ZDRAVO LogoZDRAVO
Your Privacy Matters

Privacy Policy

Last updated: March 1, 2026

ZDRAVO AI is committed to protecting your privacy. This policy explains what data we collect, how we use it, and your rights regarding your personal information. We believe in transparency: we collect only what we need to provide our service, and we never sell your data.

What We Collect

Information you provide and we generate

đź“„ Your Memories

The AI conversations and content you save to ZDRAVO. This is the core of our service— we store this so you can search and retrieve it later.

👤 Account Information

Email address (for authentication), profile information, and subscription details. We use Google OAuth for authentication—we never see your Google password.

đź“Š Usage Analytics

Anonymous data about how you use ZDRAVO (e.g., number of saves, searches) to improve our service. This data cannot identify you personally.

đź’ł Payment Information

Handled entirely by Stripe. We never see or store your credit card numbers.

How We Use Your Data

The only ways we process your information

  • âś“To provide the ZDRAVO service (storing, searching, and retrieving your memories)
  • âś“To generate embeddings for semantic search (using OpenAI's API—content is processed but not retained by OpenAI)
  • âś“To auto-tag and summarize memories (Pro feature—uses AI processing)
  • âś“To send important service notifications (not marketing spam)
  • âś•We do NOT sell your data to third parties
  • âś•We do NOT use your memories to train AI models
  • âś•We do NOT share your data with advertisers

Your Rights (GDPR/CCPA)

You control your data

đź“Ą Right to Access

Request a copy of all data we have about you. Use the Export feature in your dashboard anytime.

🗑️ Right to Deletion

Delete your account and all associated data at any time from your profile settings.

✏️ Right to Rectification

Update or correct any information in your profile at any time.

đźš« Right to Object

Opt out of non-essential communications and analytics (contact us).

Third-Party Services

We use these services to run ZDRAVO:

SupabaseDatabase & Authentication
VercelHosting & Infrastructure
StripePayment Processing
OpenAIEmbeddings for semantic search only
Google OAuthAuthentication

Data Retention

  • • Active accounts: Data retained until account deletion
  • • Deleted accounts: All data purged within 30 days
  • • Backups: Encrypted backups retained for 90 days, then permanently deleted
  • • Analytics: Anonymized after 1 year

Questions About Privacy?

Contact our Data Protection Officer at privacy@zdravoai.com

For Data Processing Agreements (Teams/Enterprise), email legal@zdravoai.com

Security Page →Terms of Service →