Updated: 26 Aug 2025

Privacy Policy

This Privacy Policy explains how Zarion ("Zarion", "we", "us", "our") collects, uses, discloses and safeguards personal information when you visit our website, create an account, subscribe to our services, or interact with our AI‑driven market intelligence platform.

For the full, always-up-to-date policy maintained via Iubenda, see: iubenda.com/privacy-policy/26617715.

Cookie Policy: iubenda.com/privacy-policy/26617715/cookie-policy.

No Investment Advice: Information and AI outputs provided by Zarion are educational and informational only. Always perform your own due diligence.

1. Data We Collect

We collect the categories of data below, depending on your interactions:

Account & Identity: Name, email address, password (hashed), authentication tokens.
Billing: Payment method tokens (handled by our PCI‑compliant processor), subscription plan, invoices, VAT/Tax IDs where applicable.
Usage: Logins, feature interactions, pages viewed, approximate time on page, click telemetry, API requests.
Device & Technical: Browser type, operating system, IP address (truncated or transformed where feasible), timezone, user agent, referral URLs.
Signals Interaction: Which AI signals you open, save, export, or dismiss (aggregate analytics for model quality).
Support & Feedback: Messages, tickets, survey responses, feature requests.
Cookies & Tracking: Session identifiers, analytics cookies, authentication tokens, and preference flags.

2. How We Use Data

Provide, secure, and maintain the platform and core AI signal services.
Authenticate users and manage sessions.
Generate anonymized analytics to improve model performance and user experience.
Process payments and manage subscriptions.
Respond to support requests and communicate service updates.
Detect, prevent, and investigate fraud, abuse, or security incidents.
Comply with legal obligations and enforce Terms.

3. Legal Bases (EEA/UK Users)

We process personal data under: (i) Performance of a contract, (ii) Legitimate interests (security, improvement, fraud prevention), (iii) Consent (marketing cookies, optional communications), (iv) Legal obligations, (v) Vital interests or public interest only when required by law.

4. Cookies & Tracking Technologies

We use strictly necessary cookies (authentication, security), performance/analytics cookies (aggregate usage), and preference cookies (UI settings). You can manage non‑essential cookies through your browser or forthcoming in‑product controls.

5. Data Sharing

We do not sell personal data. We share limited data with vetted processors under data protection agreements:

Infrastructure & Hosting (cloud providers, CDNs)
Payments & Billing (payment gateways, tax calculation)
Analytics & Error Monitoring
Communication (email delivery, support desk)
Security & Fraud Prevention

Disclosures may also occur for legal compliance, to protect rights, investigate misuse, or in connection with corporate transactions (merger, acquisition, restructuring) where safeguards are applied.

6. International Transfers

Where data leaves its origin jurisdiction, we rely on appropriate safeguards (e.g., Standard Contractual Clauses, UK Addendum, supplementary measures) and assess risk in line with applicable guidance.

7. Data Retention

We retain personal data only as long as needed for the purposes described or as required by law. Core account data is retained while your subscription or account remains active. On verified deletion requests, we pseudonymize or remove personal fields within 30 days (backups age out per rolling schedule).

8. Security

Measures include encryption in transit, segregation of environments, principle of least privilege, MFA for admin access, hashing and salting of credentials, audit logging, periodic penetration testing, anomaly detection, and incident response procedures.

9. Your Rights

Subject to region, you may have rights to: access, rectify, erase, restrict, portability, object, and withdraw consent. California users may request disclosure of categories, deletion, or opt‑out of certain sharing (we do not "sell" within CPRA definitions). Submit requests via privacy@zarion.ai.

10. Children's Data

The service is not directed to individuals under 16 (or older threshold where required). We do not knowingly collect such data. If you believe a minor provided data, contact us for removal.

11. AI System Transparency

Signals derive from multiple AI/ML models, statistical algorithms, and curated data feeds. Outputs may contain inaccuracies, lag, or model drift. We conduct periodic validation and allow user feedback loops to improve quality.

12. Automated Decision Making

We do not make decisions producing legal or similarly significant effects solely via automated processing on individuals; AI outputs are decision support only.

13. Changes to This Policy

We may update this Policy. Material changes will be announced via dashboard notice or email. Continued use after effective date constitutes acceptance.

14. Contact

Questions or requests: privacy@zarion.ai. Security reports: security@zarion.ai.

Controller: Zarion Labs B.V., Amsterdam, NL (registered address available on request).