Privacy Policy
Current published template
Privacy Policy
Last updated: [EFFECTIVE DATE]
This Privacy Policy explains how [LEGAL ENTITY NAME] (“Zercut,” “we,” “us,” or “our”) collects, uses, discloses, and protects personal information when you use the Zercut platform, website, provider portal, customer workflows, and related services.
1. Scope
This Privacy Policy applies to personal information we collect:
- when you visit our website or use the platform;
- when you create an account or interact with checkout, provider, or support workflows;
- when you communicate with us or with other parties through the platform; and
- when we receive information from payment processors, authentication providers, analytics tools, or service providers supporting the platform.
2. Information We Collect
Depending on how you use the platform, we may collect:
Account and contact information
- name;
- email address;
- phone number;
- business name;
- billing or delivery addresses; and
- login, account, and onboarding details.
Order and provider workflow information
- uploaded files, drawings, source files, previews, and order metadata;
- materials, machine, pricing, shipping, and service selections;
- order history, quote requests, invoices, and job status records; and
- communications and activity related to order fulfillment or support.
Payment and billing information
- billing contact details;
- transaction metadata;
- subscription and invoice records; and
- payout or connected-account information supplied through third-party payment providers.
Zercut does not store full payment card numbers where a third-party payment processor handles those details directly.
Device, log, and usage information
- IP address;
- browser and device information;
- session and authentication data;
- pages viewed and actions taken;
- referring URLs; and
- diagnostic, performance, and security logs.
Cookies and similar technologies
We use cookies and similar technologies as described in Section 6 of this Privacy Policy.
3. How We Use Personal Information
We use personal information to:
- provide, operate, and secure the platform;
- create and manage accounts;
- authenticate users and prevent fraud or abuse;
- process quote, order, shipping, invoicing, and provider workflows;
- communicate with users about accounts, orders, support, and service changes;
- personalize or maintain account preferences and session behavior;
- analyze usage, troubleshoot issues, and improve the platform;
- comply with legal obligations; and
- enforce our agreements, policies, and platform rules.
4. Legal Bases and Consumer Expectations
Where applicable, we rely on one or more of the following:
- performance of a contract;
- legitimate interests in operating and improving the platform;
- compliance with legal obligations; and
- consent, where required, including for certain cookies and tracking technologies.
5. How We Share Personal Information
We may share personal information with:
Providers and customers
We share the information necessary for quoting, production, shipping, invoicing, support, dispute handling, and related platform workflows between customers and the providers involved in the relevant order flow.
Service providers
We may share information with vendors that help us operate the platform, such as:
- cloud hosting providers;
- email and communication providers;
- payment processors;
- identity and authentication providers;
- analytics or logging providers; and
- support, security, or infrastructure providers.
These parties may process information on our behalf subject to contractual or operational controls.
Legal and business transfers
We may disclose information:
- to comply with applicable law, legal process, or government request;
- to enforce our terms and protect the rights, safety, and security of Zercut, users, or others;
- in connection with a merger, acquisition, financing, restructuring, or sale of assets; or
- with your direction or consent.
6. Cookies and Similar Technologies
Cookies are small text files placed on a device when you visit a website or use an online service. Similar technologies can include local storage, pixels, tags, SDKs, and other mechanisms that store or access information on a device or browser.
We use cookies and similar technologies for purposes such as:
- keeping users signed in;
- maintaining session and security state;
- remembering preferences and form inputs;
- improving platform performance and reliability;
- measuring usage and diagnosing issues; and
- supporting other operational, security, or analytics functions.
Cookie categories
Strictly necessary cookies
These cookies are used to operate core platform features such as authentication, session continuity, security controls, and load balancing.
Functional cookies
These cookies help remember choices or settings and improve the usability of the platform.
Analytics or measurement cookies
These cookies help us understand how users interact with the platform, diagnose issues, and improve performance.
Third-party cookies or similar technologies
Some service providers may set their own cookies or similar technologies when delivering embedded or integrated functionality. Their use is governed by their own policies.
Consent and controls
Where required by law, we will:
- tell users that cookies or similar technologies are used;
- explain what they do and why; and
- obtain consent before storing or accessing non-essential cookies or similar technologies.
Users can usually control cookies through browser settings, device settings, or consent tools we may make available. Blocking or deleting cookies may affect the availability or performance of certain platform features.
Current implementation note
Before publication, this policy should be reviewed against the platform’s actual runtime behavior to confirm:
- which cookies are in use;
- whether any analytics, advertising, or third-party tracking tools are enabled;
- which cookies are strictly necessary versus optional; and
- whether a cookie consent banner or preference center is required in the relevant jurisdictions.
This section reflects current regulatory expectations that cookie disclosures be clear and easily available, including the ICO’s guidance on cookies and similar technologies:
https://ico.org.uk/for-organisations/direct-marketing-and-privacy-and-electronic-communications/guide-to-pecr/cookies-and-similar-technologies/
7. Data Retention
We retain personal information for as long as reasonably necessary to:
- provide the platform and maintain account history;
- support orders, disputes, invoicing, and payment records;
- comply with legal, tax, accounting, and regulatory obligations;
- enforce agreements; and
- protect the platform, users, and business from fraud, abuse, or legal claims.
Retention periods may vary depending on the type of information and the context in which it was collected.
8. Data Security
We use reasonable administrative, technical, and organizational measures to protect personal information. No security measure is perfect, and we cannot guarantee absolute security.
Users are responsible for maintaining the confidentiality of their credentials and for protecting systems and devices used to access the platform.
9. International Transfers
Depending on our infrastructure and service providers, personal information may be processed in countries other than the country where you are located. Where required, we take reasonable steps to support lawful transfer mechanisms.
10. Your Rights and Choices
Depending on your location and applicable law, you may have rights to:
- access personal information;
- correct inaccurate information;
- delete personal information;
- object to or restrict certain processing;
- withdraw consent where processing is based on consent; and
- request information about disclosure practices.
To exercise rights, contact [LEGAL CONTACT EMAIL].
We may need to verify your identity before responding.
California privacy disclosures
If you are a California resident and applicable law covers our processing activities, you may have rights under the CCPA/CPRA, including rights to know, delete, correct, and limit certain uses of personal information, subject to legal exceptions. See:
- California Attorney General CCPA page: https://oag.ca.gov/privacy/ccpa
- California Privacy Protection Agency FAQs: https://cppa.ca.gov/faq.html
Zercut does not currently describe itself in this draft as “selling” personal information or “sharing” personal information for cross-context behavioral advertising. That should be verified against the final analytics, advertising, and data-sharing setup before publication.
11. Children’s Privacy
The platform is not directed to children, and we do not knowingly collect personal information from children in violation of applicable law.
12. Third-Party Services and Links
The platform may integrate with or link to third-party services. Their privacy practices are governed by their own notices and policies, not this Privacy Policy.
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. If we make material changes, we will provide reasonable notice before the changes take effect when required by applicable law, such as by email, in-product notice, or another reasonable method. Updated versions become effective when posted or on the stated effective date.
14. Contact
Questions or requests related to this Privacy Policy may be sent to:
[LEGAL CONTACT EMAIL]
[LEGAL ENTITY NAME]
[LEGAL ENTITY ADDRESS]