Privacy Policy

Effective Date: January 1, 2026 · Last Updated: January 1, 2026

ZeroFTE LLC ("ZeroFTE," "we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit zerofte.com and use our services. Please read this policy carefully. If you disagree with its terms, please discontinue use of the site.

1. Information We Collect

1.1 Information You Provide Directly

We collect information you voluntarily provide when you:

• Fill out our contact or audit request form (name, email address, company name, monthly ad budget, and description of your advertising challenges)
• Email us or communicate with us through any channel
• Engage us as a client and provide billing, business, and campaign information

1.2 Information Collected Automatically

When you visit our website, we may automatically collect:

• Log data: IP address, browser type and version, pages visited, time spent, referring URL, and other diagnostic data
• Device data: device type, operating system, unique device identifiers
• Cookies and tracking technologies: see Section 4 below

1.3 Information from Third Parties

If you connect third-party advertising accounts (Google Ads, Meta Ads) to our services, we receive data from those platforms as authorized by you. This may include campaign performance metrics, audience data, and account-level statistics.

2. How We Use Your Information

We use the information we collect to:

• Provide, operate, and improve our performance marketing services
• Respond to your inquiries and deliver free ad audits
• Communicate with you about your account, campaigns, and results
• Send service-related communications (e.g., reports, invoices, updates)
• Analyze how our website is used to improve user experience
• Comply with legal obligations and enforce our Terms of Service
• Detect, prevent, and address fraud or security issues

We do not sell your personal data. We do not use your data to build advertising profiles for third-party advertising networks.

3. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA) or United Kingdom, we process your personal data under the following legal bases:

• Contract performance: Processing necessary to deliver services you have requested
• Legitimate interests: Improving our website and services, fraud prevention, and business communications
• Consent: Where you have given explicit consent (e.g., marketing communications)
• Legal obligation: Where we are required to process data to comply with applicable law

4. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to:

• Understand how visitors use our website (analytics)
• Remember your preferences
• Enable the functioning of certain features

Types of Cookies We Use

• Essential cookies: Required for the site to function. Cannot be disabled.
• Analytics cookies: Help us understand site traffic and usage (e.g., Google Analytics). These are anonymized where possible.
• Advertising cookies: Set by Google Ads and Meta (Facebook) pixel to measure ad performance and conversions, only when applicable to our marketing campaigns for our own business.

You can control cookies through your browser settings. Disabling cookies may affect the functionality of our website. To opt out of Google Analytics, visit tools.google.com/dlpage/gaoptout.

5. Third-Party Services

We work with the following third-party services that may process your data:

Google

We use Google Analytics for website analytics and Google Ads to run and manage advertising campaigns on behalf of our clients. Google may collect data about your use of our website and advertising activity in accordance with Google's Privacy Policy.

Meta (Facebook / Instagram)

We use the Meta Ads platform to manage advertising campaigns for our clients. Meta may collect and use data in accordance with Meta's Privacy Policy. The Meta Pixel may be present on our site for conversion measurement purposes.

Payment Processors

We use third-party payment processors (such as Stripe) to handle billing. We do not store your full payment card information. Payments are processed in accordance with the processor's own privacy policy and PCI-DSS standards.

Email and Communication Tools

We may use email service providers to communicate with you. These providers process your email address and message content as needed to deliver communications.

6. Data Retention

We retain your personal data for as long as necessary to provide our services and comply with our legal obligations. Specifically:

• Contact form submissions: up to 3 years, or until you request deletion
• Client account data: for the duration of the engagement and up to 5 years thereafter for legal and tax purposes
• Website analytics data: up to 26 months (Google Analytics default)

7. Your Rights

GDPR Rights (EEA / UK Residents)

You have the right to:

• Access: Request a copy of the personal data we hold about you
• Rectification: Request correction of inaccurate or incomplete data
• Erasure ("right to be forgotten"): Request deletion of your personal data
• Restriction: Request we limit how we use your data
• Portability: Receive your data in a structured, machine-readable format
• Object: Object to processing based on legitimate interests or for direct marketing
• Withdraw consent: Where processing is based on consent, withdraw it at any time

CCPA Rights (California Residents)

California residents have the right to:

• Know what personal information we collect and how it is used
• Request deletion of personal information we have collected
• Opt out of the sale of personal information (we do not sell personal information)
• Non-discrimination for exercising your privacy rights

To exercise any of these rights, contact us at tomas@zerofte.com. We will respond within 30 days (GDPR) or 45 days (CCPA). We may need to verify your identity before processing your request.

8. International Data Transfers

ZeroFTE operates primarily from the United States. If you are located outside the United States, your information may be transferred to and processed in the US, which may have different data protection laws than your country of residence.

For transfers from the EEA or UK, we rely on appropriate safeguards including Standard Contractual Clauses (SCCs) approved by the European Commission.

9. Data Security

We implement industry-standard security measures to protect your personal data, including encryption in transit (HTTPS/TLS), access controls, and regular security reviews. However, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security.

10. Children's Privacy

Our services are not directed to children under the age of 16. We do not knowingly collect personal information from children. If you believe we have inadvertently collected such information, please contact us immediately and we will take steps to delete it.

11. Links to Third-Party Sites

Our website may contain links to third-party websites. We are not responsible for the privacy practices of those sites and encourage you to review their privacy policies.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by updating the "Last Updated" date at the top of this page and, where appropriate, by sending an email notification. Your continued use of our services after changes take effect constitutes acceptance of the revised policy.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

If you are located in the EEA and are not satisfied with our response, you have the right to lodge a complaint with your local data protection supervisory authority.