~/ziphub — zsh
ZipHub·~/catalog~/articles~/feed~/sellers~/hire
auth login

Privacy Policy

Last updated March 10, 2026

Privacy Policy

Last Updated: Upon first publication on the Platform.

This Privacy Policy describes how we collect, use, store, share, and protect your personal information when you use our Platform. By accessing or using the Platform, you agree to the practices described in this Policy.

1. Scope and Application

1.1. This Privacy Policy applies to all Users of the Platform, including Buyers, Sellers, and visitors, regardless of their location.

1.2. This Policy is designed to comply with applicable data protection regulations across multiple jurisdictions, including but not limited to:

  • The European Union General Data Protection Regulation (GDPR);
  • The California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA);
  • The Federal Law of the Russian Federation No. 152-FZ "On Personal Data";
  • Brazil's Lei Geral de Proteção de Dados (LGPD);
  • Other applicable national and regional data protection laws.

1.3. Where specific jurisdictions grant Users additional rights, those rights are described in the relevant sections below.

2. Data Controller

2.1. The Platform Operator acts as the data controller for personal data collected through the Platform.

2.2. Contact information for data protection inquiries is available through the Platform's support channels.

3. Categories of Personal Data Collected

3.1. Account Information: Name, email address, username, password (hashed), profile picture, language preferences, and account settings.

3.2. Seller Information: Business name, contact information, payment details (for payout purposes), tax identification information, product listings, and sales history.

3.3. Transaction Data: Purchase history, order details, payment amounts, timestamps, and related financial records.

3.4. Technical Data: IP address (hashed for security purposes), browser type and version, operating system, device type, screen resolution, referral URLs, pages visited, session duration, and interaction data.

3.5. Communication Data: Messages sent through the Platform's internal messaging system, support tickets, and feedback submissions.

3.6. Geolocation Data: Approximate geographic location derived from IP addresses or browser-provided location data (if consented).

3.7. Cookies and Tracking Data: Data collected through cookies, web beacons, local storage, and similar technologies as described in Section 9.

3.8. AI Usage Data: Prompts submitted to AI features, generated content, model selection, and usage statistics.

3.9. User-Generated Content: Reviews, ratings, comments, articles, and other content you create on the Platform.

4.1. We process personal data on the following legal bases:

  • Contractual Necessity: Processing necessary to perform our contract with you (providing Platform services, processing Transactions, managing your Account).
  • Legitimate Interests: Processing necessary for our legitimate interests (security, fraud prevention, improving the Platform, analytics), provided these interests are not overridden by your data protection rights.
  • Consent: Processing based on your explicit consent (marketing communications, non-essential cookies, AI feature usage).
  • Legal Obligation: Processing necessary to comply with applicable laws (tax reporting, law enforcement requests, anti-money laundering regulations).

5. Purposes of Data Processing

5.1. We use your personal data for the following purposes:

  • Service Provision: Creating and managing your Account, facilitating Transactions, delivering purchased Products, and providing customer support.
  • Payment Processing: Processing purchases, managing payouts to Sellers, handling refunds and chargebacks, and maintaining financial records.
  • Security and Fraud Prevention: Detecting, preventing, and investigating fraud, unauthorized access, and other security threats; monitoring for violations of our Terms of Service; IP-based security analysis.
  • Platform Improvement: Analyzing usage patterns, conducting A/B testing, improving features and user experience, and developing new services.
  • Analytics: Generating aggregated, anonymized statistics on Platform usage, traffic, sales, and performance.
  • Communication: Sending transactional notifications (order confirmations, delivery notifications, security alerts), responding to support inquiries, and (with consent) sending marketing communications.
  • Legal Compliance: Meeting tax, accounting, and regulatory obligations; responding to lawful requests from authorities.
  • AI Services: Processing prompts for content generation, translation, and other AI-powered features.

6. Data Sharing and Disclosure

6.1. We may share your personal data with the following categories of recipients:

  • Other Users: When you engage in a Transaction, certain information (such as your username and purchase details) is shared with the relevant Buyer or Seller. Sellers may see limited information about Buyers necessary to fulfill orders.
  • Payment Processors: We share Transaction data with third-party payment processors to facilitate payments.
  • AI Service Providers: When you use AI features, your prompts and related data may be transmitted to third-party AI providers (such as OpenAI, xAI, or Google) for processing.
  • Cloud Infrastructure Providers: Your data is stored and processed on servers provided by third-party cloud service providers.
  • Analytics Providers: We may use third-party analytics services that process anonymized or pseudonymized data.
  • Law Enforcement and Governmental Authorities: We may disclose data when required by law, subpoena, court order, or to protect the rights, safety, or property of the Platform, its Users, or the public.
  • Business Transfers: In the event of a merger, acquisition, reorganization, bankruptcy, or sale of assets, your data may be transferred as part of the transaction.

6.2. We do not sell your personal data to third parties for marketing purposes.

6.3. We require all third-party service providers to process personal data in accordance with applicable data protection laws and our contractual obligations.

7. International Data Transfers

7.1. Your personal data may be transferred to and processed in countries other than the country in which you reside. These countries may have data protection laws that differ from the laws of your country.

7.2. Where data is transferred to countries that do not provide an adequate level of data protection as determined by applicable law, we implement appropriate safeguards, which may include:

  • Standard contractual clauses approved by relevant authorities;
  • The recipient's certification under an applicable privacy framework;
  • Other legally recognized transfer mechanisms.

8. Data Retention

8.1. We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable law.

8.2. General retention periods:

  • Account Data: Retained for the duration of your Account and for 3 years after Account deletion.
  • Transaction Data: Retained for 7 years for tax and accounting purposes.
  • Security Logs: Retained for 1 year.
  • Communication Data: Retained for 3 years after the last interaction.
  • Analytics Data: Aggregated and anonymized data may be retained indefinitely.

8.3. When personal data is no longer required, it is securely deleted or anonymized.

9. Cookies and Tracking Technologies

9.1. The Platform uses the following types of cookies:

  • Strictly Necessary Cookies: Required for the operation of the Platform (authentication, session management, security). These cannot be disabled.
  • Functional Cookies: Enable enhanced functionality and personalization (language preferences, display settings).
  • Analytics Cookies: Help us understand how Users interact with the Platform (page views, session duration, traffic sources).

9.2. You can manage cookie preferences through the Platform's cookie consent mechanism or your browser settings.

9.3. Disabling certain cookies may affect the functionality of the Platform.

10. Your Rights

10.1. Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Right of Access: Request a copy of the personal data we hold about you.
  • Right to Rectification: Request correction of inaccurate or incomplete data.
  • Right to Erasure ("Right to be Forgotten"): Request deletion of your personal data, subject to legal retention obligations.
  • Right to Restriction of Processing: Request limitation of processing in certain circumstances.
  • Right to Data Portability: Request your data in a structured, commonly used, machine-readable format.
  • Right to Object: Object to processing based on legitimate interests, including profiling.
  • Right to Withdraw Consent: Withdraw previously given consent at any time.
  • Right to Lodge a Complaint: File a complaint with a supervisory authority in your jurisdiction.

10.2. For EU/EEA residents: You may exercise your rights under the GDPR by contacting us through the Platform's support channels.

10.3. For California residents: You have the right to know what personal information we collect, request deletion, request correction, and opt out of the sale or sharing of personal information. We do not sell personal information.

10.4. For Russian Federation residents: In accordance with Federal Law No. 152-FZ, you have the right to access, correct, block, or destroy your personal data, withdraw consent to processing, and file complaints with Roskomnadzor.

10.5. To exercise any of these rights, please contact us through the Platform's support channels. We will respond within the timeframe required by applicable law (typically 30 days, or as otherwise specified by local regulation).

11. Data Security

11.1. We implement appropriate technical and organizational security measures to protect personal data against unauthorized access, alteration, disclosure, or destruction.

11.2. Security measures include, but are not limited to:

  • Encryption of data in transit (TLS/SSL) and at rest;
  • Hashing and salting of passwords;
  • Regular security assessments and vulnerability testing;
  • Access controls and role-based permissions;
  • Logging and monitoring of access to personal data.

11.3. While we strive to protect your personal data, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

12. Children's Privacy

12.1. The Platform is not intended for individuals under the age of 18 (or the age of majority in their jurisdiction). We do not knowingly collect personal data from children.

12.2. If we become aware that we have collected personal data from a child, we will take steps to delete such data promptly.

13. Changes to This Policy

13.1. We may update this Privacy Policy from time to time. Changes will be posted on the Platform with an updated "Last Updated" date.

13.2. Material changes will be communicated through the Platform. Your continued use of the Platform after changes are posted constitutes acceptance of the revised Policy.

14. Contact

14.1. For questions, requests, or complaints regarding this Privacy Policy or our data practices, please contact us through the Platform's support channels.

↑↓ nav open⌘K palettei install? help