Privacy Policy

Last updated: December 2025

Introduction

NoCode18 ("we", "us", "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and protect your personal information when you use our platform Zephly.

Data Controller: Flavien Nolann 42400 Saint-Chamond, France Email: support@zephly.ai

Data We Collect

We collect the following types of data:

Account Information:

  • Email address (required for registration)
  • Name or username
  • Profile information you choose to provide

Usage Data:

  • Workflows and automations you create
  • Files you upload (artifacts)
  • Service usage statistics
  • Credit consumption history

Technical Data:

  • IP address
  • Browser type and version
  • Device information
  • Cookies and similar technologies

Payment Data:

  • Payment transactions are processed securely by Stripe
  • We do not store your full credit card details

How We Use Your Data

We use your data to:

  • Provide our services: Create and manage your account, process workflows, store your artifacts
  • Process payments: Handle subscriptions and credit purchases via Stripe
  • Improve our platform: Analyze usage patterns to enhance features
  • Communicate with you: Send service updates, respond to support requests
  • Ensure security: Detect and prevent fraud or abuse
  • Comply with laws: Meet legal obligations and respond to legal requests

Data Sharing

We share your data only with:

Service Providers:

  • Stripe: Payment processing (USA, EU SCCs)
  • Vercel: Website hosting (USA, EU SCCs)
  • Google Cloud Platform: Data storage and AI services (EU region)
  • Google Analytics: Traffic analysis (with your consent)
  • PostHog: Product analytics (EU-hosted, with your consent)
  • AI providers: OpenAI, Anthropic, Google AI, ElevenLabs, etc. to execute your workflows (data processed per their terms)

Legal Requirements: We may disclose data if required by law or to protect our rights.

We never sell your personal data to third parties.

Data Retention

  • Active accounts: Data is retained while your account is active
  • Deleted accounts: Personal data is deleted within 30 days
  • Artifacts: Deleted upon account deletion or when you remove them
  • Legal requirements: Some data may be retained longer for legal compliance

Your Rights (GDPR)

Under the GDPR, you have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Portability: Receive your data in a portable format
  • Objection: Object to certain types of processing
  • Restriction: Request limited processing of your data
  • Withdraw consent: Where processing is based on consent

To exercise these rights, contact us at: support@zephly.ai

You also have the right to lodge a complaint with the CNIL (French Data Protection Authority): www.cnil.fr

Cookies

We use cookies for:

Essential Cookies:

  • Authentication and session management
  • Security features
  • Cookie consent preferences

Analytics Cookies (optional, with your consent): We use the following analytics services:

  • Google Analytics 4 (GA4): Traffic analysis, user acquisition, and marketing attribution. Data is sent to Google servers. Google Privacy Policy
  • PostHog: Product analytics, user behavior funnels, and session recordings. Session recordings mask all input fields by default for privacy. Data is hosted in the EU. PostHog Privacy Policy

These cookies help us understand how you use our platform to improve your experience.

Managing Your Preferences:

  • Use the "Cookie Settings" button in the footer to change your preferences
  • You can also manage cookies in your browser settings
  • Rejecting analytics cookies does not affect your access to the platform

Data Security

We implement appropriate security measures:

  • Encryption in transit (HTTPS/TLS)
  • Encryption at rest for stored data
  • Regular security audits
  • Access controls and authentication
  • Secure development practices

Despite our efforts, no system is 100% secure. We encourage you to use strong passwords and protect your account credentials.

International Transfers

Your data may be processed in countries outside the EEA. We ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses (SCCs)
  • Adequacy decisions where applicable
  • Compliance with GDPR requirements

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by:

  • Posting a notice on our website
  • Sending an email to registered users

The "Last updated" date at the top indicates when changes were last made.

Contact Us

For any questions about this Privacy Policy or your data:

Email: support@zephly.ai

We aim to respond to all requests within 30 days.

Questions? Contact us at support@zephly.ai

    Privacy Policy | Zephly | Zephly