Privacy Policy

Last updated: April 2025

1. Who we are

ZenConci is a marketplace connecting clients with independent service professionals, operating primarily in Europe. We are committed to protecting your personal data in compliance with the EU General Data Protection Regulation (GDPR) and applicable national data protection laws.

2. Data we collect

We collect only the data necessary to operate our service:

Clients

Name, email, phone number, address details for bookings, preferred language, and payment method (via Stripe — we do not store card data).

Service providers

Name, email, phone, city, service radius, languages spoken, bio, bank account details (via Stripe Connect), identity documents, certifications, public liability insurance proof, references, and availability schedule.

3. How we use your data

We use your data to match clients with eligible suppliers using our dynamic pricing algorithm, process and confirm payments, send booking and status notifications, enforce platform rules, comply with legal obligations, and improve our service. We do not sell your data to third parties.

4. Dynamic pricing and automated decisions

ZenConci uses an automated pricing algorithm to determine the price shown to clients and the payout offered to suppliers. This constitutes automated processing under Article 22 GDPR. The inputs include demand signals, location, service type, and time — not any special category personal data. You may contact us to request human review of any pricing outcome that you believe has adversely affected you.

5. Lawful basis

We process data under the following lawful bases:

Contract performance

Booking fulfilment and supplier onboarding.

Legal obligation

GDPR compliance and financial records.

Legitimate interests

Fraud prevention, platform integrity, and service improvement.

6. Data sharing

We share limited data between clients and suppliers only to the extent necessary to fulfil a booking (e.g. first name, service address, booking time). We do not share contact details in a way that facilitates off-platform arrangements. Suppliers are contractually prohibited from using client data for any purpose outside of the booked service.

7. Your rights

Under the GDPR you have the right to access, rectify, erase, restrict, object to, and port your data. You also have the right to lodge a complaint with your national supervisory authority. To exercise any right, email contact@zenconci.com. We will respond within 30 days.

8. Data retention

We retain booking and payment records for 7 years as required by financial regulations. Identity and insurance documents submitted by suppliers are retained for the duration of the supplier relationship and deleted within 90 days of account closure, unless a legal obligation requires otherwise.

9. Cookies

We use essential cookies only for authentication and session management. We do not use tracking or advertising cookies without your explicit consent.

10. Third-party processors

We use Supabase (database and authentication), Stripe (payments and supplier payouts), and Brevo (transactional notifications). Each operates under their own privacy policy and is bound by a data processing agreement with ZenConci.

11. International transfers

Your data is stored within the EU/EEA where possible. Where processors operate outside the EEA, we ensure appropriate safeguards are in place (Standard Contractual Clauses or equivalent).

12. Contact

For privacy enquiries: contact@zenconci.com