Vynix LLC (30 N Gould St Ste N, Sheridan, WY 82801, USA) is the data controller for Zedrus (zedrus.com). This policy explains what we collect and how we use it. Short version: we collect the minimum needed to run the Service, we don't run ads, and we never sell your data.
1. What we collect
- Account: your email address.
- Content: your questionnaire answers and the trust-page content you edit and publish.
- Payments: subscription status and Stripe customer/subscription identifiers. Card details go directly to Stripe — we never see or store them.
- Technical: a session cookie (HttpOnly), basic server logs, and short-lived rate-limit counters keyed by IP.
2. How we use it
To provide the Service: authenticate you (magic-link emails), generate your draft trust page, host your published pages, process subscription payments, and protect the Service against abuse. We do not use your data for advertising and we do not sell it.
3. Subprocessors
We rely on a small set of providers to operate:
- Cloudflare — hosting, storage, and network security.
- Stripe — payment processing.
- Anthropic — AI drafting: your questionnaire answers are sent to the Claude API to generate your page copy.
- Resend — transactional email (magic links).
- Zoho — our mailbox for support email.
4. AI processing
Draft copy is generated by an AI model from the answers you provide. Only the content needed to draft your page is sent to the model provider; it is not used by us to train models.
5. Public content
Published trust pages are public web pages. Anything you choose to publish on your page is visible to anyone on the internet. Unpublishing removes the public page.
6. Cookies
We use a single first-party, HttpOnly session cookie to keep you signed in. No tracking or advertising cookies.
7. Retention and deletion
We keep your data while your account exists. You can unpublish pages at any time. To delete your account and associated data, email [email protected] and we will process the request within 30 days.
8. Security
Traffic is encrypted in transit (TLS). Sessions use opaque random tokens stored server-side. API keys follow least-privilege scoping. No system is perfectly secure, but we apply the same practices we help our users present.
9. Your rights
Depending on where you live (including US state privacy laws and the EU/UK GDPR), you may have rights to access, correct, export, or delete your personal data, and to object to or restrict certain processing. Exercise them by emailing [email protected]. For GDPR purposes the controller is Vynix LLC and processing is based on contract performance (running the Service) and legitimate interest (abuse prevention).
10. Children
The Service is not directed at children under 16 and we do not knowingly collect their data.
11. International transfers
Data is processed in the United States by the providers listed above.
12. Changes and contact
We may update this policy; changes appear on this page with a new "Last updated" date. Questions or requests: [email protected].
Zedrus · a Vynix LLC product · Terms of Service