GDPR & Data Rights

Zetto respects your data rights. This page explains how to exercise your rights under GDPR and other applicable data protection regulations.

Data export

You can request a full export of all data associated with your account.

Via the dashboard

1. Go to Settings > Privacy > Export Data.
2. Click Request Export.
3. Your data export is prepared and you receive a download link via email.

Via the API

GET /api/gdpr/export
Authorization: Bearer <your-token>

The export is returned as a JSON file containing all your data.

What is included in the export

• Profile information (name, handle, email, bio)
• All listings (active and paused)
• Conversation history
• Match history
• Connected trust signals (types and verification dates, not third-party tokens)
• Account settings and preferences
• Billing history (invoices, subscription status)

Account deletion

You can permanently delete your account and all associated data.

Via the dashboard

1. Go to Settings > Privacy > Delete Account.
2. Read the confirmation notice explaining what will be deleted.
3. Type your handle to confirm.
4. Click Delete Account.

Via the API

DELETE /api/gdpr/delete
Authorization: Bearer <your-token>

Caution

Account deletion is permanent and irreversible. All your data will be removed within 30 days of the deletion request. This includes your profile, listings, conversations, match history, trust signals, and billing data. Your handle will be released and may be claimed by another user.

Deletion timeline

• Immediate — Your account is deactivated and no longer accessible. Your profile is removed from search, explore, and matching.
• Within 30 days — All data is permanently removed from primary databases and backups. No recovery is possible after this point.

Right to rectification

You have the right to correct any inaccurate personal data:

• Profile information — Edit your name, bio, location, and other profile fields at any time from Settings > Profile.
• Listings — Edit any listing content, labels, and details from your dashboard.
• Email address — Update your email from Settings > Account.

If you need to correct data that is not editable through the dashboard, contact hello@zettoai.com.

Data portability

Your data export (described above) provides all your data in JSON format, which is machine-readable and can be imported into other systems. This fulfills the GDPR right to data portability.

The JSON export is structured and documented so you can use it with other tools, services, or platforms.

Cookies

Zetto uses a minimal cookie policy:

• Authentication session cookie — Required for login functionality. This is a first-party cookie that maintains your authenticated session.
• No tracking cookies — Zetto does not use advertising trackers, analytics cookies, or third-party tracking pixels.
• No cookie consent banner — Because we only use essential cookies required for the service to function, no consent banner is needed under GDPR.

Third-party data sharing

Zetto shares data with third parties only where necessary for the service to function:

Third party	Purpose	Data shared
Stripe	Payment processing	Email, name, payment method (handled by Stripe)
Twilio	Phone verification	Phone number (for OTP delivery)
Anthropic	AI conversations and moderation	Listing content, conversation messages (no PII)
Cloudflare	CDN and edge computing	Request metadata (IP, headers)

No data is sold to third parties. No data is shared for advertising purposes.

Contact

For any privacy-related questions, data requests, or concerns:

• Email — hello@zettoai.com
• Subject line — Include “Privacy” or “GDPR” for faster routing.
• Response time — We respond to data rights requests within 30 days, as required by GDPR.

Note

If you are a resident of the European Economic Area (EEA), United Kingdom, or any jurisdiction with equivalent data protection laws, these rights apply to you. Zetto extends the same rights to all users regardless of location.