connection with a merger, acquisition, or sale of substantially all of our assets, in which case we will provide notice to affected users and ensure the acquiring party is bound by this policy or its equivalent.
7. Data Retention
We retain personal information only for as long as necessary to fulfill the purposes described in this policy, unless a longer retention period is required by applicable law.
- Contact and inquiry data (form submissions): Retained for up to 3 years from the date of submission, or until you request deletion, whichever comes first.
- Analytics data: Retained in Google Analytics for 26 months. Aggregated, anonymized reports may be retained indefinitely.
- LinkedIn Insight data: Retained per LinkedIn’s data retention policies, typically 180 days for precise event-level data.
- Cloudflare security logs: Retained per Cloudflare’s standard policies, typically up to 30 days for raw log data.
- Server access logs: Retained for up to 90 days for security monitoring purposes.
When retention periods expire, personal data is securely deleted or irreversibly anonymized.
8. Your Privacy Rights
8.1 California Residents (CCPA / CPRA)
If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA):
- Right to Know: You may request disclosure of the categories and specific pieces of personal information we have collected about you, the categories of sources, our business purpose for collection, and the categories of third parties with whom we share it.
- Right to Delete: You may request deletion of the personal information we have collected from you, subject to certain legal exceptions.
- Right to Correct: You may request correction of inaccurate personal information we hold about you.
- Right to Opt Out of Sale or Sharing: We do not sell your personal information. To the extent that sharing data with advertising partners such as LinkedIn constitutes “sharing” under CPRA, you may opt out via our Cookie Settings or by activating a Global Privacy Control signal in your browser.
- Right to Limit Use of Sensitive Personal Information: We do not collect sensitive personal information as defined under CPRA.
- Right to Non-Discrimination: We will not discriminate against you for exercising any CCPA rights.
To exercise your rights, contact us at info@vaultjs.com. We will respond within 45 days. We may need to verify your identity before processing your request.
8.2 EU and UK Residents (GDPR / UK GDPR)
If you are located in the European Union or United Kingdom, you have rights under the General Data Protection Regulation (GDPR) or UK GDPR, including:
- Right of Access: You may request a copy of the personal data we hold about you.
- Right to Rectification: You may request correction of inaccurate or incomplete personal data.
- Right to Erasure: You may request deletion of your personal data where there is no compelling reason for us to continue processing it.
- Right to Restriction of Processing: You may request that we restrict how we process your data in certain circumstances.
- Right to Data Portability: You may request your personal data in a structured, machine-readable format.
- Right to Object: You may object to processing based on legitimate interests or for direct marketing purposes.
- Right to Withdraw Consent: Where processing is based on your consent, you may withdraw that consent at any time without affecting the lawfulness of prior processing.
Our legal bases for processing personal data from EU and UK residents are: (a) your consent, provided via the form consent mechanism for marketing communications; (b) legitimate interests, for fraud prevention and Site security; and (c) legal obligation, where required by applicable law.
To exercise your rights or lodge a complaint, contact us at info@vaultjs.com. You also have the right to lodge a complaint with your local supervisory authority — for example, the ICO in the UK, or your national data protection authority within the EU.
8.3 Other U.S. State Privacy Rights
Residents of Colorado, Connecticut, Virginia, Texas, and other states with enacted privacy legislation have similar rights to access, delete, correct, and opt out of processing of their personal data. We honor these rights for verified requests regardless of state of residence. Contact us at info@vaultjs.com.
9. Do Not Sell or Share My Personal Information
Vault JS does not sell your personal information for monetary consideration.
To the extent that sharing data with advertising technology partners such as LinkedIn Insight may constitute “sharing” for cross-context behavioral advertising under the CPRA, you may opt out at any time by:
- Using our Cookie Settings tool in the Site footer to disable Advertising cookies.
- Enabling the Global Privacy Control (GPC) signal in a supported browser — we will automatically honor this as an opt-out without requiring any further action.
- Contacting us directly at info@vaultjs.com.
10. Children’s Privacy
vaultjs.com is not directed at children under the age of 13, and we do not knowingly collect personal information from children. Vault JS is an enterprise B2B platform; our Site content and forms are intended exclusively for business professionals.
If we become aware that we have inadvertently collected personal information from a child under 13, we will delete that information promptly. If you believe we may have collected such information, please contact us at info@vaultjs.com.
11. Data Security
We implement reasonable and appropriate technical and organizational security measures to protect the personal information we collect against unauthorized access, disclosure, alteration, or destruction. These measures include encrypted data transmission (HTTPS/TLS), access controls, and the use of reputable third-party processors with established security certifications.
No method of transmission over the internet or electronic storage is completely secure. While we are committed to protecting your personal information, we cannot guarantee its absolute security.
12. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will update the “Last Updated” date at the top of this document.
We encourage you to review this policy periodically. Your continued use of vaultjs.com following the posting of changes constitutes your acceptance of the updated policy.
13. Contact Us
For any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact:
Vault JS, Inc.
Email: info@vaultjs.com
Website: www.vaultjs.com
Phone: 650.485.3413
We are committed to resolving all privacy inquiries promptly and in good faith.