Privacy & Cookie Policy
Last updated: June 24, 2026
1. Who we are
XC_VM ("we", "our", "us") operates the marketplace at this website. This policy explains what data we collect, why, and how you can control it.
2. What data we collect
- Account data — name, email address, password (hashed) when you register.
- Usage data — pages visited, extensions viewed/downloaded, IP address, browser type.
- Payment data — orders and license records. Card details are handled by Stripe and never stored on our servers.
- Communications — support messages you send us.
3. Why we collect it
- Provide and secure your account.
- Process purchases and issue licenses.
- Send transactional emails (receipts, security alerts).
- Improve the platform (analytics).
4. Cookies & local storage
We use the following technologies to make the site work:
| Name | Purpose | Duration |
|---|---|---|
xc_vm_session |
Keeps you logged in (Laravel session) | Session / 2 hours idle |
XSRF-TOKEN |
Protects forms from cross-site request forgery | Session |
remember_web_* |
"Remember me" long-lived login token | 400 days |
cookie_consent (localStorage) |
Remembers that you dismissed this banner | Persistent (browser storage) |
We do not use third-party advertising cookies or track you across other sites. Stripe may set its own cookies during checkout — see Stripe's Privacy Policy.
5. Data sharing
We do not sell your personal data. We share it only with:
- Stripe — payment processing.
- Hosting / infrastructure providers — to run the service.
- Law enforcement — when legally required.
6. Your rights
You may request access, correction, or deletion of your personal data at any time by emailing us. Account deletion removes all personal data within 30 days.
7. Data retention
Account data is kept for as long as your account is active. Purchase records are kept for 7 years for legal/accounting purposes even after account deletion.
8. Security
Passwords are bcrypt-hashed. All traffic is encrypted via HTTPS/TLS. We apply standard security practices (CSRF protection, rate limiting, audit logging).
9. Contact
Questions or requests: support@xcvm.io