← Back to Zeplo

Privacy Policy

Last updated: February 21, 2026

1. Introduction

Zeplo ("we", "us", "our") operates the zeplo.io platform (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

2. Information We Collect

Account Information

When you create an account, we collect your name, email address, and password (stored hashed). If you sign up via a third-party provider (Google, GitHub), we receive your name and email from that provider.

Usage Data

We automatically collect information about how you interact with the Service, including request counts, response times, error rates, and API usage patterns. This data is used to provide dashboard analytics and enforce plan limits.

Request Data

When you enqueue HTTP requests through Zeplo, we process and temporarily store the request URL, headers, body, and response data. This data is retained according to your plan's retention period (7–90 days) and then permanently deleted.

Payment Information

Payment processing is handled by Stripe. We do not store credit card numbers or sensitive payment details on our servers. We retain only your Stripe customer ID and subscription status.

3. How We Use Your Information

  • To provide, operate, and maintain the Service
  • To process and deliver your HTTP requests
  • To manage your account and provide customer support
  • To enforce usage limits and billing
  • To send transactional emails (verification, password reset, failure alerts)
  • To monitor and improve the Service's performance and reliability
  • To detect and prevent fraud or abuse

4. Data Sharing

We do not sell your personal information. We share data only with:

  • Service providers: AWS (infrastructure), Stripe (payments), Postmark (email)
  • Your designated endpoints: We deliver HTTP requests to the URLs you specify
  • Legal requirements: When required by law or to protect our rights

5. Data Security

We implement industry-standard security measures including encryption in transit (TLS), encryption at rest, and access controls. However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

6. Data Retention

Request logs are retained according to your plan (Free: 7 days, Starter: 30 days, Pro: 90 days). Account data is retained for as long as your account is active. Upon account deletion, we remove your personal data within 30 days, except where retention is required by law.

7. Your Rights

You may access, update, or delete your account information at any time through the Settings page. You may also request a full export of your data or account deletion by contacting us at hello@zeplo.io.

8. Cookies

We use essential cookies for authentication (JWT token storage) and session management. We do not use third-party tracking cookies or advertising cookies.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or through a notice on the Service. Your continued use after changes constitutes acceptance.

10. Contact

For questions about this Privacy Policy, contact us at hello@zeplo.io.

Terms of ServicePricing