VB Metaverse (“we”, “us”, “our”) operates the “Rehab” VR-based physical therapy module (the “Service”). This Privacy Policy describes how we collect, use, disclose, and protect your personal information when you use the Service or visit our website (e.g., vbmetaverse.com/rehab).

Information We Collect
We may collect and process the following categories of information:
(a) Personal Identifiers & Contact Information
Name, email address, phone number, postal address
Account/user ID, login credentials
(b) Usage & Interaction Data
Data about how you use the Service (e.g. which VR modules you access, session durations, levels completed)
Interaction data (touches, hand movements, gesture data, device motion)
Error logs, crash reports, performance metrics
(c) Device & Technical Information
Device type, model, VR hardware identifiers
Operating system, firmware version
IP address, time zone, language settings
Network information (connection speed, bandwidth)
(d) Health-Related / Therapy Data
Movement metrics, rehabilitation progress, motor-skill assessments
Any physiological data directly recorded by VR sensors or peripherals (if applicable)
Data you voluntarily provide about your medical condition or recovery
(e) Cookies & Tracking / Analytics
Cookies, web beacons, pixel tags
Analytics data from services like Google Analytics or similar tools

How We Use Your Information
We use your data for the following purposes:
Provide, maintain, and improve the Service
Personalize and tailor your experience (e.g. suggest modules, adapt difficulty)
Monitor performance, diagnose errors, and enhance stability
Research and analytics, to better understand usage patterns
Communicate with you (e.g. notifications, updates, support)
Comply with legal obligations and protect our rights
Enforce terms and policies
We may use aggregated or anonymized data (that cannot identify you) for research, marketing, or statistical purposes.

Legal Basis for Processing (Where Required)
Where applicable (e.g. under GDPR or similar laws), we rely on:
Your consent
Performance of a contract (to deliver the service)
Legitimate interests (e.g. improving the service, fraud prevention)
Compliance with legal obligations
If you withdraw consent (where consent is the basis), we may no longer be able to provide certain features.

Disclosure of Information / Third Parties
We may share your information with:
Service providers & vendors (e.g. cloud hosting, analytics, VR SDK providers)
Affiliates / group companies under the VB Group umbrella
Legal & regulatory authorities if required by law, court order, or to protect rights
Business transfers in case of merger, acquisition, sale, or reorganization
Aggregated / anonymized data (non-identifiable) to third parties
We require third-party processors to maintain confidentiality and security safeguards.
Disclosure of Information / Third Parties

Cross-Border Transfers
Your data may be stored, processed, and transferred across international borders (e.g. to servers in the U.S., India, or other jurisdictions). We will ensure appropriate safeguards (e.g. standard contractual clauses, binding corporate rules) for such transfers.

Data Retention
We retain your personal information only as long as necessary to fulfill the purposes outlined above, or to comply with legal obligations, resolve disputes, and enforce our policies. Once no longer needed, we’ll securely delete or anonymize your data. Disclosure of Information / Third Parties

Security Measures
We adopt industry-standard security measures to protect your information, including:
Encryption (in-transit and at rest)
Access controls & role-based permissions
Secure development practices & regular vulnerability assessments
Intrusion detection, firewalls, monitoring
However, no system is 100% secure; we cannot guarantee absolute security.
Disclosure of Information / Third Parties

Your Rights & Choices
Depending on your jurisdiction, you may have rights such as:
Accessing your data
Correcting / updating inaccurate data
Deleting your data (“right to be forgotten”)
Restricting or objecting to certain processing
Porting your data to another service
Withdrawing consent
To exercise these rights, contact us at the address below. We may ask for identity verification before acting on requests.
You can also opt out of promotional emails (unsubscribe link) or disable cookies (through browser settings), though this may affect the functionality of the Service.
Disclosure of Information / Third Parties

Children's Privacy
Our Service is not intended for children under 16 (or applicable minimum age). We do not knowingly collect personal data from children. If you believe we have, please contact us to have that data removed.

Changes to This Privacy Policy
We may update this policy from time to time. When we do, we'll post the new version here with a revised “Last updated” date. We may notify you about significant changes (e.g. by email or in-app).

Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or your data, please contact: VB Metaverse / VB Group
Email: connect@groupvb.com