Privacy Policy

Introduction

ZodForge Cloud ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered schema refinement API service.

Information We Collect

1. Personal Information

When you sign up for ZodForge Cloud, we collect:

• Email address (required for account creation and communication)
• Payment information (processed securely by Stripe, we never store card details)
• Billing address (required for invoicing)
• Company name (optional, for enterprise customers)

2. API Usage Data

When you use our API, we collect:

• API requests and responses (temporarily for processing, not stored long-term)
• Usage metrics (request count, response times, error rates)
• API key metadata (creation date, last used, tier)
• IP addresses (for rate limiting and security)

3. Automatically Collected Information

• Browser type and version
• Device information
• Log data (access times, pages viewed)
• Cookies (see Cookie Policy below)

How We Use Your Information

We use collected information for:

• Service Delivery: Process API requests, refine schemas, deliver results
• Account Management: Create and manage your account, send API keys
• Billing: Process payments, send invoices, manage subscriptions
• Communication: Send transactional emails, service updates, security alerts
• Improvement: Analyze usage patterns, improve AI models, fix bugs
• Security: Detect fraud, prevent abuse, enforce terms of service
• Legal Compliance: Comply with applicable laws and regulations

How We Share Your Information

We share your information with trusted third parties:

We do not sell your personal information to third parties. We only share data necessary for service delivery with vetted partners under strict confidentiality agreements.

Data Retention

• API Request Data: Processed in real-time, not stored (except logs for 7 days for debugging)
• Account Information: Retained as long as your account is active
• Usage Metrics: Retained for 12 months for analytics and billing
• Billing Records: Retained for 7 years for tax and legal compliance

Your Rights (GDPR & CCPA)

You have the right to:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate or incomplete data
• Erasure: Request deletion of your data (account deletion)
• Portability: Export your data in a machine-readable format
• Restriction: Limit how we process your data
• Objection: Object to certain types of processing
• Withdraw Consent: Opt out of marketing communications

To exercise any of these rights, email us at privacy@zodforge.dev

Cookie Policy

We use cookies for:

• Essential Cookies: Authentication, security, session management (required)
• Analytics Cookies: Understand usage patterns, improve service (optional)

You can control cookies through your browser settings. Disabling essential cookies may limit functionality.

Security Measures

We implement industry-standard security:

• HTTPS encryption for all data in transit (TLS 1.3)
• Database encryption at rest (AES-256)
• API key hashing (bcrypt)
• Rate limiting and DDoS protection
• Regular security audits and penetration testing
• Access controls and least privilege principles

For more details, see our Security page.

Children's Privacy

ZodForge Cloud is not intended for users under 18. We do not knowingly collect data from children. If we learn we have collected data from a child, we will delete it immediately.

International Data Transfers

Your data may be transferred to and processed in countries outside your residence. We ensure adequate safeguards through Standard Contractual Clauses (SCCs) and ensure GDPR compliance for EU users.

Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes via email or prominent notice on our website. Continued use after changes constitutes acceptance.

Contact Us

For privacy-related questions or to exercise your rights: