What is the privacy policy for ROZZ?

Privacy Policy for ROZZ

Last Updated: January 13, 2025

1. Introduction

Welcome to ROZZ, a platform providing AI search optimization services including the Rozz Searchbox chatbot and GEO (Generative Engine Optimization). At ROZZ, we respect your privacy, and we have implemented this Privacy Policy to explain how we collect, use, and protect your information when you use our services.

2. Information We Collect From End Users

2.1 Information About User Queries

When users interact with the Rozz Searchbox on websites, we collect information about their queries, the answers to those queries, and technical details regarding the queries and answers. This information is used to process their requests and improve our service.

2.2 Non-Personal Information (Automatic Collection)

By default, we do not automatically collect any personal information like user name, email address, location data, or any other identifiable information from end users. Standard interactions with the Rozz Searchbox collect only non-personal data, such as the queries and answers. For users who do not use the Email Recap feature, we cannot connect them to the questions they asked.

2.3 Email Recap Feature (Voluntary Collection)

2.4 How We Use User Information

The information we collect is used exclusively for:

• Processing and responding to your queries
• Improving the functionality and performance of ROZZ
• Generating GEO-optimized Q&A content from aggregated queries (with PII filtering)
• Sharing aggregated data about questions, answers, and their timeframes with website owners

2.5 Information We Share From Users

We share the queries, answers, and associated timeframes with the website owners. These data have a timestamp and are grouped by conversation. By default, conversations have no user identification or cookie attached. However, if you use the Email Recap feature, your email address is also shared with the website owner alongside your conversation. No information is shared with any third party beyond the website owner.

2.6 Security of End User Data

We take reasonable precautions to protect information about questions and answers. For users who do not provide an email address, there is minimal risk of personal information exposure. For users who use the Email Recap feature, we implement appropriate security measures to protect your email address and conversation data.

3. GEO Service Data Practices

3.1 Website Content Processing

For GEO (Generative Engine Optimization) services, we collect and process:

• Publicly available content from your website (pages, PDFs, documents)
• Metadata including titles, descriptions, and publication dates
• Questions submitted through the Rozz Searchbox chatbot

This content is used to generate AI-optimized versions hosted on your mirror site subdomain (typically rozz.{yourdomain}).

3.2 Content Generation and Storage

GEO-generated content includes:

• Q&A pages derived from user queries and your existing content
• Clean markdown and JSON-LD structured versions of your pages
• Schema.org markup for machine readability
• An llms.txt discovery file

Generated content is stored on ROZZ infrastructure (AWS S3/CloudFront) and served from your designated subdomain.

3.3 PII Filtering

3.4 Content Retention

• GEO-generated content remains on the mirror site for the duration of your subscription
• Upon termination, content may be removed at ROZZ's discretion
• Original website content remains under your control and is not modified

4. Information We Collect From Clients

4.1 Registration Information

This section outlines the types of data we collect from clients when they register on our platform:

Types of Data Collected:

• Email Addresses: We collect one or several email addresses that you provide. These are used for communication purposes, including account verification, updates, and support.
• Domain Information: We collect the domain name of your website. This information is used to personalize our services to better suit your website's needs.
• Billing Address: Your billing address is collected as part of the transaction process. This information is essential for processing payments and complying with legal and tax requirements.

Use of Data:

The collected data is used solely for the purposes mentioned above and to enhance your experience with our services. We do not sell, rent, or otherwise share your personal information with third parties for their marketing purposes.

Data Security:

We are committed to ensuring the security of your personal information. We implement various security measures to maintain the safety of your personal data.

4.2 Payment Processing via Stripe

Security of Sensitive Data:

• Encryption: Stripe employs state-of-the-art security measures including SSL/TLS encryption for data transmission
• PCI DSS Compliance: Stripe is certified as a PCI DSS Level 1 Service Provider—the highest level of certification in the payment industry
• Data Storage: We do not store credit card details on our servers. All card information is securely handled and stored by Stripe

Data Privacy:

• Stripe retains only the necessary data required to process transactions and comply with legal obligations
• Clients have the right to access their data stored by Stripe and may request modification or deletion as per applicable laws

4.3 Usage Data Collection

Types of Usage Data Collected:

• Public Data: We collect publicly available data from your website, including general website information, publicly visible content, and metadata
• Rozz Interactions: We store queries and responses processed through the Rozz Searchbox on your website

Purpose of Data Collection:

• Building Reports: Compile detailed reports with insights into usage, common queries, and answer effectiveness
• GEO Content Generation: Aggregated and PII-filtered queries may be used to generate Q&A content for your mirror site
• Service Maintenance: Ensure reliable functioning, address technical issues, and maintain uptime standards
• Improving Quality: Analyze usage patterns to refine and improve functionality

Data Security and Confidentiality:

• No Data Sharing: We do not share any client data with other clients or third parties
• We employ robust security measures to protect your data against unauthorized access, disclosure, alteration, and destruction

4.4 California Law Compliance (CCPA/CPRA)

In alignment with the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), we affirm our commitment to respecting and protecting the privacy rights of our clients. This commitment extends to all clients, regardless of location.

Data Deletion Rights:

1. Right to Data Deletion: Upon termination of services, clients have the right to request deletion of their personal data
2. Process: Submit a verifiable request through email to exercise this right
3. Exceptions: In certain circumstances as permitted under CCPA/CPRA, we may decline to delete data that is necessary to complete a transaction, provide a requested service, or comply with legal obligations
4. Non-Discrimination: Exercising your privacy rights will not result in discriminatory treatment

5. End User and Client Choices

Users and clients have the right to opt-out of our data collection by not using the ROZZ services on websites.

For end users who provided an email via the Email Recap feature:

• You may request deletion of your email address and associated conversation data by emailing rozz@rozz.site
• Include the email address you wish to delete and the website where you used the Searchbox
• We will process your request within 30 days and confirm deletion

For GEO clients:

• You may request that specific Q&A content be removed from your mirror site
• You may request deletion of your account and associated data upon service termination
• You control the llms.txt file on your main domain and may remove it at any time

6. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated revision date.

7. Contact Us

If you have any questions about this Privacy Policy, please contact us at: rozz@rozz.site

8. Consent

By using ROZZ, you consent to this Privacy Policy and agree to its terms.