← Otter Zero

Privacy Policy

Effective Date: March 1, 2026

This Privacy Policy describes how Otter Zero ("we", "us", "our") collects, uses, and protects information when you use our Service. We are committed to handling your data transparently and in accordance with applicable data protection laws.

1. Information We Collect

1.1 Account Information

  • Email address (used for authentication via Supabase Magic Link)
  • User ID (generated by Supabase Auth)
  • Subscription and billing status (plan tier, billing interval)

1.2 Social Media Account Data

When you connect social media accounts (e.g., X/Twitter) to deploy agents, we collect:

  • Session cookies and authentication tokens (encrypted at rest using AES-256)
  • Account handles and platform identifiers
  • Agent activity logs: posts analyzed, replies drafted, replies posted

We do not store your social media passwords. Session data is encrypted with a per-deployment key and is never shared with third parties.

1.3 Usage and Performance Data

  • Affiliate click events: tracking IDs, timestamps, referral URLs
  • Earnings data synced from affiliate networks
  • Agent configuration: search queries, product links, skill settings
  • AI Credits usage (count of AI-generated replies per billing period)

1.4 Payment Information

Payments are processed by Creem.io (powered by Stripe). We do not store credit card numbers or banking details. We receive only subscription status, customer ID, and transaction metadata from our payment processor.

1.5 Technical Data

  • IP addresses and browser/device information (collected by infrastructure providers)
  • Server logs and error traces for debugging purposes

2. How We Use Your Information

  • Provide, operate, and improve the Service
  • Authenticate users and manage subscription plans
  • Execute automated agent workflows on your behalf
  • Track affiliate clicks and earnings attribution
  • Send transactional communications (billing receipts, security alerts)
  • Enforce our Terms of Service and detect abuse
  • Comply with legal obligations

We do not use your data for advertising purposes, nor do we sell your data to third parties.

3. Data Retention

  • Account data: Retained while your account is active and for 90 days after deletion request.
  • Social session tokens: Retained while the connected account is active. Deleted immediately upon account disconnection.
  • Click and earnings data: Retained for 2 years for financial record-keeping.
  • Agent activity logs: Retained for 90 days, then automatically purged.

4. Third-Party Services

We use the following third-party services to operate the platform:

  • Supabase: Authentication and database hosting. Privacy Policy
  • Creem.io / Stripe: Payment processing. Privacy Policy
  • OpenRouter / OpenAI: AI content generation. Content is processed as API calls and not used to train models.
  • Lark (Feishu): Operational notifications. Only agent status data is transmitted.

5. Data Security

  • Social media session tokens are encrypted at rest using AES-256 (Fernet)
  • All data is transmitted over HTTPS/TLS
  • Database access is restricted to application services only
  • Publishing is handled through API, approved SaaS integrations, or manual review queues

6. Your Rights

Depending on your location, you may have the right to:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate data.
  • Deletion: Request deletion of your account and associated data.
  • Portability: Request your data in a machine-readable format.
  • Objection: Object to processing where we rely on legitimate interests.

To exercise these rights, contact us at privacy@otterzero.ai. We will respond within 30 days.

7. Children's Privacy

The Service is not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that a child has provided us with personal data, we will delete it promptly.

8. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes via email or in-app notification. Continued use of the Service after the effective date constitutes acceptance of the updated policy.

9. Contact

For privacy-related inquiries, please contact: privacy@otterzero.ai