Privacy Policy

Effective Date: May 23, 2026  |  Last Updated: June 3, 2026

Zuuzer LLC ("Zuuzer," "we," "us," or "our") operates the Zuuzer platform at zuuzer.com (the "Service"). This Privacy Policy explains how we collect, use, disclose, store, and protect your personal information. By using Zuuzer, you consent to the practices described herein.

1. Information We Collect

1.1 Information You Provide

Account information (name, email, phone, hashed password), profile details (providers: business name, bio, location, credentials), booking details (date, time, service, notes, beneficiary info), payment references (Stripe customer IDs and transaction references only — we never store card numbers or CVVs), reviews, ratings, support tickets, and any other information you voluntarily submit.

1.2 Automatically Collected

Device info, IP address, browser type, usage data, timezone (via browser Intl API), approximate location from IP, cookies, and access logs.

1.3 From Third Parties

Payment status from Stripe (not card details), authentication data from third-party sign-in providers.

2. How We Use Your Information

We use your information to: operate the Service; process bookings and payments; calculate your Zuuz reliability score and points; determine deposit requirements; manage waitlist notifications; send booking confirmations, reminders, and updates; respond to support requests; detect fraud and abuse; verify provider credentials; comply with legal obligations; and improve the user experience.

3. Phone Number and Email Usage

3.1 Phone Number and SMS

Your phone number is collected for account verification (OTP) and, if you have opted in, for optional SMS notifications. SMS messages are only sent to users who have explicitly opted in by checking the voluntary SMS opt-in checkbox during account creation or booking — this checkbox is unchecked by default and is not required to use the Service. Opted-in users receive transactional SMS messages only: booking confirmations, appointment reminders, cancellation notices, and waitlist alerts. No marketing or promotional SMS messages are ever sent. You may opt out at any time by replying STOP to any message or by updating your notification preferences in your account settings. Standard carrier messaging rates may apply. We never sell or share your phone number with marketers.

3.2 Email

Used for: account authentication, booking confirmations, payment receipts, refund notices, support ticket updates, security alerts, and occasional platform announcements (opt-out available for non-essential emails). Transactional emails cannot be opted out of while your account is active.

4. Information Sharing

We do not sell personal information. We share data with: providers you book with (name, phone, email, booking details); Stripe for payment processing; service vendors (Resend for email, Twilio for SMS, Render/Vercel for hosting) under data protection agreements; law enforcement when legally required; and in connection with business transfers (mergers, acquisitions).

5. Payment Data Security

Payments are processed by Stripe (PCI DSS Level 1). We never store full card numbers, CVVs, or bank details. We store only Stripe references and transaction metadata. All payment data in transit is encrypted via TLS 1.2+.

6. Zuuz Score and Points Data

Your reliability score is derived from booking history using a Bayesian algorithm. It is visible to you, used to calculate deposits and waitlist priority, and accessible to administrators. Providers see only the deposit requirement, never your score. Points balances and transaction history are stored in a persistent ledger visible to you and administrators.

7. Data Security

We use TLS/SSL encryption, bcrypt password hashing, JWT authentication with expiration, database access controls, and regular security monitoring. No system is 100% secure; we cannot guarantee absolute security.

8. Data Retention

We retain data while your account is active. After deletion, we may retain data as required by law (e.g., tax records for 7 years), for dispute resolution, fraud prevention, or in anonymized form for analytics.

9. Cookies

We use cookies for session management, authentication, preferences, and analytics. You can control cookies via browser settings; disabling them may limit functionality.

10. Your Rights

You may request to: access, correct, delete, or port your data; restrict processing; withdraw consent; or opt out of marketing. Email support@zuuzer.com — we respond within 30 days.

11. Children's Privacy

Not directed to individuals under 13. We do not knowingly collect children's data. Contact us if you believe a child has provided information.

12. Health Information

Zuuzer is a booking platform, not a healthcare provider. We do not collect, store, or process Protected Health Information (PHI) under HIPAA. Health information shared during appointments is managed by your provider under their own privacy practices. Zuuzer is not a covered entity or business associate under HIPAA.

13. State-Specific Rights

California (CCPA/CPRA): Rights to know, delete, correct, and opt out of data "sale" (we do not sell data). Submit requests to support@zuuzer.com.

North Carolina: Breach notification per N.C. Gen. Stat. § 75-65.

Other states: Residents of VA, CO, CT, UT, and other states with privacy laws may have additional rights.

14. International Users

Operated from the US. International users consent to data transfer to and processing in the United States.

15. Changes

Material changes communicated 30 days in advance via email and platform notice. Continued use constitutes acceptance.

16. Contact

Zuuzer LLC

6779 Overhills Rd #1005, Spring Lake, NC 28390, United States

Email: support@zuuzer.com  |  Phone: (910) 994-3884