Privacy Policy

1. Introduction

ComplyZen ("we," "our," or "us") operates the website complyzen.ai and the ComplyZen compliance platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services.

2. Information We Collect

We collect information you provide directly to us, including: account information such as your name, email address, company name, and industry when you create an account; payment information processed securely through Stripe when you subscribe to a paid plan; compliance data you input during assessments, including industry type, company size, data handling practices, and regulatory requirements; and usage data including pages visited, features used, and interaction patterns to improve our services.

3. How We Use Your Information

We use the information we collect to provide and maintain our compliance assessment and policy generation services, process your subscription payments, send you important service updates, improve our platform and develop new features, ensure the security of our platform, and comply with legal obligations.

4. AI Processing

ComplyZen uses AI (powered by Anthropic's Claude) to generate compliance assessments and policy documents. The information you provide during assessments is sent to AI services for processing. We do not use your data to train AI models. AI-generated outputs are stored in your account for your access only.

5. Data Sharing

We share your information only with the following service providers who help us operate our platform: Supabase (database and authentication), Stripe (payment processing), Anthropic (AI processing for assessments and policies), and Vercel (website hosting). We do not sell your personal information to third parties.

6. Data Security

We implement appropriate technical and organizational measures to protect your data, including encryption in transit via TLS, row-level security in our database ensuring users can only access their own data, secure authentication through Supabase Auth, and PCI-compliant payment processing through Stripe.

7. Your Rights

You have the right to access, correct, or delete your personal data. You may export your compliance assessments and generated policies at any time. To exercise these rights or delete your account, contact us at privacy@complyzen.ai.

8. Cookies

We use essential cookies required for authentication and platform functionality. We use analytics cookies to understand how visitors interact with our website. You can control cookie preferences through your browser settings.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page and updating the "Last updated" date.

10. Contact Us

If you have questions about this Privacy Policy, contact us at privacy@complyzen.ai.

You can also reach us through our contact page.