Privacy Policy

Account data: Your name, phone number, email address, business name, business type, and region. Collected during registration.

Business data: Sales transactions, product records, customer information, credit ledgers, staff accounts, store settings, and supplier records. You provide this when using the platform.

Payment data: Transaction references for M-Pesa, Tigo, Airtel, or bank payments. We do not store full mobile money credentials or bank account numbers.

Usage data: Feature usage patterns, session duration, device type, and browser information. Used to improve the product. This data is anonymised and aggregated.

AI queries: When you use Ziada AI, your query is sent to an AI model alongside relevant context from your store data. Queries are not retained beyond the current session and are not used to train any model.

We collect data only for the purposes needed to operate the Ziada platform:

• To provide the retail management features you signed up for
• To authenticate your identity and protect your account
• To process subscription payments and send billing receipts
• To respond to support requests
• To improve the product through anonymised usage analytics
• To comply with applicable Tanzanian law and legal obligations

We do not use your data for advertising, profiling, or selling to third parties.

Your data is stored on servers in Tanzania and encrypted at rest using AES-256 encryption. Data in transit is protected by TLS 1.3.

We perform regular backups. Access to production data is restricted to authorised Ziada engineering staff and logged for audit purposes.

In the event of a data breach that affects your personal information, we will notify you within 72 hours of becoming aware of it.

We use a small number of third-party services to operate the platform. These providers are contractually bound not to use your data for their own purposes:

• Cloud infrastructure: Hosting and storage
• AI inference: For Ziada AI queries only — no data retention by the model provider
• Payment verification: M-Pesa, Tigo, Airtel APIs for confirming subscription payments

We do not share your business data with any advertising networks, data brokers, or marketing platforms.

Ziada AI reads context from your store — sales, stock levels, customer records — to answer your questions accurately. This context is:

• Not stored beyond the duration of your session
• Not shared with other users or businesses
• Not used to train any AI model — by us or by our AI provider
• Processed under a zero-data-retention agreement with our AI provider

Active account data is retained for as long as your subscription is active plus 30 days.

After account closure, personal and business data is permanently deleted within 30 days. Payment records may be retained for 7 years for tax compliance purposes under Tanzanian law.

Anonymised usage analytics are retained indefinitely for product improvement purposes.

You have the right to:

• Access: Request a copy of all personal data we hold about you
• Correction: Update inaccurate data from within the platform or by contacting us
• Export: Download your business data in CSV or PDF format from Settings at any time
• Deletion: Request deletion of your account and associated data
• Portability: Receive your data in a machine-readable format

To exercise any of these rights, email contact@ziadapos.com. We will respond within 30 days.

Ziada uses a single session cookie (ziada_session) to keep you logged in. We do not use advertising cookies, tracking pixels, or third-party analytics cookies.

Theme preference (ziada-theme) is stored in browser localStorage, not transmitted to our servers.

We will notify you by email at least 14 days before any material changes to this policy take effect. Minor updates (corrections, clarifications) may be made without notice and will be reflected in the "Last updated" date above.

Data protection queries and rights requests:
contact@ziadapos.com
WhatsApp: 0692069230
Ziada Technologies Ltd · Dar es Salaam, Tanzania