NoteMarketZIMBABWE
Log InSign Up
← Legal HubTerms of ServiceUploader Agreement

Privacy Policy

Last updated: June 2025 · Effective immediately for all accounts

NoteMarket (Private) Limited ("we," "us," or "our") is committed to protecting your personal information. This Privacy Policy explains what data we collect, how we use it, and your rights.

1. Information We Collect

When you create an account, we collect:

  • Name and email address
  • Phone number (used for EcoCash payouts)
  • University or school
  • Education level and exam board (Cambridge or ZIMSEC), where provided
  • Account type (student or educator)
  • Password (stored as a bcrypt hash — we never store plain-text passwords)

When you use the Platform, we also collect:

  • Notes you upload (PDFs and associated metadata)
  • View counts and interaction data for payout calculation
  • AI chat messages sent to Aura (used to generate responses; not stored permanently)
  • Screenshots submitted to Aura Vision (processed immediately and discarded — never stored)
  • Payment transaction records (via Paynow Zimbabwe — we do not store card numbers)
  • IP addresses and session data for security and rate limiting

2. How We Use Your Information

  • To provide and operate the Platform
  • To process subscription payments and calculate uploader payouts
  • To send you notifications about your notes (approval status, payouts)
  • To send platform updates, where you have opted in
  • To prevent fraud, abuse, and violations of our Terms
  • To improve the Platform through aggregated, anonymised analytics

3. Data Sharing

We do not sell your personal data. We share data only with:

  • Paynow Zimbabwe — to process payments (subject to Paynow's privacy policy)
  • Supabase — our database and storage provider (data stored in secure cloud infrastructure)
  • Anthropic — AI queries sent to the Claude API to power Aura (subject to Anthropic's usage policies; conversation data is not used to train models under our API agreement)
  • Law enforcement — if required by applicable Zimbabwean law

4. Data Retention

We retain your account data for as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where we are required to retain it for legal or financial compliance purposes (e.g. payout records).

5. Security

We use industry-standard security practices including encrypted connections (HTTPS), bcrypt password hashing, server-side-only access to sensitive API keys, and row-level security on our database. No system is perfectly secure — please use a strong, unique password for your account.

6. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate data
  • Request deletion of your account and data
  • Object to certain uses of your data

To exercise these rights, email notemarketzw@gmail.com.

7. Cookies

We use session cookies to keep you logged in. We do not use third-party advertising cookies or tracking pixels.

8. Children

We do not knowingly collect data from children under 13. If you believe a child has provided personal data, please contact us and we will delete it promptly.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email. Continued use of the Platform after changes constitutes acceptance.

Contact

Privacy questions: notemarketzw@gmail.com.