Privacy Policy

Zamski provides executive intelligence for engineering organizations. This Privacy Policy explains how we collect, use, and protect your data. We are a small team building in public; this policy will evolve and we will email you about material changes.

EFFECTIVE: November 12, 2025·LAST UPDATED: November 12, 2025

1. What We Collect

When you use Zamski, we collect:

  • Authentication: Email, name, user ID (via Auth0 login).
  • OAuth Tokens: Encrypted access tokens for platforms you connect (JIRA, GitHub, Slack, Zoom, calendars).
  • Workspace Data: Tickets, code, messages, meeting transcripts from connected platforms.
  • Usage Data: How you use Zamski (for improving the product).
Read-only access. We request read-only permissions. We do not modify, delete, or create data in your connected platforms.

What we do not collect

  • Browsing history outside connected platforms.
  • Keyboard input outside Zamski.
  • Personal files or documents.
  • Credit card details (handled by Stripe if we charge in the future).

2. How We Use It

We use your data to:

  • Provide the service you signed up for (briefs, insights, recommendations).
  • Improve our analysis using aggregated, anonymized data. We do not train models on your specific data.
  • Fix bugs and improve performance.
  • Send you updates about the product (you can unsubscribe).

We do not sell your data. Ever.

3. Who We Share With

We share your data only with services that help us run Zamski.

AI Processing

  • Anthropic (Claude) and OpenAI process your data for AI analysis.
  • Your data is not used to train their models.

Infrastructure

  • AWS for hosting and storage (encrypted at rest and in transit).
  • ArangoDB for our database (encrypted).
  • Stripe for payment processing if and when we charge (we do not see your card details).

Connected Platforms

  • JIRA, GitHub, Slack, Zoom, calendars. When you connect them, we access data via their APIs per their privacy policies.
We never: sell your data, share with advertisers, give data to competitors, or use your data for unrelated marketing.

4. How We Protect Your Data

  • Encryption: All data encrypted in transit (TLS 1.3) and at rest (AES-256).
  • Access controls: Your data is isolated by organization. You only see your own.
  • OAuth security: Tokens are encrypted and automatically refreshed.
  • No raw passwords: We use Auth0 for authentication; we never see your password.
Found a security issue? Email us immediately: security@zamski.com

If there is a breach

If your data is compromised, we will email you within 72 hours with details and next steps.

5. Your Responsibilities

Recording Consent

If you connect tools that record or transcribe meetings (such as Zoom), you are responsible for:

  • Notifying all participants that transcription or recording is active.
  • Obtaining required consent per local laws (varies by location).
  • Following your organization's policies.

Zamski provides the tool. You handle the legal compliance. When in doubt, ask your legal team or announce it at the start of meetings.

Workspace Authorization

Make sure you have permission to connect your organization's accounts (JIRA, GitHub, etc.) to Zamski. We are not responsible if you connect accounts without proper authorization.

6. Your Data, Your Control

How long we keep your data

We keep your data as long as you are using Zamski, plus a reasonable period after you disconnect platforms (usually 30 to 90 days for cached analysis).

How to delete your data

  • Disconnect a platform: Revokes OAuth access immediately.
  • Delete your account: Email support@zamski.com (we will process within 30 days).
  • Download your data: Email us and we will send it to you.

Your legal rights (GDPR / CCPA)

If you are in the EU or California, you have additional rights:

  • Access: Get a copy of your data.
  • Correct: Fix inaccurate data.
  • Delete: Request deletion (right to be forgotten).
  • Export: Get your data in a portable format.

To exercise these rights, email privacy@zamski.com. We will respond within 30 days.

7. Questions?

We are here to help. Email us anytime.

This policy will evolve as Zamski grows. We will email you about material changes.
Cookies

How Zamski uses cookies

Zamski uses strictly necessary cookies to operate this website. We also use one optional analytics cookie (PostHog) to understand how visitors arrive and which pages they read, so we can write better. We do not use advertising or targeting cookies, and we do not sell visitor data.

You can accept analytics, decline them, or tailor your preferences. You can change this any time from the Cookie settings link in the footer. Read the Cookie Notice for the full detail.