Zevis

Privacy Policy

Last updated: May 7, 2026

This Privacy Policy describes how Zevis ("we," "our," or "us") collects, uses, discloses, and safeguards your information when you use our web extraction platform at zevis.cloud. We are committed to protecting your privacy and ensuring transparency in our data practices.

1. Information We Collect

1.1 Information You Provide Directly

  • Account Information: Email address, name, and account credentials when you register via Single Sign-On (SSO)
  • Payment Information: Billing details processed securely through our payment provider (Lemon Squeezy)
  • Profile Data: User preferences and settings you configure
  • Communications: Any information you provide when contacting our support team

1.2 Automatically Collected Information

  • Usage Data: Credit consumption, job history, session duration, and API usage patterns
  • Technical Data: IP address, browser type, device information, and operating system
  • Cookies: Essential cookies for authentication and session management (see Section 6)

2. How We Use Your Information

We use the information we collect for the following purposes:

  • Service Delivery: To provide and maintain our web extraction services
  • Account Management: To process your registration, authentication, and account operations
  • Billing & Payments: To process credit purchases, subscriptions, and generate invoices
  • Credit Management: To track and manage your credit balance and usage
  • Notifications: To send important account notifications, security alerts, and service updates
  • Service Improvement: To analyze usage patterns and improve our platform performance
  • Security: To detect, prevent, and address fraud, abuse, and security threats
  • Legal Compliance: To comply with applicable laws and regulatory requirements

3. Google API Services & Drive Integration

Zevis integrates with Google services to provide authentication and seamless data export (e.g., to Google Sheets or Google Cloud Storage). When you connect your Google account, we may request scopes such as /auth/drive.file to save extracted files on your behalf.

Zevis's use and transfer of information received from Google APIs to any other app will adhere to Google API Services User Data Policy, including the Limited Use requirements.

  • We do not share, sell, or use Google user data for advertising purposes.
  • We do not use Google user data to train generalized AI or machine learning models.
  • Data accessed via Google APIs is only used to deliver the specific features you request (such as exporting data to your Google Sheets).

4. Zero-Persistence Architecture

Zevis is built on a zero-persistence principle for user-extracted data:

  • All data extracted through our platform is processed in volatile RAM buffers only
  • Extracted data is automatically deleted immediately after successful transfer to your designated destination
  • We do not store, log, or retain any scraping results, page content, or API responses on disk
  • Our engineering practices prioritize short-lived memory buffers over persistent storage
  • Zero-footprint policy means your extracted data never touches our databases

This architecture ensures that your extracted data remains under your control at all times.

5. Data Retention

We retain different types of data for varying periods:

  • Account Data: Retained while your account is active. Upon account deletion, data is removed within 30 days.
  • Billing Records: Kept for legal compliance purposes (typically 6-10 years depending on jurisdiction)
  • Usage Logs: Aggregated usage statistics retained for service improvement (no personal identifiers)
  • Job Metadata: Job IDs, timestamps, and status retained for 90 days for debugging purposes
  • Security Logs: Retained for security monitoring and incident response

6. Cookies & Tracking Technologies

We use essential cookies only:

  • Authentication Cookies: Required for secure login and session management
  • Session Cookies: Maintain your logged-in state during active sessions
  • Security Cookies: Used for fraud prevention and security verification

We do not use cookies for advertising, tracking, or profiling purposes. Our cookies are strictly necessary for the proper functioning of our services.

7. Third-Party Services

We work with the following third-party service providers:

  • Lemon Squeezy - Payment processing. All payment data is handled directly by Lemon Squeezy in accordance with their Privacy Policy. We do not store your payment card details.
  • OAuth Providers - GitHub, Google, and other OAuth providers for authentication. When you sign in with OAuth, these providers share basic profile information with us.
  • Cloud Infrastructure - Hosting services for our platform infrastructure.

8. Data Security

We implement industry-standard security measures:

  • Encryption: All data in transit is encrypted via TLS 1.2+
  • Access Controls: Role-based access controls limit data access to authorized personnel
  • Network Security: Firewalls, DDoS protection, and intrusion detection systems
  • Regular Audits: Security assessments and vulnerability scanning
  • Employee Training: Security awareness training for all team members

While we strive to protect your data, no method of electronic transmission is 100% secure. We cannot guarantee absolute security, but we are committed to maintaining industry-standard protections.

9. Your Rights

You have the following rights regarding your personal data:

  • Right to Access: Request a copy of the personal data we hold about you
  • Right to Rectification: Request correction of inaccurate personal data
  • Right to Erasure: Request deletion of your personal data ("right to be forgotten")
  • Right to Data Portability: Request your data in a structured, machine-readable format
  • Right to Object: Object to processing of your personal data for certain purposes
  • Right to Withdraw Consent: Withdraw consent where processing is based on consent

To exercise these rights, please contact our support team. We will respond to your request within 30 days.

10. Children's Privacy

Our services are not intended for children under 13 years of age. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal information, please contact us immediately.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for international data transfers, including standard contractual clauses and adequacy decisions where applicable.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date at the top. We encourage you to review this Privacy Policy periodically.

13. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us: