StepZero Logo

Legal

Privacy Policy

Effective Date: March 20, 2026

1. Introduction

Welcome to StepZero ("we," "our," or "us"). We are committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our website and service (the "Service").

2. Data We Collect (Data Minimization)

We believe in collecting only what is absolutely necessary to run the Service:

  • Account Information: Your email address, and optionally your full name and avatar if you authenticate via social logins.
  • Service Data: Your current credit balance, selected niches, curated pain points, and generated product blueprints.
  • Transaction Data: We store internal transaction IDs mapped to our Merchant of Record (Lemon Squeezy) to manage your credits and facilitate refunds. We never touch, process, or store your full credit card number or billing details.

3. How We Use Your Information

  • To provide, maintain, and improve the Service.
  • To process your payments and manage your credit balance.
  • To communicate with you regarding your account, support updates, and service changes.

4. Our Stance on AI & Your Privacy

StepZero uses third-party AI models (Anthropic and OpenAI) to process market data and generate blueprints. We explicitly opt-out of data sharing for model training. Your specific inputs, generated pain points, and product blueprints are not used by us or our third-party providers to train global AI models. Your intellectual property remains yours.

5. Third-Party Service Providers

To operate StepZero, we share strictly necessary data with the following secure infrastructure partners:

  • Hosting & Security: Vercel & Vercel KV (IP logs, rate limiting, and hosting).
  • Database & Authentication: Supabase (Encrypted Auth and profile metadata).
  • Payments: Lemon Squeezy (Merchant of Record).
  • AI & Data Infrastructure: Anthropic, OpenAI, SerpApi (for social listening), and DataForSEO (for live market metrics like search volume and CPC).

6. Data Security

We implement industry-standard security measures, including encrypted databases and secure routing, to protect your personal information. However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

7. Your Data Rights & Account Deletion

You have full control over your data. At any time, you can choose to permanently delete your account directly from your dashboard settings. Account deletion is irreversible. When you delete your account, we immediately and permanently erase your profile, saved niches, pain points, and generated blueprints from our active databases.

8. Contact Us

If you have any questions about this Privacy Policy, please contact us at: billing@getstepzero.com.