Privacy Policy

1. Overview

Zaventra.io ("Zaventra," "we," "us," or "our") provides SEO, web design and development, social media marketing, and related digital growth services. This Privacy Policy explains what information we collect when you interact with our website, our marketing channels, and our client engagements, how we use that information, and the rights you have over it.

By using zaventra.io or engaging Zaventra as a service provider, you agree to the practices described in this policy. If you do not agree, please discontinue use of the site and our services.

2. Information We Collect

We collect only the information needed to operate our website, respond to inquiries, deliver our services, and meet our legal obligations.

Information you provide

Contact details you submit through our forms (name, work email, company, website, role, and message).
Project information you share during scoping calls, proposals, and active engagements.
Billing details where applicable (handled by our payment processor; we do not store full card data).
Communications you send to us by email, calendar invites, or messaging platforms.

Information collected automatically

Technical data such as IP address, device type, browser, referring URL, and timestamps.
Aggregated usage analytics (pages viewed, navigation paths, approximate location at country/region level).
Performance and reliability data used to diagnose issues and maintain Core Web Vitals.

Information from third parties

Publicly available business data used to qualify inbound inquiries (company name, domain, public role).
Data shared by clients to operate authorized integrations (analytics, search console, ad platforms).

3. How We Use Your Information

We use the information we collect for the following purposes:

Respond to your inquiries and deliver requested information.
Provide, maintain, and improve our services and client deliverables.
Operate, secure, and monitor our website and infrastructure.
Communicate updates, proposals, reports, and service-related notices.
Comply with legal, tax, and accounting obligations.
Detect, prevent, and address fraud, abuse, or security incidents.

4. Legal Bases for Processing

Where the GDPR or similar laws apply, we process personal data on the following bases: performance of a contract (delivering services you have engaged us for), legitimate interests (operating our business, securing our systems, qualifying inbound leads), consent (where you have opted into marketing communications), and legal obligation (tax, accounting, regulatory compliance).

5. Cookies and Similar Technologies

We use a minimal set of cookies and similar technologies to operate the website, remember preferences such as theme selection, and measure aggregate traffic. We do not use cross-site advertising trackers on this website.

You can control cookies through your browser settings. Disabling certain cookies may affect site functionality such as remembering your light/dark theme preference.

6. How We Share Information

We do not sell personal information. We share information only with the following categories of recipients, and only as necessary:

Service providers that operate our infrastructure (hosting, analytics, email delivery, CRM, scheduling).
Professional advisors (legal, accounting, insurance) under confidentiality obligations.
Authorized client integrations operated on behalf of an engaged client.
Authorities, where required by law, valid legal process, or to protect rights, property, or safety.
Successor entities in connection with a merger, acquisition, or sale of assets, subject to equivalent protections.

7. Data Retention

We retain personal information only for as long as needed to fulfil the purposes set out in this policy, comply with our legal and contractual obligations, resolve disputes, and enforce our agreements. Engagement records are typically retained for the duration of the contract plus a reasonable archival period required by tax and accounting law.

8. Security

We apply industry-standard safeguards including transport encryption (HTTPS/TLS), access controls, least-privilege permissions, secure credential management, and regular review of third-party processors. No system is perfectly secure; if you believe your data has been compromised, contact us immediately at security@zaventra.io.

9. International Data Transfers

We operate globally and may process data in countries other than the one in which you reside. Where required, we rely on appropriate safeguards such as Standard Contractual Clauses or equivalent mechanisms to protect cross-border transfers.

10. Your Rights

Depending on your jurisdiction, you may have the right to access, correct, delete, port, or restrict processing of your personal data, and to withdraw consent where processing is based on consent. To exercise these rights, contact us at privacy@zaventra.io. We will respond within the timeframes required by applicable law.

11. Children's Privacy

Our website and services are directed to businesses and professional audiences and are not intended for children under 16. We do not knowingly collect personal information from children.

12. Third-Party Links

Our site may link to third-party websites and platforms operated by others. We are not responsible for the privacy practices of those sites. We encourage you to review the privacy notices of any third-party services you visit.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes to our practices or for legal, operational, or regulatory reasons. The "Last updated" date at the top of this page indicates when this policy was most recently revised. Material changes will be highlighted on the website.

14. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at privacy@zaventra.io or through our contact page.