Privacy Policy

Zcope Systems ("Zcope," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform at zcope.app ("Platform").

This policy applies to all users of the Platform, including creators (account holders who publish content), subscribers (recipients of creator content), and visitors (those who view public pages).

Account Data (Creators): Email address, name, profile information, and brand configuration when you register and set up your account.

Subscriber Data: Email addresses and optional metadata collected through creator forms, scorecards, and signup flows. This data belongs to the creator's brand.

Content Data: Newsletters, scorecard configurations, digital products, and other content you create or upload.

Usage Data: Browser type, IP address, pages visited, features used, and interaction patterns to improve the Platform.

Payment Data: Payment information is processed by our payment provider (Stripe). We do not store full credit card numbers.

We use collected data to:

• Provide the Service: Host content, deliver emails, process scorecards, and manage subscriber lists
• AI Features: Process content through AI systems for voice profiling, copy suggestions, and content generation when you use these features
• Safety Screening: Content may be processed by automated systems to detect prohibited content as described in our Acceptable Use Policy
• Compliance: Maintain records required by law, including email logs (CAN-SPAM), suppression records, and enforcement audit trails
• Communication: Send service announcements, policy updates, and security alerts
• Improvement: Analyze usage patterns to improve Platform features and performance

When you use AI-powered features, your content may be processed by third-party AI services (currently Google Gemini). This processing is used to:

• Analyze your writing style for voice profiling
• Generate content suggestions based on your prompts
• Screen text content for safety and policy compliance
• Screen uploaded images using AI-powered visual content analysis to detect content that violates our Acceptable Use Policy

Image screening occurs at the time of upload. We do not retain separate copies of images for screening purposes — the analysis is performed on the image as stored in the Platform. Images that violate our policies may be automatically removed.

We do not sell your content to AI providers. Content is processed solely for the purposes listed above.

We do not sell your personal data. We may share data in the following circumstances:

• Service Providers: Email delivery (Resend), payment processing (Stripe), hosting (Supabase/AWS) — only as needed to provide the Service
• Legal Requirements: When required by law, subpoena, court order, or government request
• Mandatory Reporting: We are legally required to report child sexual abuse material (CSAM) to NCMEC and may report other illegal content to appropriate authorities
• Safety: To protect the safety of our users, the public, or our Platform
• Business Transfers: In connection with a merger, acquisition, or sale of assets (with notice to affected users)

We retain data for as long as your account is active or as needed to provide the Service. After account termination:

• Account data: Deleted within 30 days of termination request, except as required by law
• Subscriber data: Retained per creator's brand until deleted by creator or required by law
• Compliance records: Email logs, suppression records, and enforcement audit trails are retained for the legally required period (typically 3-7 years)
• CSAM/legal reports: Preserved as required by law (minimum 180 days per REPORT Act)

Depending on your jurisdiction, you may have the following rights:

• Access: Request a copy of your personal data
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your data (subject to legal retention requirements)
• Portability: Request your data in a machine-readable format
• Objection: Object to processing of your data for certain purposes
• Restriction: Request restriction of processing in certain circumstances

GDPR (EU/EEA): You have all rights listed above under Articles 15-22 of the General Data Protection Regulation.

CCPA/CPRA (California): California residents have the right to know, delete, and opt-out of sale of personal information.

FADP (Switzerland): Swiss residents have rights under the Federal Act on Data Protection.

To exercise your rights, contact us at privacy@zcope.app.

Zcope is based in the United States. If you access the Platform from outside the US, your data will be transferred to and processed in the United States.

For transfers from the EU/EEA, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission. For transfers from Switzerland, we comply with the Swiss-US Data Privacy Framework where applicable.

We use essential cookies for authentication and session management. We do not use third-party advertising cookies.

Analytics cookies may be used to understand how the Platform is used. You can control cookie preferences through your browser settings.

The Platform is not directed to children under 13 (or under 16 in the EU). We do not knowingly collect personal information from children. If we become aware that we have collected data from a child, we will delete it promptly.

Creators who operate content that may be accessed by children are responsible for implementing appropriate age verification and parental consent mechanisms.

We implement industry-standard security measures including encryption in transit (TLS), encryption at rest, role-based access control, and regular security reviews. However, no method of transmission or storage is 100% secure, and we cannot guarantee absolute security.

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on the Platform and updating the "Last Updated" date. Continued use of the Platform after changes constitutes acceptance.

For privacy-related inquiries:

Email: privacy@zcope.app

Zcope Systems