VIRTUAL STORY – TERMS AND CONDITIONS

This document sets out the Terms and Conditions for using the website Virtualstory.ge.

This document is a mutually binding agreement concluded between the user and LLC “Virtual Story.”

LLC “Virtual Story” (ID: 405551656) is registered at: 5a Guram Panjikidze St., Apt. 27, Saburtalo District, Tbilisi, Georgia.

LLC “Virtual Story” shall hereinafter be referred to as “Virtualstory.ge” in these Terms and Conditions, the Privacy Policy, and all other guidelines and instructions.

The Terms and Conditions of using the Virtualstory.ge website, together with any amendments and other regulations of Virtualstory.ge, constitute a single document and shall be considered as a unified agreement with the user.

By registering on the website, the user agrees to and acknowledges these Terms and Conditions, the Privacy Policy, the Return and Exchange Policy, and confirms their legal applicability.

If the user does not agree with the legal documents of Virtualstory.ge, they may refrain from using the website and, if necessary, contact Virtualstory.ge to record their recommendation.

For additional questions, claims, or requests, the user may contact Virtualstory.ge via email. The Virtualstory.ge team is ready to provide detailed answers.

When visiting www.virtualstory.ge, you are required to familiarize yourself with our policies. These policies may be amended from time to time, and Virtualstory.ge recommends periodically reviewing the Privacy Policy.

Any user who voluntarily provides personal information to Virtualstory.ge automatically grants Virtualstory.ge the right to store and process such personal data.

This Privacy Policy defines the rules, purposes, conditions of use, and storage of users’ personal data in accordance with the Law of Georgia on Personal Data Protection.

This document is an integral part of the Terms and Conditions for using the Virtualstory.ge website.

DEFINITIONS

Personal Data – any information related to an identified or identifiable natural person.

Data Controller – LLC “Virtual Story,” which determines the purposes and means of data processing.

Data Processor – a legal entity or public institution that processes data on our behalf.

Data Subject – a natural person (user, employee, contractor) who uses or intends to use our products or services.

Data Processing – any action performed on data, including collection, storage, use, deletion, disclosure, and monitoring.

Automatic Processing – processing using information technologies.

Non‑automatic Processing – processing without information technologies.

Semi‑automatic Processing – a combination of both.

Consent – a freely given, specific, informed expression of will by the data subject.

Direct Marketing – direct communication via phone, mail, email, or electronic means to promote products or services.

Video Monitoring – visual data recording in public or private spaces.

Audio Monitoring – audio data recording in public or private spaces.

PRINCIPLES OF DATA PROCESSING

Data must be processed lawfully, fairly, transparently, and with respect for dignity.

Data must be collected for specific, legitimate purposes.

Data must be adequate and relevant to the purpose.

Data must be accurate and updated.

Data must be stored only as long as necessary.

Appropriate technical and organizational measures must be taken to ensure security.

LEGAL BASIS FOR DATA PROCESSING

Processing is based on consent, contractual necessity, legal obligation, public interest, legitimate interest, or the data subject’s request for service.

DIRECT MARKETING

Data processing for direct marketing is permitted only with consent.

Processing beyond name, surname, address, phone number, and email requires written consent.

Processing must cease within 7 working days upon request.

DATA SECURITY

Virtualstory.ge ensures personal data security using technical and organizational measures, including HTTPS and protection from XSS and CSRF vulnerabilities.

Only authorized employees have access to data.

PURPOSE OF PROCESSING

Improving service quality, fulfilling legal obligations, handling complaints, monitoring website activity, communication, marketing activities, preventing misuse, crime prevention, and protecting legal interests.

USER RIGHTS

Users may request information about processing purposes, legal basis, and data sharing.

Users may request correction, deletion, or blocking of inaccurate data.

Users may withdraw consent at any time.

CALL CENTER

Incoming and outgoing calls may be recorded for quality and security purposes.

WEBSITE USE

Use of the website implies consent to data and cookies processing.

MINORS

Virtualstory.ge cannot verify user age. If a minor registers without legal consent, Virtualstory.ge may disregard the data.

DATA SHARING

Data may be shared with courier partners for delivery purposes and with authorities as required by law.

LOG FILES AND COOKIES

Cookies collect analytical information such as IP address, device type, browser, visit duration, and activity on the website to improve services and marketing.

DATA COLLECTED

Mobile number, email, address, name, surname, and password for registration.

Payment details are processed by the bank; Virtualstory.ge does not access card data.

DATA RETENTION AND SECURITY

Data is stored as long as necessary for legal and service purposes.

Users must protect their login credentials.

THIRD PARTIES

Virtualstory.ge is not responsible for external websites linked from its site.

CHANGES

Users will be notified of any changes. Continued use implies acceptance.

RETURN POLICY

Products may be returned within 14 days unless they are digital products (software, apps, games), perishable, unsealed hygienic goods, or under 30 GEL in value, or show signs of use.

If the product is damaged, incorrect, or has a factory defect, returns are accepted.

REFUND PROCEDURE

Returns in Tbilisi are processed within 24 hours; regions within 5 working days; mountainous regions within 7–10 days.

Refunds are made within 5 working days to the original payment card after approval.