Vega
Privacy Policy
Effective Date: May 11, 2026
Last Updated: May 11, 2026
Welcome to Vega ("Vega," "we," "our," or "us"). Vega is a live-streaming social platform that enables users to broadcast, discover, and interact with live content across music, gaming, lifestyle, talent, and more. We are committed to protecting the privacy of everyone who uses our services, and this Privacy Policy ("Policy") explains in full detail how we collect, use, process, store, share, and protect your personal information when you access or use the Vega mobile application, website, and any related services (collectively, the "Services").
This Policy applies to all users of Vega worldwide, and complies with applicable global data protection frameworks including, but not limited to, the General Data Protection Regulation ("GDPR"), the California Consumer Privacy Act ("CCPA") as amended by the California Privacy Rights Act ("CPRA"), the Children's Online Privacy Protection Act ("COPPA"), and other applicable national and regional laws. By creating an account or otherwise using our Services, you acknowledge that you have read, understood, and agreed to the terms of this Policy.
Vega is intended exclusively for users who are 18 years of age or older. If you do not meet this age requirement, you must not access or use our Services.
We collect various categories of information to provide, maintain, and improve the Vega experience. The information we collect depends on how you interact with our Services.
When you register for a Vega account, we collect personal identifiers that you provide directly, including your username or display name, email address or phone number, date of birth (for age verification), profile photograph or avatar, bio or personal description, and any other information you choose to include in your public profile. You may optionally link your Vega account to third-party social login providers (such as Apple, Google, or Facebook), in which case we receive certain profile information from those providers as permitted by their privacy policies.
We automatically collect technical information from the device you use to access Vega, including:
• Device identifiers: hardware model, operating system version, unique device ID, advertising ID (IDFA on iOS, GAID on Android), and similar device-level identifiers.
• Network information: IP address, Wi-Fi network name (SSID), mobile carrier, connection type (e.g., 4G, 5G, Wi-Fi), and approximate network-based location.
• App and system diagnostics: crash logs, performance metrics, battery level at time of use, available storage, and memory usage.
• Browser or app metadata: Vega app version, build number, SDK versions, and referral URLs if you access via a web browser.
We collect information about how you use our Services, including:
• Content you view, search terms you enter, live rooms you visit, and the duration of each session.
• Your interactions with other users: comments posted, emoji reactions sent, polls answered, virtual gifts given or received, accounts followed, and users blocked or reported.
• Stream-level data: when you start or end a live broadcast, the duration of your streams, average viewer count, and audience engagement metrics.
• Notification interactions: whether you open or dismiss push notifications, and which notification types prompted re-engagement.
With your permission, we may collect precise geolocation data from your device's GPS, Bluetooth, or Wi-Fi sensors to enable location-based content discovery, regional filtering, and compliance with local legal requirements. If you deny precise location permissions, we derive a coarse location from your IP address. You may disable location sharing at any time through your device settings, though certain location-dependent features may become unavailable.
When you purchase virtual currency ("Vega Coins"), virtual gifts, or any premium subscription, we collect transaction data including the purchase amount, currency, payment method type (e.g., credit card brand or mobile wallet), and transaction confirmation identifiers. Full payment card details are processed exclusively by our certified PCI-DSS compliant payment processors; we do not store full card numbers or CVV codes on our servers.
If you contact us through our support channels, submit feedback, or respond to surveys, we collect the content of your communications, your contact details, and any attachments you provide. We retain this information to resolve your inquiry, improve our support processes, and comply with legal record-keeping obligations.
We use the information we collect for a range of purposes necessary to deliver a safe, personalized, and reliable live-streaming experience.
• Creating and authenticating your account; enabling you to go live, view streams, and interact with other users.
• Powering our smart recommendation engine to surface live rooms, creators, and content categories most relevant to your demonstrated interests and viewing history.
• Displaying localized content, language preferences, and region-specific features based on your location.
• Detecting and preventing fraud, spam, abuse, harassment, hate speech, and other violations of our Community Guidelines or applicable law.
• Verifying user age to enforce our 18+ policy and protect minors from accessing the platform.
• Monitoring for prohibited content including non-consensual intimate imagery and Child Sexual Abuse Material (CSAM).
• Processing reports filed by users and taking enforcement actions (warnings, suspensions, or permanent bans) where warranted.
• Analyzing aggregate usage patterns to identify features that perform well and areas that need improvement.
• Conducting A/B testing and feature experiments on sub-sets of users to evaluate new functionality before broad release.
• Training and improving our content recommendation, search, and moderation algorithms, including machine learning models.
• Sending you service-related notifications such as account security alerts, transaction receipts, policy updates, and live-start alerts from creators you follow.
• With your consent, sending you promotional communications about new features, events, and offers. You may opt out of marketing messages at any time.
• Complying with applicable laws, regulations, court orders, and lawful requests from government authorities.
• Enforcing our Terms of Service, protecting our intellectual property rights, and defending against legal claims.
• Retaining records as required under financial, tax, and communications regulations in applicable jurisdictions.
For users in the European Economic Area (EEA), United Kingdom (UK), and Switzerland, we rely on the following legal bases under the GDPR and equivalent legislation:
• Contractual Necessity: Processing required to perform the contract we have with you, such as creating your account, enabling live broadcasting, and processing in-app purchases.
• Legitimate Interests: Processing that is necessary for our legitimate business interests, including fraud prevention, platform security, analytics, and service improvement, provided those interests are not overridden by your rights.
• Legal Obligation: Processing required to comply with applicable laws, such as financial record-keeping and responses to lawful law enforcement requests.
• Consent: Where we rely on your consent (e.g., for marketing communications or precise geolocation), you may withdraw consent at any time without affecting the lawfulness of prior processing.
For users in other regions, we process personal data in accordance with the applicable laws of your jurisdiction, including but not limited to CCPA/CPRA for California residents and the Personal Information Protection Law (PIPL) for users in China.
We do not sell your personal information to third parties. We may, however, share information in the following limited circumstances:
We share data with trusted third-party vendors and contractors who perform services on our behalf, including cloud hosting and infrastructure, payment processing, customer support tooling, analytics, push notification delivery, anti-fraud screening, and content moderation. These service providers are contractually obligated to process data only as instructed by us, to maintain appropriate security standards, and to refrain from using the data for any independent purpose.
Certain profile information and in-app activity is visible to other users by design. This includes your username, profile photo, public bio, number of followers, live stream content while broadcasting, comments you post in public live rooms, and virtual gift activity. You should treat information shared in public live rooms as publicly accessible. Do not share sensitive personal information during live broadcasts.
If Vega is involved in a merger, acquisition, asset sale, financing, bankruptcy, or reorganization, your information may be transferred as part of that transaction. We will provide notice before your information becomes subject to a materially different privacy policy.
We may disclose your information if we believe in good faith that disclosure is necessary to: (a) comply with a legal obligation, court order, or government request; (b) enforce our Terms of Service; (c) protect the safety, rights, or property of Vega, our users, or the public; or (d) detect, prevent, or address fraud, security incidents, or technical issues. Where permitted by law, we will notify affected users before disclosing their information to authorities.
We may share aggregated, de-identified, or anonymized data that cannot reasonably be used to identify you with partners, researchers, and the public for purposes such as industry reporting, academic research, and platform benchmarking. Such data is not subject to this Privacy Policy.
Vega is a live-streaming platform. Any content you create, broadcast, post, upload, or transmit through the Services ("UGC") -- including live video streams, recorded stream replays (if replay is enabled), text comments, profile images, and virtual gift animations -- is collected, transmitted, and stored on Vega's servers. You acknowledge that live broadcasts are inherently public and may be viewed by any user of the platform during or after the stream.
By submitting UGC to Vega, you grant Vega a worldwide, non-exclusive, royalty-free, sublicensable, and transferable license to use, host, store, reproduce, modify (for technical purposes such as formatting and compression), distribute, publicly perform, and display your UGC in connection with the operation and promotion of the Services. This license persists for as long as your content is available on the platform and is subject to your account remaining active.
We employ a combination of automated systems and human review teams to detect, review, and act upon UGC that violates our Community Guidelines or applicable law. Prohibited content includes but is not limited to: hate speech, harassment, self-harm promotion, graphic violence, nudity or sexually explicit material, and content that violates third-party intellectual property rights. Upon confirmation of a violation, we may remove the content, issue warnings, restrict account features, suspend the account, or permanently ban the user. Repeat or egregious violators may be reported to relevant authorities.
You represent and warrant that you own or have obtained all necessary rights, licenses, and consents to submit your UGC and to grant the license described above. We respond to valid intellectual property takedown notices in accordance with the Digital Millennium Copyright Act (DMCA) and equivalent international frameworks. If you believe your copyright has been infringed, you may submit a takedown request to vega.pet@service.
UGC you publish on Vega is retained as long as your account is active or as required by law. When you delete a piece of content, it is typically removed from public view within 48 hours; however, residual copies may remain in our backup systems for up to 90 days before full deletion, except where retention is required for ongoing investigations or legal proceedings.
The live-streaming nature of Vega means that certain data is processed in real time. We collect and process real-time audio and video data during your live broadcasts solely for the purpose of transmitting your stream to viewers. Stream content may be buffered temporarily on content delivery network (CDN) nodes to ensure smooth playback; these buffers are purged automatically after the stream ends unless you have enabled the stream replay feature.
Real-time engagement metrics (current viewer count, live comments, gift events) are displayed to the broadcaster during a stream and are logged as part of your streaming analytics. We may use anonymized aggregate stream metrics to populate platform-wide trending data, leaderboards, and discovery features.
Vega's platform includes a virtual economy in which users purchase Vega Coins and use them to send virtual gifts to broadcasters during live streams. All purchase and gift transactions are logged with timestamps, sender and recipient identifiers, gift type, and Coin value. This data is used for:
• Processing and confirming transactions.
• Calculating broadcaster revenue share and processing payouts.
• Fraud detection and chargeback prevention.
• Tax reporting and compliance where required by applicable law.
• Displaying leaderboards and top-supporter features (with your profile information visible to other users).
Virtual Coins and gifts have no cash value outside the platform and are non-refundable except as required by applicable consumer protection laws. You may review your full transaction history in the Account Settings section of the app.
We and our service providers use cookies, pixel tags, software development kits (SDKs), and similar tracking technologies to collect data about your interactions with the Services over time.
• Essential Cookies: Strictly necessary for core functionality such as authentication, session management, and fraud prevention. These cannot be disabled.
• Analytics Cookies: Help us understand aggregate usage patterns, feature adoption, and performance bottlenecks. We use first- and third-party analytics SDKs (e.g., Firebase, Adjust) for this purpose.
• Preference Cookies: Store your language, notification, and content preferences between sessions.
• Advertising Identifiers: On mobile devices, we may use your advertising identifier (IDFA/GAID) to measure the effectiveness of our own user acquisition campaigns. We do not use these for behavioral advertising targeted at you by third-party advertisers without your consent.
You may control cookie preferences through your device's privacy settings, through the App Tracking Transparency (ATT) prompt on iOS, or through the consent management panel within the Vega app Settings > Privacy. Disabling non-essential tracking may limit certain personalized features.
Vega may integrate with or link to third-party services including social login providers, payment gateways, analytics platforms, advertising attribution networks, and content delivery networks. This Policy does not apply to the data practices of these third parties. We encourage you to review the privacy policies of any third-party services you access through or in connection with Vega.
Where third-party SDKs are embedded in the Vega app, they may independently collect device-level data. We audit these SDKs periodically and require all SDK partners to comply with our Data Processing Agreements (DPAs) and applicable law.
We retain personal information for as long as is necessary to fulfill the purposes described in this Policy, unless a longer retention period is required or permitted by law. Our general retention guidelines are:
• Account data is retained for the lifetime of your account plus up to 12 months after account deletion to facilitate account recovery and resolve disputes.
• Transaction and payment records are retained for a minimum of 7 years to comply with financial and tax regulations.
• Moderation logs, abuse reports, and enforcement records are retained for up to 5 years to support appeals, legal proceedings, and law enforcement requests.
• Anonymized analytics data may be retained indefinitely in aggregated form.
• Server and security logs are retained for 90 days unless flagged as part of an ongoing investigation.
When your data is no longer required, we securely delete or anonymize it in accordance with industry-standard data disposal practices.
We implement a multi-layered security program designed to protect your personal information against unauthorized access, alteration, disclosure, or destruction.
• Encryption: All data transmitted between your device and our servers is encrypted using TLS 1.2 or higher. Sensitive data at rest (including payment records and government-issued ID data used for verification) is encrypted using AES-256.
• Access Controls: Personal data is accessible only to authorized Vega employees and contractors on a strict need-to-know basis, enforced through role-based access controls (RBAC) and multi-factor authentication (MFA).
• Security Monitoring: We operate 24/7 security monitoring, intrusion detection systems (IDS), and conduct regular vulnerability assessments and penetration testing.
• Vendor Due Diligence: All third-party service providers handling personal data are subject to security assessments and contractual security obligations.
Despite these measures, no system is perfectly secure. We encourage you to use a strong, unique password, enable two-factor authentication on your Vega account, and notify us immediately at vega.pet@service if you suspect any unauthorized access to your account.
Vega operates globally, and your personal information may be transferred to and processed in countries other than the country in which you reside. These countries may have data protection laws that differ from those in your country.
For transfers of personal data originating from the EEA, UK, or Switzerland to countries not recognized as providing an adequate level of data protection, we rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses (SCCs), the UK International Data Transfer Agreement (IDTA), or other lawful transfer mechanisms. You may request a copy of the relevant transfer safeguards by contacting us at vega.pet@service.
Vega is strictly intended for users who are 18 years of age or older. We do not knowingly collect, use, or disclose personal information from individuals under the age of 18. During registration, we require users to provide their date of birth, and accounts that appear to belong to minors are subject to immediate suspension and data deletion. We may employ additional age-verification measures as required by applicable law.
If we become aware that we have inadvertently collected personal information from a user under the age of 18, we will take immediate steps to delete that information from our systems. If you believe a minor has created a Vega account, please report it to vega.pet@service with the subject line "Minor Account Report." We will investigate and act promptly upon receiving such a report.
Vega has a zero-tolerance policy for Child Sexual Abuse and Exploitation (CSAE) in any form. This includes Child Sexual Abuse Material (CSAM), child grooming, sexual solicitation of minors, trafficking-related content involving minors, and any other content or behavior that sexually exploits individuals under the age of 18. We employ a combination of automated hash-matching technology (including integration with the National Center for Missing & Exploited Children's CyberTipline and PhotoDNA), proactive content scanning, and trained human moderation teams to detect and remove CSAE content. Any account found to have uploaded, distributed, or solicited CSAE content will be permanently banned, reported to the National Center for Missing & Exploited Children (NCMEC) and relevant law enforcement agencies worldwide, and subject to prosecution to the fullest extent of applicable law. Users who encounter any content they believe depicts child sexual abuse or exploitation are strongly encouraged to report it immediately within the app using the "Report" function or by emailing vega.pet@service.
Although our platform is designed for adults, we comply with the Children's Online Privacy Protection Act (COPPA) and its international equivalents. We do not knowingly engage in behavioral advertising directed at children, collect sensitive personal information from children, or condition a child's participation in activities on the disclosure of more personal information than is necessary.
Depending on your jurisdiction, you may have the following rights with respect to your personal information:
You have the right to request a copy of the personal information we hold about you and to receive it in a structured, commonly used, machine-readable format (data portability). You can initiate a data export request directly from Settings > Privacy > Download My Data within the Vega app.
You may update or correct inaccurate personal information at any time through your account profile settings. For information that cannot be self-corrected, please contact vega.pet@service.
You may request deletion of your personal information by submitting a deletion request through Settings > Account > Delete Account or by emailing vega.pet@service. Upon verification, we will delete or anonymize your data within 30 days, subject to retention obligations described in Section 10.
You have the right to restrict the processing of your personal data in certain circumstances, and to object to processing based on our legitimate interests. Where we rely on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
California residents have the right to opt out of the "sale" or "sharing" of personal information as defined under the CCPA/CPRA. Vega does not sell personal information. To the extent that targeted advertising constitutes "sharing" under California law, you may opt out by visiting Settings > Privacy > Limit Data Sharing or by submitting a request to vega.pet@service with the subject line "CCPA Opt-Out Request."
We will not discriminate against you for exercising any privacy right. You will not receive a lower quality of service, higher prices, or reduced platform features as a result of exercising your rights under this Policy.
To submit a privacy rights request, you may: (a) use the in-app privacy tools described above; or (b) email vega.pet@service with "Privacy Request" in the subject line. We will verify your identity before processing your request and respond within 30 days (or 45 days where permitted with notice).
With your consent, we send push notifications to your device about live broadcasts, platform updates, new followers, virtual gift activity, and promotional offers. You may manage notification preferences at any time through Settings > Notifications within the app, or through your device's notification settings. Revoking notification permissions does not affect your ability to use the core features of the platform.
Certain transactional communications (e.g., account security alerts, payment confirmations, significant policy changes) are sent regardless of your notification preferences because they are necessary for the secure operation of your account.
Maintaining a safe and welcoming environment is fundamental to Vega's mission. We invest in both technological and human moderation resources to enforce our Community Guidelines and this Policy in real time.
• Automated Detection: AI-powered classifiers continuously review live streams and UGC for violations including nudity, violence, hate speech, and CSAM. Flagged content is queued for immediate human review.
• User Reporting: Any user may report a stream, comment, profile, or user by tapping the Report button within the app. Reports are triaged by severity and reviewed within 24 hours for high-priority violations.
• Appeals: Users whose content is removed or accounts are suspended may appeal the decision through Settings > Support > Submit an Appeal. Appeals are reviewed by a senior moderation team within 7 business days.
• Transparency: We publish a periodic Community Safety Report summarizing enforcement actions, trends, and the effectiveness of our moderation programs.
California residents are entitled to additional disclosures and rights under the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA). In the preceding 12 months, Vega has collected the following categories of personal information: identifiers, commercial information (transaction history), internet or other electronic network activity, geolocation data, inferences drawn to create a profile about you, and audio/visual information (live stream content).
We do not sell personal information. We do not knowingly collect or sell the personal information of consumers under 16 years of age. California residents may submit requests to know, delete, or correct their data, opt out of sharing, and designate an authorized agent for requests -- all as described in Section 14 above. For further information on your California rights, contact vega.pet@service with "California Privacy Rights" in the subject line.
In addition to the rights described in Section 14, users in the European Economic Area (EEA), United Kingdom, and Switzerland have the following rights under the GDPR and UK GDPR:
• Right to lodge a complaint with a supervisory authority: If you believe we have not complied with applicable data protection law, you have the right to lodge a complaint with your local data protection authority (DPA). A list of EU DPAs is available at ec.europa.eu/justice/article-29/structure/data-protection-authorities.
• Right not to be subject to solely automated decisions: You have the right not to be subject to a decision based solely on automated processing, including profiling, that produces legal or similarly significant effects on you.
Vega acts as the data controller for personal data collected from EEA, UK, and Swiss users. Our designated representative for GDPR inquiries can be reached at vega.pet@service.
In the event of a data breach that is reasonably likely to result in a risk to your rights and freedoms, we will notify you and relevant regulatory authorities as required by applicable law. We will:
• Notify affected users without undue delay and, where required, within 72 hours of becoming aware of the breach.
• Provide clear, plain-language communication describing the nature of the breach, the categories and approximate number of records affected, likely consequences, and the steps we have taken or propose to take.
• Maintain an internal data breach register and cooperate fully with regulatory investigations.
Notifications will be sent to the email address associated with your account and, where feasible, through prominent in-app alerts. We encourage you to keep your contact information up to date.
Vega does not serve third-party behavioral advertising within the platform. Any personalization features (such as content recommendations and trending displays) are powered exclusively by Vega's first-party data and are designed to improve your experience on our platform.
We may measure the effectiveness of our own user acquisition campaigns by sharing pseudonymous device identifiers and conversion events (such as app installs) with attribution measurement partners. These partners are contractually prohibited from using this data for any purpose other than attribution. You may opt out of attribution measurement by disabling the advertising identifier on your device (iOS: Settings > Privacy & Security > Tracking; Android: Settings > Privacy > Ads).
Vega uses automated systems to generate inferences about your interests and preferences in order to personalize your content feed and discover new creators that may appeal to you. These inferences are based on your viewing history, interaction patterns, and self-declared preferences. No automated decision-making on Vega produces legal effects or similarly significant consequences for users.
Our automated moderation systems may flag content or accounts for human review and, in cases of highly confident detection of CSAM or imminent harm, take immediate automated enforcement action. Where automated enforcement affects your account, you may appeal as described in Section 16.
We are committed to making our privacy controls accessible to all users, including those with disabilities. Key privacy settings within the Vega app are designed to conform to WCAG 2.1 Level AA accessibility guidelines. If you are unable to access privacy controls or exercise your rights through the in-app tools due to a disability, please contact us at vega.pet@service and we will accommodate your request through alternative means.
You may delete your Vega account at any time by navigating to Settings > Account > Delete Account and following the on-screen instructions. Before deletion is finalized, we will present you with a data export option so that you can download a copy of your data (including your profile information, transaction history, and a list of creators you follow) in a portable, machine-readable format.
Please note that deleting your account will immediately remove your profile from public view and terminate your access to all Vega services. Data retained for legal compliance purposes (as described in Section 10) will be held securely, inaccessible to other users, and deleted as soon as the applicable retention period expires.
Users in certain jurisdictions may have additional rights or be subject to specific requirements under local law. In addition to the California and GDPR provisions above:
• Brazil (LGPD): Brazilian users have rights under the Lei Geral de Protecao de Dados, including the right to confirmation, access, correction, anonymization, portability, and deletion of personal data. Our legal basis for processing includes consent, legitimate interest, and legal obligation as applicable.
• Australia (Privacy Act): Australian users may lodge complaints with the Office of the Australian Information Commissioner (OAIC) if they believe we have interfered with their privacy.
• South Korea (PIPA): We appoint a Personal Information Protection Officer (PIPO) for South Korean users. Contact details are available at vega.pet@service.
• India (DPDP Act): Indian users may exercise data principal rights under the Digital Personal Data Protection Act 2023 by contacting vega.pet@service.
If your jurisdiction is not listed above and you have questions about your local rights, please contact us and we will respond in accordance with applicable law.
We may update this Privacy Policy from time to time to reflect changes in our data practices, platform features, applicable law, or regulatory guidance. When we make material changes, we will:
• Post the revised Policy with an updated Effective Date at the top of this document.
• Display a prominent in-app banner notifying you of the update, accompanied by a summary of the key changes, at least 14 days before the changes take effect.
• Send an email notification to the address registered to your account for changes that significantly affect your rights or our data practices.
Your continued use of Vega after a Policy update constitutes acceptance of the revised terms. If you do not agree with the updated Policy, you should discontinue use of the Services and may request deletion of your account as described in Section 23. We encourage you to review this Policy periodically to stay informed about how we protect your information.
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us using the information below. We are committed to responding to all inquiries within 30 days.
• Email: vega.pet@service (Privacy inquiries should include "Privacy Request" or the relevant subject in the email subject line)
• In-App: Settings > Help & Support > Contact Us
For GDPR-related requests, you may also direct your inquiry to our data protection representative at the same email address with "GDPR Request" in the subject line.
Thank you for trusting Vega with your personal information. We are dedicated to maintaining that trust by protecting your privacy with the highest standards of care and transparency.
VEGA - PRIVACY POLICY
Effective Date: May 11, 2026
Contact: vega.pet@service