Privacy Policy

1. Introduction

Welcome to Zilla (zilla.so), an AI company creation platform. Zilla Inc., a Delaware corporation (“Zilla,” “we,” “us,” or “our”), is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and handle your personal information when you visit our website, join our waitlist, participate in our referral program, or use our services.

This Privacy Policy applies to all individuals who interact with Zilla, including website visitors, waitlist members, and active users. If you do not agree with our practices, please do not use our services.

2. Information We Collect

2.1 Account & Waitlist Data

When you sign up for our waitlist or create an account, we collect your email address (required), name (optional), and referral code.

2.2 Referral Program Data

To operate our referral program and track referrals, we collect referral relationships (who referred whom), referral count and credit balance, and referral source (e.g., organic, meta ad, Google ad, Reddit, Twitter, Product Hunt, Indie Hackers).

2.3 Marketing & Attribution Data

We collect UTM parameters (utm_source, utm_medium, utm_campaign, utm_content) and referral attribution cookie data to understand how you found us.

2.4 Technical Data

To protect our platform and prevent fraud, we collect IP addresses and user agent strings (browser and device information) during waitlist signup. These are retained for 90 days.

2.5 Payment Data (Post-Launch)

Payment information is processed through Stripe Connect. Zilla does not directly store credit card numbers. We receive only the last four digits of payment methods, transaction history, and billing address.

2.6 Affiliate Payout Data (Post-Launch)

If you participate in our affiliate program, payout details (bank account info or USDC wallet address) are processed via Stripe Connect and not stored directly by Zilla.

2.7 Communication Data

We send emails through Loops.so and collect email open and click data for optimizing communications, along with your communication preferences.

3. How We Use Your Information

We use your information to operate the waitlist and referral program, process signups, send transactional emails, track referral attribution and calculate rewards, process affiliate payouts, prevent fraud (IP deduplication, disposable email rejection, device fingerprinting), improve our product and analyze growth metrics, measure marketing campaign effectiveness, and comply with legal obligations.

4. Sharing Your Information

4.1 Service Providers

We share your information with trusted service providers: Supabase (database hosting), Stripe Connect (payment processing and affiliate payouts), Loops.so (transactional email delivery), and Vercel (website hosting). All providers are contractually required to maintain confidentiality and security.

4.2 Legal Requirements

We may disclose information if required by law, including subpoenas, court orders, government requests, or law enforcement investigations.

4.3 No Sale of Personal Data

Zilla does not sell, rent, or trade your personal data to third parties for marketing purposes.

4.4 Business Transfers

If Zilla is acquired or merged, your information may be transferred as part of that transaction. We will provide notice and the opportunity to opt-out if your rights would materially change.

5. Cookies & Tracking

We use a first-party cookie with a 60-day lifespan for referral attribution. When you visit Zilla with a referral code in the URL, we set a cookie to credit the appropriate referrer even if you sign up in a future session. Most browsers allow you to refuse cookies; however, disabling cookies may affect referral attribution accuracy.

We may also use analytics tools to understand how users interact with our website, including IP addresses, user agent strings, and click behavior.

6. Data Security

We employ industry-standard security measures: all data in transit is encrypted via HTTPS/TLS, data at rest is encrypted in our databases, Supabase row-level security ensures users can only access their own data, and we implement rate limiting on API endpoints. While we maintain strong security, no method of transmission over the internet is completely secure.

7. Data Retention

Waitlist data: Retained until you request deletion or until waitlisted users are converted to active accounts.

Account data: Retained while your account is active plus 12 months after deletion.

Affiliate & payment records: Retained for 7 years for tax and financial compliance.

IP addresses & user agents: Retained for 90 days for fraud prevention, then automatically deleted.

Referral data: Maintained for the lifetime of the referral program. Deleted accounts may have referral data retained in anonymized form.

8. Your Rights

You have the right to access your personal information and receive it in a portable format (CSV or JSON), request deletion of your data (subject to legal retention requirements), opt out of marketing emails while still receiving transactional notifications, and correct inaccurate or incomplete information.

To exercise any right, contact legal@zilla.so. We respond to all requests within 30 days.

9. Children’s Privacy

Zilla is not intended for anyone under the age of 18. We do not knowingly collect personal information from anyone under 18. If we become aware that we have collected information from someone under 18, we will delete it promptly.

10. International Data Transfers

Zilla operates in the United States. If you are located outside the United States, your information will be transferred to, stored in, and processed in the United States. By using Zilla, you consent to this transfer and the application of U.S. law.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by updating the “Last Updated” date, sending an email notification, and posting a notice on our website. Your continued use of Zilla after changes constitutes acceptance.

12. Governing Law

This Privacy Policy is governed by the laws of the State of Delaware, without regard to its conflict of law provisions.

13. Contact

For questions about this Privacy Policy or to exercise your rights: legal@zilla.so

Zilla, Inc., Wilmington, Delaware, USA