zoomp.it

Privacy Policy & Cookie Policy

Last updated: January 2025

1. Introduction

ByeByte Srl ("we", "us", or "our") operates Zoomp.it ("the Service"). We are committed to protecting your privacy and ensuring transparency about how we collect, use, and protect your personal data.

This Privacy Policy explains our practices regarding the collection, use, and disclosure of your personal information when you use our Service. By using the Service, you agree to the collection and use of information in accordance with this policy.

This policy complies with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

2. Data Controller

The data controller responsible for your personal data is:

ByeByte Srl
C.F. e P.IVA: 08846900721
R.E.A. BA - 654296
Email: byebyte@pec-amt.com

For any questions or concerns regarding your personal data, please contact us using the information above.

3. Information We Collect

3.1 Information You Provide

We collect information that you provide directly to us, including:

  • Account Information: Name, email address, and password when you create an account
  • Profile Information: Optional profile information you choose to provide
  • Content: Links, slugs, destination URLs, and notes you create through the Service
  • Payment Information: Payment details processed through our third-party payment processor (Stripe)
  • Communication: Messages you send to us through contact forms or support channels

3.2 Information Collected Automatically

When you use the Service, we automatically collect certain information:

  • Usage Data: Information about how you interact with the Service, including pages visited, features used, and time spent
  • Device Information: Device type, operating system, browser type, and device identifiers
  • Log Data: IP address, access times, error logs, and other technical information
  • Link Analytics: Visit data including referrer, user agent, device type, location (country, region, city), and UTM parameters
  • Cookies and Tracking Technologies: As described in our Cookie Policy below

3.3 Information from Third Parties

We may receive information about you from third-party services, such as:

  • Authentication Providers: When you sign in using email authentication
  • Payment Processors: Stripe provides us with payment transaction information
  • Analytics Services: Aggregated usage statistics and analytics data

4. How We Use Your Information

We use the information we collect for the following purposes:

  • Service Provision: To provide, maintain, and improve the Service, including link creation, redirection, and analytics
  • Account Management: To create and manage your account, process transactions, and send account-related communications
  • Authentication: To authenticate your identity and secure your account
  • Communication: To respond to your inquiries, provide customer support, and send service-related notifications
  • Analytics: To analyze usage patterns, improve our Service, and develop new features
  • Legal Compliance: To comply with legal obligations, enforce our Terms of Service, and protect our rights
  • Security: To detect, prevent, and address security issues and fraudulent activity
  • Marketing: With your consent, to send promotional communications about our Service

5. Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds:

  • Contract Performance: To fulfill our contractual obligations to provide the Service
  • Legitimate Interests: To improve our Service, ensure security, and prevent fraud
  • Consent: When you have given explicit consent, such as for marketing communications
  • Legal Obligation: To comply with applicable laws and regulations

6. Data Sharing and Third Parties

6.1 Service Providers

We share your information with trusted third-party service providers who assist us in operating the Service:

  • Payment Processing: Stripe processes payment transactions. Stripe's privacy policy applies to payment data.
  • Email Services: We use email service providers (Brevo/SendGrid) to send transactional and marketing emails
  • Hosting and Infrastructure: Cloud hosting providers that store and process data on our behalf
  • Analytics: Analytics services that help us understand Service usage (we use anonymized data where possible)

6.2 Business Transfers

In the event of a merger, acquisition, or sale of assets, your personal data may be transferred to the acquiring entity.

6.3 Legal Requirements

We may disclose your information if required by law, court order, or government regulation, or to protect our rights, property, or safety, or that of our users.

6.4 No Sale of Data

We do not sell, rent, or trade your personal data to third parties for their marketing purposes.

7. Cookie Policy

7.1 What Are Cookies

Cookies are small text files stored on your device when you visit a website. They help websites remember your preferences and improve your experience.

7.2 Types of Cookies We Use

Essential Cookies:

  • Required for the Service to function properly
  • Used for authentication, session management, and security
  • Cannot be disabled without affecting Service functionality

Analytics Cookies:

  • Help us understand how visitors use the Service
  • Collect anonymized usage statistics
  • Used to improve Service performance and user experience

Preference Cookies:

  • Remember your preferences (e.g., theme settings)
  • Enhance your personalized experience

7.3 Managing Cookies

You can control cookies through your browser settings. Most browsers allow you to refuse or delete cookies. However, disabling essential cookies may affect Service functionality.

8. Your Rights (GDPR)

Under GDPR and applicable data protection laws, you have the following rights:

  • Right of Access: Request a copy of the personal data we hold about you
  • Right to Rectification: Request correction of inaccurate or incomplete data
  • Right to Erasure: Request deletion of your personal data ("right to be forgotten")
  • Right to Restrict Processing: Request limitation of how we process your data
  • Right to Data Portability: Request your data in a structured, machine-readable format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent for processing based on consent
  • Right to Lodge a Complaint: File a complaint with your local data protection authority

To exercise these rights, please contact us at byebyte@pec-amt.com. We will respond to your request within 30 days.

9. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

  • Account Data: Retained while your account is active and for a reasonable period after account closure
  • Transaction Data: Retained as required by financial regulations (typically 7-10 years)
  • Analytics Data: Retained in anonymized form for analysis purposes
  • Legal Requirements: Some data may be retained longer to comply with legal obligations

When data is no longer needed, we securely delete or anonymize it.

10. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction:

  • Encryption of data in transit (HTTPS/TLS)
  • Secure password hashing and authentication
  • Regular security assessments and updates
  • Access controls and employee training
  • Secure data storage and backup procedures

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

11. International Data Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer data outside the EEA, we ensure appropriate safeguards are in place:

  • Standard Contractual Clauses approved by the European Commission
  • Adequacy decisions by the European Commission
  • Other legally recognized transfer mechanisms

By using the Service, you consent to the transfer of your data to countries outside the EEA as described above.

12. Children's Privacy

The Service is not intended for individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected data from a child under 16, we will take steps to delete such information promptly.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. We may also notify you via email for significant changes.

Your continued use of the Service after changes become effective constitutes acceptance of the updated Privacy Policy.

14. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Data Protection Contact:
ByeByte Srl
Email: byebyte@pec-amt.com
C.F. e P.IVA: 08846900721
R.E.A. BA - 654296

You also have the right to lodge a complaint with your local data protection authority if you believe we have not addressed your concerns adequately.