V

Chargement…

V
Vira
FRENAR
Home
Privacy

Vira Privacy Policy

At Vira app, protecting your personal data is not a footer paragraph - it's a promise. This policy clearly and fully describes how we collect, use, share, retain and protect your personal information, and the rights you can exercise in every jurisdiction where we operate.

Last updatedApril 12, 2026

Applicable legal frameworks

  • Federal Canada - Personal Information Protection and Electronic Documents Act (PIPEDA)
  • Quebec - Act to modernize legislative provisions as regards the protection of personal information ("Law 25")
  • Algeria - Law No. 18-07 of 10 June 2018 on the protection of natural persons in the processing of personal data
  • Qatar - Law No. 13 of 2016 on Personal Data Privacy Protection (PDPPL) and QFC Data Protection Regulations 2021 for QFC-licensed entities
  • Additional regulatory compliance: FINTRAC (Canada) for anti-money-laundering obligations

Table of contents

1. Data controller2. Personal data we collect3. Purposes of processing4. Legal bases5. Recipients and partners6. International data transfers7. Data retention8. Security9. Cookies and trackers10. Minors11. Changes to this policy

1. Data controller

  • Vira app ("Vira", "we", "our") is the controller of the personal data you entrust to us when you use our services, our mobile app or our website.
  • Vira is incorporated in Canada and registered with the Financial Transactions and Reports Analysis Centre of Canada (FINTRAC) as a money services business. Premium and multi-jurisdiction activities may be operated through our affiliate licensed at the Qatar Financial Centre.

2. Personal data we collect

  • We strictly limit collection to what is necessary to provide our services, comply with the law and prevent fraud. We collect notably:
  • • Identity data: first and last name, date of birth, nationality, photograph, official ID document (passport, driver's license, national ID card), residential address.
  • • Contact data: phone number, email.
  • • Financial data: IBAN, partial bank account number, transaction history, currencies held, beneficiaries.
  • • Technical data: IP address, device type and version, advertising identifiers, connection logs, device fingerprint, session tokens.
  • • Compliance data: AML/CFT risk score, sanctions screening result, source of funds, occupation, reason for transfer.
  • • Biometric data (optional): fingerprint or Face ID used locally on your device via Passkey - never transmitted to our servers.

3. Purposes of processing

  • Your data is processed to:
  • • Create and manage your account, verify your identity (KYC) and comply with our regulatory obligations.
  • • Execute transfer orders, currency conversions and virtual card payments.
  • • Prevent and detect fraud, money laundering and terrorism financing.
  • • Provide you with efficient and personalized customer service.
  • • Improve our products, compile aggregated and anonymized statistics, and test our features.
  • • Send you marketing communications with your consent - you can unsubscribe at any time.

4. Legal bases

  • We only process your data when we have a valid legal basis, notably:
  • • Performance of a contract to which you are a party (the Vira service agreement).
  • • Compliance with a legal obligation (AML, taxation, responses to regulators).
  • • Your explicit consent (marketing, non-essential cookies, biometric features).
  • • Our legitimate interest in securing our platform and preventing fraud, balanced against your rights.

5. Recipients and partners

  • Your data may be shared, only to the extent strictly necessary, with:
  • • Our technical providers: cloud infrastructure, storage, authentication, identity verification, anti-fraud scoring.
  • • Our payment partners and authorized cash-out agents in Algeria (the Vira Business agent network).
  • • Competent regulatory authorities: FINTRAC (Canada), ANPDP (Algeria), QFC competent authority (Qatar) and any judicial authority in response to a lawful request.
  • • Our legal advisors, accountants and auditors, bound by professional secrecy.
  • We never sell your personal data. We do not share it for advertising purposes with third parties.

6. International data transfers

  • Vira operates across several jurisdictions: your data may be transferred and processed in Canada, Algeria, Qatar and in other countries where our trusted providers are located.
  • When a transfer occurs to a jurisdiction that does not provide an equivalent level of protection, we put in place appropriate safeguards: standard contractual clauses, reinforced contractual obligations and, where required by Quebec's Law 25, a privacy impact assessment prior to any transfer outside Quebec.

7. Data retention

  • We retain your data for as long as necessary for the purposes for which it was collected, and for a minimum of:
  • • 5 years after the closing of your account for transaction and identification data, in accordance with Canadian AML obligations.
  • • 10 years for accounting and tax data.
  • • Until withdrawal of your consent for marketing data.
  • After these periods, your data is deleted or irreversibly anonymized.

8. Security

  • We apply bank-grade technical and organizational security measures:
  • • AES-256 encryption at rest and TLS 1.3 in transit.
  • • Strong authentication through biometric Passkey, stored only on your device.
  • • Segregated production environments, immutable audit logs, annual security reviews.
  • • Incident response plan and notification procedure to authorities and data subjects in case of breach, in line with each jurisdiction's applicable deadlines (72 hours under Quebec's Law 25, without undue delay under Algeria's Law 18-07 and Qatar's PDPPL).

9. Cookies and trackers

  • Our website and app use a limited number of cookies and similar technologies:
  • • Strictly necessary cookies (session, security, language preference) - do not require consent.
  • • Anonymized audience measurement cookies - only used after your explicit consent.
  • We do not use third-party advertising cookies. You can change your preferences at any time through your browser or app settings.

10. Minors

  • Vira is a money transfer service reserved for adults (18+). We do not knowingly collect data from minors. If you believe that a minor has provided us with their data, please contact us immediately and we will delete it.

11. Changes to this policy

  • We may update this policy to reflect legal or functional changes to our services. Any material change will be notified by email and/or through the app, with reasonable notice before taking effect. The last update date appears at the top of this page.
Your rights

Your rights

Regardless of your country of residence, you have the following rights over your personal data at all times:

01

Right of access

Obtain confirmation that we process your data and receive a readable copy.

02

Right of rectification

Request correction of inaccurate or incomplete data.

03

Right to erasure

Request deletion of your data when the law permits and no legal obligation prevents it.

04

Right to portability

Receive your data in a structured, commonly used and machine-readable format (strengthened by Quebec's Law 25).

05

Right to object

Object to processing based on our legitimate interest, notably for direct marketing.

06

Right to withdraw consent

Withdraw previously given consent at any time, without affecting the lawfulness of prior processing.

07

Right to human decision

Request human intervention when an automated decision produces legal effects concerning you (Quebec's Law 25).

Supervisory authorities

If you believe one of your requests has not been handled satisfactorily, you may lodge a complaint with the competent authority:

Office of the Privacy Commissioner of Canada (OPC)

Federal Canadian authority - PIPEDA.

www.priv.gc.ca

Commission d'accès à l'information du Québec (CAI)

Quebec authority - Law 25.

www.cai.gouv.qc.ca

National Authority for Personal Data Protection (ANPDP)

Algerian authority - Law No. 18-07.

www.anpdp.dz

National Data Privacy Office (NDPO) of Qatar

Qatari authority - Law No. 13 of 2016 (PDPPL).

www.cra.gov.qa

Contact us

To exercise your rights or for any question about the protection of your personal data, you can contact our Data Protection Officer:

Data Protection Officer

privacy@vira.app

Mailing address

Vira app - Montreal (Quebec), Canada

V
VIRA
Back to home© 2026 VIRA