ZZetaEspañol

Legal

Privacy Policy

Última actualización · April 20, 2026

Zeta ("we", "the app") respects your privacy. This document describes what personal data we collect, how we use it, and your rights under Colombia's Ley Estatutaria 1581 of 2012 (Habeas Data) and GDPR when applicable.

1. Data we collect

  • Identifiers: email address, unique user ID (UUID), account creation date.
  • Financial information: transactions, balances, linked bank accounts (aliases you choose), categories, recipients, budgets, debt goals.
  • User-generated content: tags, notes, transaction descriptions, reminder settings.
  • Technical metadata: app version, operating system, device type. Used for diagnostics, not for ad tracking.

We do not collect: bank passwords, biometric data (Face ID/Touch ID is validated locally on your device), location, contacts, or browsing activity outside Zeta.

2. How we use your data

  • Provide core functionality: import statements, categorize, compute budgets, project debt.
  • Authenticate your account and keep your session active.
  • Send reminders and notifications you enable.
  • Diagnose errors and improve the app (aggregated telemetry, no personally identifiable data).

We do not sell your data. We do not share data with advertisers or third parties for commercial purposes.

3. How we protect your data

  • In transit: all communication between the app and our servers uses HTTPS/TLS 1.2+.
  • At rest:sensitive personal information (names, emails, transaction descriptions, recipients, balances, PDF passwords) is encrypted in the database with envelope encryption using per-user keys. Even our administrators cannot read it without the user's key.
  • Isolation: Row-Level Security (RLS) policies ensure each user only accesses their own records.
  • No cross-tracking: we do not use ad-tracking SDKs or third-party cookies.

4. Your rights

Under Law 1581/2012 and GDPR (where applicable), you have the right to:

  • Access: see what data we hold about you.
  • Rectification: correct inaccurate data.
  • Erasure: request deletion of your account and associated data.
  • Portability: export your data in a readable format.
  • Consent withdrawal: at any time.

To exercise these rights, email giraldo.0302@gmail.com. We respond within 15 business days.

5. Retention and deletion

We retain your data while your account is active. When you delete your account, we erase your personal data within 30 days. Aggregated, non-identifiable data may be retained for statistical purposes.

6. Minors

Zeta is not directed at children under 18. We do not knowingly collect data from minors. If we detect a minor's account, we will delete it.

7. Changes to this policy

We may update this policy. Material changes will be communicated in the app and via email before they take effect.

8. Contact

Data controller: giraldo.0302@gmail.com.

For complaints with the Colombian data protection authority, you may contact Superintendencia de Industria y Comercio (SIC) at www.sic.gov.co.