ZooAI Company Limited (“ZooAI”, “we”, “us”, “our”) is dedicated to safeguarding your privacy.

Our commitment extends to protecting the personal data we handle, adhering to the principles outlined in several international data protection regulations. These include the General Data Protection Regulation (GDPR), the Hong Kong Personal Data (Privacy) Ordinance (PDPO), the Personal Information Protection Law (PIPL) and Data Security Law (DSL) of China, Brazil’s Lei Geral de Proteção de Dados Pessoais (LGPD), the UK’s Data Protection Act 2018 (DPA 2018), and the Privacy and Electronic Communications Regulations 2003 (PECR).

We have designed our data protection program to meet the stringent requirements of the GDPR, widely recognized as a benchmark for data protection.

This privacy notice explains how we manage personal information on our platform, ZooAI, our website interactions, and through our services, ensuring transparency and accountability.

Data Roles and Registration

Through ZooAI, we primarily function as a Data Processor for our clients. Additionally, we manage certain data as a Data Controller, particularly for employee and client contact data. In compliance with the DPA 2018, we are registered as a Data Controller in the UK with the Information Commissioner’s Office (ICO), registration number [to be added].

We prioritize the quality, confidentiality, integrity, and availability of the data we manage, employing robust security measures to protect against unauthorized access, use, or disclosure.

What Information Do We Process?

Client-Provided Information: This may include names, job titles, business contact details, business financial information, and other relevant data.

Website-Provided Information: Includes data provided through our site via various means such as registrations, inquiries, or when integrating third-party marketplaces like Shopify.

Automatic Collection: We automatically collect certain types of information when you visit our website or use our services, such as device and browser information, location data, and browsing patterns.

Use of Cookies and Web Beacons

We utilize cookies and web beacons to enhance site functionality and user experience. These tools help us track visitor activity and manage site performance. More details about the types of cookies we use and their purposes are available on our website.

Purposes and Legal Bases for Processing

We process your data for several reasons:

Customer Service: To manage and fulfill client service requirements under contractual obligations.

Website Improvement: To enhance our website based on user interaction and feedback, under our legitimate interest.

Direct Marketing: We engage in marketing activities to promote our services, with your consent and in accordance with local laws.

Data Sharing

We share personal data only when necessary, under strict safeguards like the UK IDTA or EU SCCs, to maintain protection standards consistent with GDPR. Third-party services are utilized under stringent data protection agreements.

Your Rights

You have rights under the GDPR, including access to your data, correction, erasure, and objection to processing, among others. Requests can be made via our compliance email. 

Data Retention

We retain personal data as needed to provide services and comply with our legal obligations, then securely delete it according to our data retention policy.

Changes to This Notice

We may update this notice to reflect changes in legal requirements or our data processing activities. Regular review of this notice is encouraged.


For questions regarding our privacy practices or data protection, please contact