top of page

Privacy Policy

PRIVACY POLICY

ZNest.ai / ZNest.com and related domains

 

Last Updated: 03/20/2026

 

This Privacy Policy (“Policy”) explains how ZNest Seniors, Inc. (“ZNest,” “we,” “us,” or “our”) collects, uses, discloses, and otherwise processes information in connection with:

 

• our websites and pages that link to this Policy, including znest.ai, znest.com, app.znest.ai, re.znest.ai, and newsletter.znest.ai (collectively, the “Sites”); and

• our products and services, including Acquisitions+ and Onboarding+ (collectively, the “Services”).

 

This Policy does not apply to third-party websites, products, or services that we do not control, even if linked from our Sites.

 

IMPORTANT NOTE: This Policy is a general notice. If you are a job candidate, employee, or other individual interacting with an Onboarding+ customer, the Onboarding+ Privacy Module below describes additional processing that may apply to you.

 

1) WHO WE ARE (COMPANY IDENTITY)

Legal entity: ZNest Seniors, Inc.

Primary contact email: info@znest.com

Support contact email: team@znest.com

Mailing address: 4245 W Landberg Ave, Las Vegas, NV 89141

 

2) DEFINITIONS

“Personal Information” means information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked (directly or indirectly) with a particular individual or household. “Personal Data” has the same meaning.

 

“Customer” means an individual or organization that purchases or uses the Services.

 

“Authorized User” means an individual authorized by a Customer to access and use the Services under the Customer’s account.

 

“Customer Content” means information and content submitted to the Services by or on behalf of a Customer or Authorized Users, including documents and messages.

 

“De-Identified Data” means data that has been de-identified so it cannot reasonably be linked to an identified or identifiable individual, household, Customer, property, or transaction, and for which we maintain and enforce technical and organizational measures to prevent re-identification.

 

3) INFORMATION WE COLLECT

We collect information from (a) you, (b) our Customers, (c) your device/browser, and (d) third parties and integrations you authorize.

 

A. Information you provide directly

Depending on how you interact with us, we may collect:

• Contact information: such as name, email address, and (in some Service contexts) phone number.

• Account and profile information: such as username, role, and authentication information.

• Billing and transaction information: such as subscription plan selected, billing contact, payment status, and invoices/receipts. (Note: payment card information is collected and processed by our payment processor, not stored by us except as tokenized references and transaction records.)

• Communications: messages you send us, support tickets, and other correspondence.

• Customer Content: documents, text, files, and other content uploaded to or generated in the Services (including model inputs and outputs).

 

B. Information collected automatically (cookies, logs, and similar technologies)

When you visit our Sites or use our Services, we may automatically collect:

• Device and network information: including IP address, browser type, device identifiers, operating system, and approximate location inferred from IP.

• Usage information: such as pages viewed, features used, clickstream data, events, and timestamps.

• Cookie and tracking information: as described in the Cookies and Tracking section.

 

C. Information from third parties

We may receive information from:

• Service providers that help us operate the Sites and Services (hosting, analytics, support, security, payments, communications).

• Integrations or systems a Customer authorizes us to connect with (e.g., HRIS or data repositories) to import Customer Content into the Services.

• Public sources (for Acquisitions+): information that is publicly available on the internet that a Customer requests the Service to analyze or summarize.

 

4) HOW WE USE INFORMATION

We use information for the following business purposes:

• Provide, operate, and maintain the Sites and Services (including account creation/authentication, feature delivery, and customer support).

• Process payments, billing, and accounting.

• Communicate with you about the Services (service notices, confirmations, security alerts, support responses).

• Secure the Services, prevent fraud and abuse, and monitor for suspicious activity.

• Improve and develop the Services (including troubleshooting, analytics, and feature development).

• Comply with applicable law and enforce our agreements.

 

Marketing:

If you subscribe to our newsletter or opt in to marketing, we may send marketing communications. You can opt out at any time via the unsubscribe link or by contacting us.

 

5) AI FEATURES, MODEL PROVIDERS, AND AUTOMATION

A. AI processing

The Services may use artificial intelligence and machine learning models to analyze Customer Content and produce outputs (e.g., models, memos, summaries, responses, reminders, or workflow status messages). Depending on configuration, this may include automated steps.

 

B. Third-party model providers

To provide AI features, we may send Customer Content (including prompts, extracted text, and outputs) to third-party model providers and/or routing layers. Model providers process the information to return outputs to us and the Customer.

 

C. Automated decision-making

Some features may perform automated steps or recommendations. Customers are responsible for appropriate human review and for using outputs in compliance with applicable laws, including employment and anti-discrimination laws, and for making final decisions (unless the Customer explicitly configures otherwise and assumes the related legal obligations). We may provide reasoning summaries, citations, source traces, or similar transparency features. These are informational and may be incomplete or inaccurate; Customers must validate outputs before reliance.

 

6) HOW WE DISCLOSE INFORMATION

We may disclose information as follows:

 

A. To Customers and Authorized Users

The Services are generally designed so Customers can access Customer Content and related account information under their own accounts.

 

B. To service providers and subprocessors

We disclose information to vendors that help us provide the Sites and Services (e.g., hosting, analytics, payments, customer support, communications, and security). These vendors are authorized to process information only as necessary to provide services to us.

 

C. Advertising and analytics providers (Sites)

We may permit analytics and advertising partners to collect information through cookies/pixels on our Sites, subject to your choices and applicable law. If we engage in cross-context behavioral advertising / retargeting, California residents may have rights to opt out of “sharing” for such advertising (see California Privacy Notice).

 

D. Legal, safety, and compliance

We may disclose information if we believe disclosure is necessary to comply with law, respond to lawful requests, protect rights/safety, and investigate or prevent wrongdoing.

 

E. Business transfers

If we are involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets, information may be disclosed or transferred as part of that transaction.

 

7) DE-IDENTIFIED AND AGGREGATED DATA

We may create De-Identified Data from Customer Content and usage information. We may use De-Identified Data internally to operate, secure, improve, and develop the Services.

We will not sell, license, disclose, or otherwise commercialize De-Identified Data externally unless a Customer expressly opts in under a separate written addendum.

De-Identified Data will not include or reveal Customer Confidential Information, live or pending deal data, bids, underwriting models, data-room materials, personal information, protected health information, or third-party data subject to license restrictions. We will not attempt to re-identify De-Identified Data.

 

8) DATA RETENTION

We retain information for as long as reasonably necessary to provide the Services and for legitimate business purposes, including security, dispute resolution, and legal compliance.

 

Recommended default retention schedule:

• Website leads (demo/contact): 24 months after last interaction, then delete or de-identify.

• Account profile data: for the life of the account, then 90 days after closure.

• Billing and payment records: 7 years (or as required by applicable law).

• Security logs: 180 days (longer for investigated incidents).

• Customer Content in Acquisitions+: while the account is active; on termination, export available and then deletion within 90 days, subject to backups.

• Customer Content in Onboarding+: per Customer instructions or default 24 months after the onboarding workflow ends, then deletion/de-identification (unless Customer requests longer retention).

• Backups: rolling backups retained up to 90 days.

 

If the Customer requests account deletion, we will delete or de-identify Customer Content within a commercially reasonable time, except we may retain limited information where necessary to comply with law, enforce agreements, or maintain security and fraud-prevention logs.

 

9) SECURITY

We implement administrative, technical, and physical safeguards designed to protect information. These may include (as applicable): encryption in transit, access controls, least-privilege permissions, logging/monitoring, and secure development practices.

No system is 100% secure; therefore we cannot guarantee absolute security.

 

10) INTERNATIONAL DATA TRANSFERS

We intend to store and process information in the United States. If we engage service providers that process information outside the United States, we will implement appropriate safeguards as required by applicable law.

 

11) CHILDREN’S PRIVACY

Our Sites and Services are not directed to children under 13, and we do not knowingly collect Personal Information from children under 13. If we learn we have collected such information, we will delete it.

 

12) COOKIES AND TRACKING TECHNOLOGIES

We use cookies, pixels, and similar tools for:

• Strictly necessary functions (e.g., security, session management)

• Preferences and functionality (e.g., language, remembering settings)

• Analytics (e.g., understanding site performance)

• Advertising/retargeting (if enabled)

• You can control cookies through browser settings.

 

13) CALIFORNIA PRIVACY NOTICE (CCPA/CPRA)

This section applies only to “consumers” who are California residents, to the extent the CCPA/CPRA applies.

 

A. Categories of Personal Information collected (in the last 12 months)

We may collect the following categories:

• Identifiers (name, email, IP address; and phone number where used in Services)

• Internet or other electronic network activity (usage logs, device data)

• Commercial information (subscriptions and transactions)

• Professional or employment-related information (in Onboarding+ workflows)

• Content of communications (messages, uploaded documents, AI inputs/outputs)

 

Sensitive Personal Information: We do not intentionally collect Social Security numbers, government ID numbers, or biometric information.

 

B. Sources

Collected from you, from Customers (employers/operators), from your device/browser, and from integrations/public sources as described above.

 

C. Purposes

Business purposes include operating the Services, security, fraud prevention, customer support, product improvement, and analytics.

 

D. Disclosures

We disclose Personal Information to service providers and subprocessors for business purposes. We may also disclose to analytics/advertising partners, subject to your rights and choices.

 

E. Sale / sharing

We do not sell Personal Information for money.

We may “share” Personal Information for cross-context behavioral advertising if retargeting/pixels are enabled. If we do, you may opt out.

 

F. Your California rights

Subject to verification and applicable exceptions, you may have the right to:

• Know/access

• Delete

• Correct

• Opt out of sale/sharing

• Limit certain uses of sensitive personal information (if applicable)

• Not be discriminated against for exercising rights

 

G. How to submit requests

Email: info@znest.com with the subject line “California Privacy Request.”

 

H. Opt-out preference signals

We honor legally recognized opt-out preference signals (such as Global Privacy Control) where required.

 

14) OPTIONAL GDPR/UK GDPR ADDENDUM (ENABLE ONLY IF YOU TARGET OR SERVE EEA/UK USERS)

If you enable this section:

• Identify the controller and (if applicable) EU/UK representative and DPO.

• State lawful bases under Article 6 (contract, consent, legitimate interests).

• Enumerate GDPR/UK GDPR rights and how to exercise them.

• Explain automated decision-making safeguards (Article 22) and human review.

• Describe transfer safeguards (EU SCCs / UK IDTA Addendum) where applicable.

• Provide supervisory authority complaint rights.

 

15) CONTACT US

For questions, complaints, or privacy requests:

Email: info@znest.com

Mail: 4245 W Landberg Ave, Las Vegas, NV 89141

bottom of page