Zellify Web2App ("Zellify", "we", "our", "us") respects your privacy and complies with the General Data Protection Regulation (GDPR) and other applicable privacy laws. This combined policy explains how we collect, use, share, and protect your personal data — including our use of cookies and similar technologies.

1. What Data We Collect

We collect the following categories of information:

• Account Data: Name, email, company name, hashed password.
• Usage Data: IP address, device info, browser type, session duration, clicks and interactions.
• Payment Data: Processed securely via third-party payment providers like Stripe or Paddle.
• Communication Data: Support tickets, messages, feedback forms.

2. Why We Collect It

We use your data to:

• Provide, maintain, and improve the Zellify platform.
• Handle billing and account operations.
• Monitor performance and prevent abuse.
• Communicate with you regarding updates, security, or service-related issues.
• Comply with legal obligations.

3. Legal Bases for Processing (GDPR)

Our processing is based on:

• Contractual necessity – To provide you with access and service.
• Legitimate interests – Product improvement, fraud prevention.
• Consent – For analytics, marketing cookies, or newsletters.
• Legal compliance – For regulatory or tax obligations.

4. Cookies and Tracking Technologies

We use cookies to operate and improve our services. Cookies are small files stored on your device that allow us to remember your preferences, analyze traffic, and deliver a better experience.

Types of Cookies We Use:

• Essential: Required to operate the site (e.g, login, CSRF Tokens)
• Analytics: Help us understand user behaviour (e.g via PostHog).
• Marketing: Only used if you opt in (e.g retargeting)

When you first visit our site, you’ll be asked to consent to non-essential cookies. You can withdraw or modify consent at any time via browser settings or cookie preferences.

5. Data Sharing

We share personal data with:

• Infrastructure Providers: e.g. Vercel, Supabase, AWS.
• Analytics & Monitoring: e.g. PostHog.
• Payment Providers: e.g. Paddle, Stripe.
• Authorities: When legally required. We never sell your personal data.

6. Data Retention

We retain your data for as long as:

• Your account is active, or
• Required by legal, accounting, or regulatory needs.

7. International Data Transfers

• We may process data in non-EU countries (e.g., U.S.) using approved safeguards like Standard Contractual Clauses (SCCs).

8. Your Rights

If you are located in the EU/EEA or UK, you have the right to: -Access your personal data

• Correct or delete incorrect data
• Withdraw consent at any time
• File a complaint with your local data protection authority

9. Contact Us

For any questions or data requests, contact:

[email protected]