Privacy Policy

1. Introduction and Scope

Zenovate ("we," "us," or "our") is committed to protecting your privacy and handling your personal data with transparency, integrity, and respect. This Privacy Policy explains in detail how we collect, use, disclose, store, and protect personal information when you visit our website at https://ghimnaxxxod.world (the "Website"), use our services, or interact with us in any way.

This Policy applies to all users of our Website, regardless of their geographic location. We have designed our data practices to comply with applicable privacy laws, including but not limited to:

• The General Data Protection Regulation (GDPR) – Regulation (EU) 2016/679
• The California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA)
• The Nevada Privacy of Information Collected on the Internet from Consumers Act (NRS Chapter 603A)
• The CAN-SPAM Act of 2003
• Other applicable US federal and state privacy laws

By accessing or using our Website, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our practices, please discontinue use of the Website.

2. Information We Collect

We collect personal information through various means, including information you provide directly, information collected automatically, and information from third parties. The categories of personal information we collect include:

2.1 Information You Provide Directly

When you interact with our Website, you may voluntarily provide us with the following types of personal information:

• Contact Information: Your full name and email address when you submit our contact form.
• Message Content: The content of messages you send us through our contact form.
• Consent Records: Records of your consent to our data processing activities, including the date, time, and method of consent.
• Account Information: If you create an account, your username, password (stored in hashed form), and profile details.
• Subscription Information: Plan selection and billing-related information when you subscribe to a paid plan.
• Communications: Any correspondence you send to us via email or other channels.

2.2 Information Collected Automatically

When you visit our Website, certain information is collected automatically through cookies, web beacons, and similar tracking technologies:

• Log Data: Your IP address, browser type and version, operating system, referring URLs, pages visited, time and date of visits, and time spent on pages.
• Device Information: Device type, screen resolution, language settings, and unique device identifiers.
• Usage Data: How you interact with our Website, including clicks, scrolling behavior, and navigation patterns.
• Cookie Data: Information stored in cookies placed on your device. See our Cookie Policy for full details.
• Location Data: Approximate geographic location derived from your IP address (country and city level only; we do not collect precise GPS location).

2.3 Information from Third Parties

We may receive information about you from third-party sources, including:

• Analytics providers (such as Google Analytics) that provide aggregated data about Website usage.
• Advertising networks that provide information about your interests and online behavior for marketing purposes (only if you have consented to marketing cookies).
• Payment processors that confirm successful transactions (we do not receive or store full payment card details).

3. Legal Bases for Processing (GDPR)

For users in the European Economic Area (EEA) and the United Kingdom, we process your personal data only where we have a valid legal basis. The legal bases we rely on are:

Processing Activity	Legal Basis	Details
Responding to contact form inquiries	Legitimate Interests (Art. 6(1)(f) GDPR)	We have a legitimate interest in responding to inquiries from prospective and existing users.
Analytics and website improvement	Consent (Art. 6(1)(a) GDPR)	We only use analytics cookies where you have provided explicit consent via our cookie banner.
Marketing communications	Consent (Art. 6(1)(a) GDPR)	We only send marketing communications where you have given explicit consent.
Strictly necessary cookies	Legitimate Interests (Art. 6(1)(f) GDPR)	Essential for the Website to function correctly and securely.
Compliance with legal obligations	Legal Obligation (Art. 6(1)(c) GDPR)	Where we are required by law to process your data.
Subscription and account management	Contract Performance (Art. 6(1)(b) GDPR)	Necessary to fulfill our contractual obligations to you as a subscriber.

4. How We Use Your Information

We use the personal information we collect for the following purposes:

• Service Delivery: To provide, maintain, and improve our Website and services, including processing your inquiries and managing your account.
• Communication: To respond to your messages, provide customer support, and send you service-related notifications.
• Analytics and Improvement: To understand how our Website is used, identify areas for improvement, and enhance user experience (subject to your cookie consent).
• Security: To detect, prevent, and address technical issues, fraud, and other security threats.
• Legal Compliance: To comply with applicable laws, regulations, and legal processes, including responding to lawful requests from public authorities.
• Marketing: To send you promotional information about our services, where you have given explicit consent or where permitted by applicable law.
• Personalization: To tailor content and recommendations to your preferences and usage patterns.
• Business Operations: For internal purposes such as auditing, data analysis, and research to improve our services.

5. Data Retention

We retain personal information only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable law. Our retention periods are as follows:

Data Category	Retention Period	Reason
Contact form submissions	24 months from submission	To maintain records of inquiries and provide follow-up support
Account information	Duration of account + 12 months after closure	To fulfill contractual obligations and handle disputes
Consent records	3 years from consent date	To demonstrate compliance with consent requirements
Server log files	90 days	Security monitoring and troubleshooting
Analytics data	26 months (aggregated)	Website performance analysis
Financial records	7 years	Tax and accounting legal requirements
Cookie consent records	13 months	To record and honor your cookie preferences

After the applicable retention period expires, we will securely delete or anonymize your personal information in accordance with our data destruction procedures.

6. Sharing and Disclosure of Personal Information

We do not sell, rent, or trade your personal information to third parties for their own marketing purposes. We may share your information in the following limited circumstances:

6.1 Service Providers

We engage trusted third-party service providers who assist us in operating our Website and delivering our services. These providers are contractually obligated to process your data only on our instructions and in accordance with this Privacy Policy. Categories of service providers include:

• Cloud hosting and infrastructure providers
• Email delivery services
• Analytics platforms (e.g., Google Analytics)
• Payment processors
• Customer support tools

6.2 Legal Requirements

We may disclose your personal information if required to do so by law or in response to valid requests by public authorities (e.g., a court order, subpoena, or government agency request), provided that such disclosure is consistent with applicable law.

6.3 Business Transfers

In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, your personal information may be transferred as part of that transaction. We will notify you via a prominent notice on our Website or by email before your personal information is transferred and becomes subject to a different privacy policy.

6.4 Protection of Rights

We may disclose information when we believe disclosure is appropriate to protect the rights, property, or safety of Zenovate, our users, or others; to enforce our Terms of Service; or to investigate potential violations.

6.5 With Your Consent

We may share your information with third parties when you have given us explicit consent to do so.

7. International Data Transfers

Zenovate is based in the United States. If you are located outside the United States, please be aware that information we collect may be transferred to, stored, and processed in the United States and other countries where our service providers operate. These countries may not have the same data protection laws as your country of residence.

For transfers from the EEA, UK, or Switzerland to countries not deemed adequate by the European Commission, we rely on appropriate safeguards such as:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• The EU-US Data Privacy Framework (where applicable)
• Binding Corporate Rules (where applicable)

You may request a copy of the safeguards we use for international data transfers by contacting us at the details provided in Section 14.

8. Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

8.1 Rights Under GDPR (EEA/UK Users)

• Right of Access (Art. 15): You have the right to request a copy of the personal data we hold about you and information about how we process it.
• Right to Rectification (Art. 16): You have the right to request correction of inaccurate or incomplete personal data.
• Right to Erasure (Art. 17): You have the right to request deletion of your personal data where there is no compelling reason for its continued processing ("right to be forgotten").
• Right to Restriction of Processing (Art. 18): You have the right to request that we restrict the processing of your personal data in certain circumstances.
• Right to Data Portability (Art. 20): You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller.
• Right to Object (Art. 21): You have the right to object to processing based on legitimate interests or for direct marketing purposes.
• Rights Related to Automated Decision-Making (Art. 22): You have the right not to be subject to decisions based solely on automated processing that significantly affect you.
• Right to Withdraw Consent: Where processing is based on consent, you may withdraw that consent at any time without affecting the lawfulness of processing before withdrawal.

8.2 Rights Under CCPA/CPRA (California Residents)

• Right to Know: You have the right to request information about the categories and specific pieces of personal information we have collected about you, the sources of that information, our business purposes for collecting it, and the categories of third parties with whom we share it.
• Right to Delete: You have the right to request deletion of personal information we have collected from you, subject to certain exceptions.
• Right to Correct: You have the right to request correction of inaccurate personal information we maintain about you.
• Right to Opt-Out of Sale or Sharing: We do not sell personal information. However, you have the right to opt out of the sharing of personal information for cross-context behavioral advertising.
• Right to Limit Use of Sensitive Personal Information: You have the right to limit our use of sensitive personal information to what is necessary for providing our services.
• Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights.

8.3 Nevada Privacy Rights

Nevada residents have the right to opt out of the sale of their personal information. As stated above, we do not sell personal information. If you have questions about this, please contact us.

8.4 How to Exercise Your Rights

To exercise any of the rights described above, please submit a request by:

• Using the contact form on our Website at ghimnaxxxod.world/#contact
• Calling us at +1 (702) 835-9295
• Writing to us at: Zenovate LLC, 5940 S Rainbow Blvd, Las Vegas, NV 89118, United States

We will respond to your request within 30 days (or within the timeframe required by applicable law). We may need to verify your identity before processing your request. We will not charge a fee for processing your request unless it is manifestly unfounded or excessive.

9. Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. Our security measures include:

• Encryption in Transit: All data transmitted between your browser and our servers is encrypted using TLS/SSL (HTTPS). We enforce HTTPS-only connections and do not allow mixed content.
• Encryption at Rest: Sensitive data stored in our databases is encrypted at rest using industry-standard encryption algorithms.
• Access Controls: Access to personal data is restricted to authorized personnel who need it to perform their job functions. All access is logged and monitored.
• Password Security: User passwords are stored using strong, salted cryptographic hashing algorithms. We never store passwords in plain text.
• Regular Security Audits: We conduct regular security assessments and vulnerability testing of our systems.
• Data Minimization: We collect only the minimum personal data necessary for the stated purposes.
• Incident Response: We maintain a data breach response plan and will notify affected individuals and relevant authorities as required by applicable law.

While we take all reasonable precautions, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security, but we are committed to maintaining the highest practical standards of data protection.

10. Cookies and Tracking Technologies

We use cookies and similar tracking technologies on our Website. For detailed information about the types of cookies we use, their purposes, retention periods, and how to manage your preferences, please refer to our Cookie Policy.

You can manage your cookie preferences at any time by clicking the "Cookie Settings" option in our cookie consent banner. Please note that disabling certain cookies may affect the functionality of our Website.

11. Children's Privacy

Our Website and services are not directed to children under the age of 13 (or 16 in certain jurisdictions, including the EEA). We do not knowingly collect personal information from children under these ages. If you are a parent or guardian and believe that your child has provided us with personal information, please contact us immediately at the details in Section 14, and we will take steps to delete such information from our systems.

If we become aware that we have inadvertently collected personal information from a child under the applicable age threshold, we will delete that information as quickly as possible.

12. Third-Party Links and Services

Our Website may contain links to third-party websites, including our embedded Google Maps integration. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party websites you visit. The inclusion of a link on our Website does not imply our endorsement of the linked site or its privacy practices.

Our Website uses Google Maps, which is subject to Google's Privacy Policy available at https://policies.google.com/privacy. By using the map feature on our Website, you acknowledge that your data may be processed by Google in accordance with their policies.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

• Post the updated Privacy Policy on this page with a new "Last Updated" date.
• Provide a prominent notice on our Website homepage for a period of 30 days following the update.
• Send an email notification to registered users where the changes are significant.

We encourage you to review this Privacy Policy periodically to stay informed about our data practices. Your continued use of the Website after the effective date of any changes constitutes your acceptance of the updated Privacy Policy.

14. Contact Us and Data Protection Officer

If you have any questions, concerns, or requests regarding this Privacy Policy or our data processing practices, please contact us:

15. Right to Lodge a Complaint

If you are located in the EEA or UK and believe that our processing of your personal data violates applicable data protection law, you have the right to lodge a complaint with your local supervisory authority. In the UK, this is the Information Commissioner's Office (ICO). In the US, you may contact the Federal Trade Commission (FTC) or your state's Attorney General office regarding privacy concerns.

We would, however, appreciate the opportunity to address your concerns before you contact a supervisory authority, so please reach out to us first.

16. Do Not Track Signals

Some browsers include a "Do Not Track" (DNT) feature that signals to websites that you do not want your online activity tracked. Our Website does not currently respond to DNT signals, as there is no industry-standard interpretation of DNT. However, you can manage your tracking preferences through our cookie consent banner and your browser settings.

17. California Shine the Light Law

California Civil Code Section 1798.83 permits California residents to request certain information about our disclosure of personal information to third parties for their direct marketing purposes. As stated in this Policy, we do not share personal information with third parties for their direct marketing purposes without your consent. California residents may contact us at the details in Section 14 for more information.