VroomITs legal

Privacy Statement

Effective date: June 19, 2026

HomePrivacyTerms

This Privacy Statement explains how VroomITs Inc. ("VroomITs," "we," "us," or "our") collects, uses, shares, and protects information when you use VroomITs websites, portals, software, downloads, support channels, account features, trials, previews, licensing services, and related services.

This statement is intended to describe our general privacy practices. Product-specific notices, marketplace terms, customer agreements, or in-product settings may provide additional details for particular VroomITs products or services.

1. Information We Collect

We may collect information you provide directly, information generated through your use of VroomITs services, and information received from connected providers or authorized administrators. This may include:

  • Account profile information such as name, email address, organization, role, company affiliation, billing contact, support contact, and communication preferences.
  • Identity information from accepted sign-in providers, including Microsoft Entra External ID and other social or enterprise identity providers. This may include issuer, subject identifier, tenant or organization context, verification status, and related sign-in metadata.
  • License, entitlement, activation, subscription, invoice, payment status, purchase, renewal, trial, refund, and support information.
  • Product telemetry, diagnostics, crash reports, performance data, feature usage, configuration state, activation events, and usage events, depending on product settings and your consent choices.
  • Technical information such as IP address, browser type, operating system, device identifiers, application version, portal session information, and security logs.
  • Information from connected services, such as identity providers, source-control providers, payment processors, communication providers, hosting services, cloud providers, or other integrations you authorize.
  • Support information, including tickets, logs, diagnostic bundles, screenshots, attachments, messages, and other materials you choose to send to us.

Some VroomITs products are administrative, diagnostic, security, compliance, reporting, source-control, accessibility, or infrastructure-assessment tools. Depending on the product and configuration, customer-provided data may include technical metadata, directory or policy metadata, configuration reports, file paths, repository metadata, application structure, accessibility findings, system inventory, or other information necessary to provide the product.

2. How We Use Information

We use information to:

  • Provide, operate, license, activate, secure, support, and improve VroomITs services.
  • Create and manage accounts, organizations, subscriptions, trials, licenses, entitlements, and customer portal access.
  • Authenticate users and map identities across accepted identity providers.
  • Process payments, invoices, renewals, refunds, taxes, marketplace transactions, and related account records.
  • Provide support, troubleshoot issues, investigate errors, and respond to customer requests.
  • Communicate about products, security notices, service updates, renewals, support matters, and administrative messages.
  • Monitor service health, detect abuse, prevent fraud, protect systems, and enforce agreements.
  • Improve product quality, reliability, usability, accessibility, performance, and security.
  • Develop new features and products.
  • Comply with legal, regulatory, accounting, tax, and contractual obligations.

We do not use customer content or customer diagnostic materials to train general-purpose artificial intelligence models unless we clearly disclose that use and obtain any required permission.

3. Identity Providers and Connected Services

VroomITs may authenticate users through Microsoft Entra External ID and other accepted social or enterprise identity providers. We may use stable identity claims such as issuer and subject identifier to map accounts. Email addresses may be used for communication and account-linking context, but they are not intended to be the sole permanent account key.

If you connect third-party services such as source-control providers, payment processors, identity providers, cloud services, communication tools, or marketplace platforms, those providers may process information under their own terms and privacy notices. You are responsible for reviewing and managing the permissions granted to connected services.

4. Telemetry and Diagnostics

Some VroomITs products offer telemetry and diagnostic controls. Where controls are available, you can choose the level of telemetry collected.

Telemetry and diagnostics may include product version, feature usage, activation status, error reports, crash reports, performance measurements, operating environment, and diagnostic events. Security, licensing, fraud-prevention, service-operation, and account-protection logs may still be collected where necessary to provide, protect, bill for, or operate the services.

If you send logs, reports, screenshots, bundles, exports, or other diagnostic files to VroomITs, you are responsible for reviewing them first and removing sensitive information that is not needed for support.

5. Customer Content and Administrative Data

You retain ownership of your content, configurations, reports, exports, repositories, files, and other materials you provide to VroomITs.

Some VroomITs tools may analyze customer environments, applications, repositories, accessibility results, identity data, directory or policy metadata, system configurations, or other administrative data. VroomITs uses that information only as needed to provide, secure, support, troubleshoot, and improve the applicable product or service, unless otherwise agreed.

Customers are responsible for ensuring they have the rights and authority to connect systems, scan environments, upload data, invite users, assign roles, and share diagnostic materials with VroomITs.

6. Sharing Information

We may share information with service providers that help us host, authenticate, secure, operate, bill, support, communicate, analyze, and improve VroomITs services. These may include cloud providers, identity providers, payment processors, email or messaging providers, analytics providers, support tools, marketplace platforms, and security providers.

We may also disclose information:

  • When required by law, subpoena, court order, or legal process.
  • To protect the rights, safety, security, or property of VroomITs, customers, users, or others.
  • To investigate fraud, abuse, security incidents, or violations of our agreements.
  • To enforce terms, licenses, entitlements, or marketplace requirements.
  • As part of a merger, acquisition, financing, reorganization, sale of assets, or similar business transaction.

We do not sell personal information in the ordinary meaning of selling a customer list to advertisers.

7. Payments and Marketplace Transactions

Purchases, payments, subscriptions, renewals, invoices, taxes, and refunds may be processed by payment providers, marketplace providers, or other transaction processors. VroomITs may receive transaction status, entitlement, billing, invoice, customer, and subscription information needed to provide the purchased product or service.

Payment providers and marketplace platforms may process payment and tax information under their own terms and privacy notices.

8. Retention

We keep information for as long as needed to provide services, maintain accounts, support customers, comply with legal, accounting, tax, and marketplace requirements, resolve disputes, enforce agreements, maintain security, and support legitimate business purposes.

Retention periods may vary depending on the type of information, product, customer relationship, legal requirements, security needs, and support obligations.

9. Security

We use reasonable administrative, technical, and organizational safeguards designed to protect information. These safeguards may include access controls, authentication controls, logging, monitoring, encryption where appropriate, secure development practices, and least-privilege operational practices.

No system is perfectly secure. You are responsible for maintaining the security of your devices, accounts, identity provider credentials, connected services, administrative permissions, and local backups.

10. Your Choices

You may be able to update account details, communication preferences, telemetry choices, connected identities, and organization settings in the VroomITs customer portal or within individual products.

You may contact us to request access, correction, deletion, export, restriction, or other privacy assistance where required by applicable law. We may need to verify your identity and authority before completing a request.

Some information may be retained when needed for legal, tax, accounting, billing, security, fraud-prevention, dispute-resolution, license-enforcement, or legitimate business purposes.

11. Cookies and Similar Technologies

VroomITs websites and portals may use cookies, local storage, session storage, or similar technologies to provide sign-in, security, preferences, analytics, session management, and service functionality. You can control cookies through your browser settings, but disabling cookies may affect portal or product functionality.

12. Children

VroomITs services are not directed to children under 13, and we do not knowingly collect personal information from children under 13.

13. International Processing

Information may be processed in the United States and other locations where VroomITs, its service providers, marketplace providers, or connected services operate. Data protection laws may differ from those in your location.

14. Changes to This Statement

We may update this Privacy Statement from time to time. The updated version will be posted with a new effective date. If changes are material, we may provide additional notice through the portal, product, email, or other reasonable means.