Privacy Policy

1. Who We Are

Zik4U (“we”, “us”, or “our”) operates the website https://zik4u.com and the Zik4U mobile application (collectively, the “Service”). This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use our Service.

For privacy inquiries, contact us at: privacy@zik4u.com

2. Data We Collect

We collect the following categories of personal data:

3. How We Use Your Data

We use your personal data for the following purposes:

• Providing and improving the Service (account management, music detection, feed personalization)
• Enabling social features (follow, discover compatible listeners, messaging)
• Processing payments and managing creator subscriptions
• Sending push notifications you have opted into
• Computing music compatibility scores and personalized recommendations
• Detecting and preventing fraud, abuse, and security threats
• Complying with legal obligations
• Sending transactional emails (password reset, subscription confirmations)

We do not sell your personal data to third parties. We do not use your listening data for advertising targeting.

4. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), our legal basis for processing your data is:

• Contract performance — to deliver the Service you signed up for
• Consent — for music detection, push notifications, and optional analytics
• Legitimate interests — for fraud prevention, security, and product improvement
• Legal obligation — for tax reporting, GDPR compliance, and law enforcement requests

5. Data Sharing & Third Parties

We share your data only with the following trusted service providers:

6. Data Retention

We retain your personal data as follows:

• Account data: As long as your account is active. Deleted within 30 days of account deletion request.
• Music listening data: Rolling 12-month history for personalization; anonymized aggregate data retained indefinitely.
• IP addresses: Anonymized after 30 days.
• Payment records: 7 years for tax and legal compliance.
• Push tokens: Deleted when you revoke notification permission or delete your account.

7. Your Rights

Depending on your jurisdiction, you have the following rights:

To exercise any right, email us at privacy@zik4u.com. We will respond within 30 days.

8. Cookies & Tracking

Our website uses minimal cookies:

• Essential cookies: Authentication session management (Supabase auth token). Required for the Service to function.
• Analytics: Anonymous usage analytics via Firebase Analytics. No cross-site tracking.

We do not use third-party advertising cookies or pixel trackers.

9. Data Security

We implement industry-standard security measures including TLS 1.3 encryption in transit, AES-256 encryption at rest (Supabase), Row-Level Security (RLS) policies on all database tables, and regular security audits. OAuth tokens for connected music services are stored encrypted and never exposed in plaintext. In the event of a data breach affecting your rights, we will notify you within 72 hours as required by GDPR.

10. Children's Privacy

The Service is not directed to children under 13 years of age (or 16 in the EEA). We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, contact us immediately at privacy@zik4u.com and we will delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you via email or an in-app notification at least 14 days before the changes take effect. Continued use of the Service after the effective date constitutes acceptance of the updated policy. The “Last updated” date at the top of this page reflects the most recent revision.

Questions?

If you have questions about this Privacy Policy or wish to exercise your rights, contact our Privacy Team: