← Back to Home

Privacy Policy

Last Updated: November 10, 2025

At ZIPFI ("we," "us," or "our"), we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our financial infrastructure platform and services.

1. Information We Collect

1.1 Personal Information

When you use ZIPFI, we may collect the following types of personal information:

  • Identity Information: Name, date of birth, government-issued ID, Social Security Number (for KYC/AML compliance)
  • Contact Information: Email address, phone number, physical address
  • Financial Information: Bank account details, transaction history, card information
  • Business Information: Company name, business registration details, tax ID
  • Technical Information: IP address, device information, browser type, operating system

1.2 Transaction Data

We collect information about your transactions including:

  • Payment amounts and currency
  • Merchant information
  • Transaction dates and times
  • Card authorization requests and responses
  • Account balances and movements

1.3 Usage Data

We automatically collect certain information when you use our platform:

  • Log data (access times, pages viewed, features used)
  • Device information (device type, operating system, unique identifiers)
  • Location data (IP-based location)
  • Cookies and similar tracking technologies

2. How We Use Your Information

We use the information we collect for the following purposes:

2.1 Service Provision

  • Process transactions and payments
  • Issue and manage virtual cards
  • Maintain your account and provide customer support
  • Send transaction confirmations and account notifications

2.2 Compliance and Security

  • Verify your identity (KYC - Know Your Customer)
  • Prevent fraud, money laundering, and other financial crimes (AML)
  • Comply with legal obligations and regulatory requirements
  • Detect and prevent security incidents
  • Monitor and analyze suspicious activity

2.3 Platform Improvement

  • Analyze usage patterns to improve our services
  • Develop new features and functionality
  • Conduct research and analytics
  • Test and troubleshoot technical issues

2.4 Communication

  • Respond to your inquiries and support requests
  • Send important service updates and security alerts
  • Provide marketing communications (with your consent)
  • Conduct surveys and request feedback

3. How We Share Your Information

We may share your information with the following parties:

3.1 Service Providers

We work with trusted third-party service providers who help us operate our platform:

  • Stripe: Payment processing, card issuance, identity verification
  • Supabase: Database and authentication services
  • AWS: Cloud infrastructure and hosting
  • Analytics Providers: Usage analytics and performance monitoring

3.2 Financial Institutions

  • Banks and payment networks for transaction processing
  • Card networks (Visa, Mastercard) for card operations
  • Currency exchange providers for multi-currency transactions

3.3 Legal and Regulatory Authorities

We may disclose your information when required by law or to:

  • Comply with legal processes, court orders, or government requests
  • Enforce our Terms of Service and other agreements
  • Protect our rights, property, or safety
  • Prevent fraud or other illegal activities
  • Respond to AML/CTF (Counter-Terrorism Financing) requirements

3.4 Business Transfers

If ZIPFI is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change in ownership or control.

4. Data Security

We implement industry-standard security measures to protect your information:

  • Encryption: All data is encrypted in transit (TLS/SSL) and at rest (AES-256)
  • Access Controls: Strict role-based access controls and authentication
  • PCI DSS Compliance: Level 1 PCI DSS certified infrastructure
  • SOC 2 Type II: Independently audited security controls
  • Monitoring: 24/7 security monitoring and incident response
  • Regular Audits: Periodic security assessments and penetration testing

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

5. Data Retention

We retain your information for as long as necessary to:

  • Provide our services to you
  • Comply with legal and regulatory obligations (typically 7 years for financial records)
  • Resolve disputes and enforce our agreements
  • Prevent fraud and maintain security

When we no longer need your information, we will securely delete or anonymize it in accordance with our data retention policies and applicable laws.

6. Your Rights and Choices

Depending on your location, you may have the following rights:

6.1 Access and Portability

  • Request access to your personal information
  • Receive a copy of your data in a portable format

6.2 Correction and Update

  • Update or correct inaccurate information
  • Complete incomplete information

6.3 Deletion

  • Request deletion of your personal information
  • Note: We may need to retain certain information for legal compliance

6.4 Restriction and Objection

  • Restrict how we process your information
  • Object to processing based on legitimate interests

6.5 Marketing Opt-Out

  • Unsubscribe from marketing emails (via link in emails)
  • Opt out of promotional communications

To exercise any of these rights, please contact us at privacy@zipfi.app

7. International Data Transfers

ZIPFI operates globally, and your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws.

When we transfer data internationally, we ensure appropriate safeguards are in place, such as:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Adequacy decisions by relevant authorities
  • Other legally recognized transfer mechanisms

8. Cookies and Tracking Technologies

We use cookies and similar technologies to:

  • Remember your preferences and settings
  • Analyze how you use our platform
  • Improve user experience and performance
  • Detect and prevent fraud

You can control cookies through your browser settings. However, disabling cookies may affect the functionality of our platform. For more details, see our Cookie Policy.

9. Children's Privacy

ZIPFI is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected information from a child without parental consent, we will take steps to delete that information.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by:

  • Posting the updated policy on our website
  • Updating the "Last Updated" date
  • Sending you an email notification (for significant changes)

Your continued use of ZIPFI after any changes indicates your acceptance of the updated Privacy Policy.

11. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

ZIPFI
Email: privacy@zipfi.app
Support: zipfiappteam@gmail.com
Website: zipfi.app

12. Regulatory Compliance

ZIPFI complies with applicable data protection regulations, including:

  • GDPR: General Data Protection Regulation (EU)
  • CCPA: California Consumer Privacy Act (US)
  • GLBA: Gramm-Leach-Bliley Act (US financial privacy)
  • PSD2: Payment Services Directive (EU)
  • Other applicable regional data protection laws

Home | Terms of Service | Cookie Policy | Security