Hellozon
Notifications

Privacy Policy

How we protect your personal data

Last updated: 05/11/2026

Table of contents

1. Introduction

Hellozon (“we”, “us”, “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and safeguard personal information when you use our service.

Where the EU General Data Protection Regulation (GDPR) applies to you, we process personal data in line with GDPR requirements. We also comply with applicable U.S. privacy laws where they apply to our processing.

By using Hellozon, you agree to the practices described here.

2. Data controller

Controller: Hellozon Inc.

  • Address: 1 Market Street, Suite 100, San Francisco, CA
  • Email: privacy@hellozon.com
  • PEC / certified email: pec@hellozon.com

The controller is responsible for personal data processed in connection with Hellozon.

3. Data we collect

3.1 Information you provide

We may collect:

  • Identity: name, date of birth, tax identifiers you choose to enter
  • Contact: email, mailing address
  • Tax-related: income, obligations, deadlines, documents you upload
  • Account: username, password (stored using secure hashing)
  • Preferences: settings and notification choices

3.2 Information collected automatically

When you use the service we may automatically collect:

  • Usage data: pages viewed, session duration, features used
  • Technical data: IP address, browser type, OS, device identifiers
  • Cookies and similar technologies as described below
  • Location: only if you explicitly allow it

3.3 Third-party sources

We may receive information from:

  • Authentication providers (e.g. Google)
  • Payment processors (e.g. PayPal)
  • Analytics providers where enabled

4. How we use data

We use personal data to:

4.1 Provide the service

  • Create and manage your account
  • Deliver tax organization features you request
  • Run calculations, reminders, and storage you enable
  • Provide customer support

4.2 Communications

  • Deadline and account notifications
  • Service-related messages
  • Marketing only where you have opted in
  • Technical support

4.3 Improve the service

  • Understand usage to improve features
  • Develop new functionality
  • Fix technical issues
  • Personalize experience where appropriate

4.4 Legal compliance

  • Meet tax, accounting, or regulatory duties where applicable
  • Respond to lawful requests from authorities
  • Prevent fraud and abuse

6. Retention

We keep personal data only as long as needed for the purposes described:

  • Account data: until you delete your account (subject to legal holds)
  • Tax-related records: as required by applicable recordkeeping rules (often several years)
  • Usage logs: typically up to 24 months unless a shorter period applies
  • Cookies: per our cookie disclosures
  • Marketing: until you withdraw consent or opt out

When retention ends, we delete or anonymize data securely.

7. Sharing

We do not sell your personal data. We may share information only as follows:

7.1 Service providers

Vendors who help us operate, such as:

  • Hosting and cloud infrastructure
  • Email and notification delivery
  • Payment processing
  • Analytics (where enabled)
  • Customer support tools

7.2 Legal requirements

We may disclose data if required by:

  • Tax authorities (e.g. IRS)
  • Courts or regulators
  • Law enforcement with lawful process

7.3 Safety

To prevent fraud, abuse, or security incidents.

8. Security

We use appropriate technical and organizational measures, which may include:

  • Encryption in transit (and at rest where applicable)
  • Access controls and monitoring
  • Backups and recovery procedures
  • Patching and vulnerability management
  • Logging and review for security events

No method of transmission or storage is 100% secure. Use a strong password and do not share your login credentials.

9. Your rights

Depending on your location, you may have rights such as:

9.1 Access

Request a copy of or information about data we hold about you.

9.2 Correction

Request correction of inaccurate data.

9.3 Deletion

Request deletion where applicable law allows.

9.4 Portability

Receive certain data in a structured, machine-readable format.

9.5 Objection

Object to processing based on legitimate interests, and opt out of marketing.

9.6 Restriction

Request restriction of processing in limited circumstances.

9.7 Withdraw consent

Where we rely on consent, you may withdraw it at any time.

9.8 Complaints

You may lodge a complaint with your local data protection authority (in the EU) or a U.S. regulator where applicable.

To exercise rights, contact us using the details in section 12 or your account settings where available.

10. Cookies

We use cookies and similar technologies as follows:

10.1 Essential

Required for the site to work (session, security).

10.2 Functional

Remember preferences and improve usability.

10.3 Analytics

Help us understand how the site is used.

10.4 Marketing

Used for personalized ads only where you consent.

You can control cookies through your browser or our consent banner where provided.

11. Changes

We may update this Privacy Policy. The “Last updated” date at the top will change when we do.

For material changes we may notify you by:

  • Email
  • In-app message
  • Website notice

Please review this page periodically.

12. Contact

For questions about this policy or our processing of personal data:

Data protection contact

  • Email: Use the privacy or legal email in your branding settings, or reach us via the contact page.
  • Mail: 1 Market Street, Suite 100, San Francisco, CA

Privacy support

EU supervisory authorities
If GDPR applies to you and you believe we have processed your data unlawfully, you may lodge a complaint with your local data protection authority.