_edited.png)
ZEALOPIA
Privacy Policy
Last updated: December 2025
​
Data Fiduciary (Company): Zealopia Technologies Pvt Ltd
Registered address: 7, Abhirup Building, Adarsh Nagar, Jalgaon, Maharashtra, India
App/Service: Zealopia (the “Service”)
​
This Privacy Policy explains how Zealopia Technologies Pvt Ltd (“Zealopia”, “we”, “us”) processes your digital personal data when you use our app and related services.
​
Important notes (wellness + safety)
Zealopia is a mental wellness platform and may offer AI-powered wellness profiling conversations and therapist connections. It is not an emergency service. If you are in immediate danger or feel at risk of self-harm, seek urgent medical help or contact local emergency services immediately.
​
1) Definitions
Personal Data means any data about an individual who is identifiable by or in relation to such data.
Data Principal means the individual to whom the personal data relates.
Data Fiduciary means the entity that determines the purpose and means of processing personal data (Zealopia).
Data Processor means any person that processes personal data on behalf of a Data Fiduciary.
Child means an individual who has not completed the age of 18 years.
2) What personal data we collect (itemised)
We follow data minimisation and collect data only for clear, specific purposes.
A. Account & identity data
Name (as declared by you)
Email address/Phone number you use for logging in
Age confirmation (self-declared 18+)
Why: account creation, login, restoring your account when changing devices, essential service communications.
​
B. Chat & wellness interaction data (encrypted)
Chat messages exchanged on Zealopia (user ↔ therapist, user ↔ support, and/or user ↔ AI features), stored in encrypted form on our systems.
Why: to provide the chat feature and only if you choose to enable continuity when switching therapists (e.g., sharing an old summary with a new therapist so you don't start from scratch).
We do not record audio/video sessions and we do not collect therapist “notes” as a separate dataset (beyond what appears in chats).
​
C. Payment & billing data (token only)
Payment gateway token / reference
Subscription/transaction history (amount, date/time, plan)
Refund-related records
Why: processing payments, refunds, chargeback support, accounting/audit compliance.
We do not store your card/UPI credentials on Zealopia servers. The payment gateway handles those details.
​
D. Technical & usage data (via app operations)
Device identifiers, IP address, app events, crash logs/diagnostics, and performance data
Why: security, fraud prevention, bug fixing, reliability, feature improvement.
​
E. What we do not collect
Your phone contacts/address book (we do not request contacts permission)
Precise GPS location
Audio/video recordings of sessions
​
3) How and why we process your data (purposes)
We process personal data for the following purposes:
Provide the Service (account, chat, wellness features, therapist access)
Account management (login, device changes, customer support)
Safety, security & fraud prevention
Payments and refunds
Service improvement (analytics, crash diagnostics)
Legal compliance (where required)
Where processing is based on consent, we obtain consent through clear in-app notices and controls through your informed consent.
​
4) Consent and your choices
A. Consent quality
Where consent is required, we aim for it to be free, specific, informed, unconditional and unambiguous, and limited to the specified purpose.
​
B. Withdrawal of consent
You may withdraw consent for a feature where consent is the basis of processing. If you withdraw consent:
we stop processing for that purpose, and some features may stop working (for example, chat continuity features).
We will also erase data when withdrawal occurs unless retention is required by law.
5) Sharing of personal data
We do not sell your personal data. We may share some data only as needed to provide the Service:
A. With Data Processors / Service Providers (under contract)
We use trusted vendors for infrastructure and service operations, including:
AWS (cloud hosting/infrastructure)
Firebase (app analytics, crash reporting, push messaging features if enabled)
Our LLMs for AI processing for AI-driven features, where applicable
These vendors process data on our behalf under contractual controls and technical safeguards.
B. With therapists (only as needed to provide your chosen service)
If you engage with a therapist on Zealopia, that therapist can access the information necessary to deliver the chat-based service (such as the chat itself and any profile context you choose to share). You are given an option to share your soul profile at the beginning of a chat.
Therapist switching: If you change therapists, your prior chat content is not automatically shared. You can choose to share a summary/history as part of the transition.
C. B2B corporate programs (no user-level sharing)
If your access is sponsored by an employer/corporate program:
we do not share your identifiable, user-level personal data (including chat content or individual scores) with your employer.
we may share only aggregated, de-identified insights (e.g., overall participation trends).
D. Legal requirements and protection
We may disclose personal data to comply with applicable law, lawful requests, or to protect rights/safety.
​
6) Retention and deletion
We retain personal data only as long as necessary for the stated purposes, and erase it when the purpose is no longer served unless retention is required by law.
Your retention rules (as implemented by Zealopia):
Encrypted chat data: If not used for continuity/summary sharing, it is deleted when the user requests it to be deleted
Account data: retained while your account is active; deleted/erased after account closure, subject to legal retention needs.
Billing records: retained as required for refunds, dispute handling, and applicable accounting/tax compliance.
7) Security safeguards and breach notification
We implement reasonable security safeguards (technical and organisational) to protect personal data, including data processed by our processors.
If a personal data breach occurs, we will notify the Data Protection Board of India and affected users in the form and manner prescribed.
8) Cross-border processing
Your personal data may be processed in India and in other countries where our service providers operate (for example, cloud infrastructure or AI processing). DPDP permits cross-border transfers unless the Central Government restricts transfers to notified countries/territories.
9) Your rights as a Data Principal
Subject to DPDP and applicable law, you can request:
Access to information about your personal data
Correction/Updating of inaccurate data
Erasure (where applicable)
Grievance redressal
Nomination of another individual to exercise rights on your behalf in case of death/incapacity
To exercise rights, you can use the in-app flow or contact us zen@zealopia.com
10) Grievance redressal
We maintain an effective grievance redressal mechanism.
We will respond within the period we publish, which must not exceed 90 days under the Rules.
Grievance Officer:
Name: Ajinkya Bhasme
Email: Ajinkya.bhasme@zealopia.com
Address: Zealopia Technologies Pvt Ltd, 7, Abhirup Building, Adarsh Nagar, Jalgaon, Maharashtra, India
Escalation: DPDP requires Data Principals to first use the grievance mechanism before approaching the Board.
11) Children’s privacy (18+ only)
Zealopia is intended for users 18 years and above. DPDP defines a child as under 18.
We rely on self-declaration of age during signup. If we learn that a user is under 18, we will take steps to deactivate the account and delete/erase associated personal data, subject to legal retention requirements.
​
12) Contact us (privacy requests)
For privacy questions, rights requests, or account deletion requests:
Email: zen@zealopia.com
Website: https://www.zealopia.com/about
​
13) Changes to this policy
If we update this policy, we will post the updated version in the app/website and change the “Last updated” date. For material changes, we may notify you via in-app notice or email.