Privacy Policy – Zivi Labs, Inc.

Effective Date: May 14, 2026

ArchWeaver is a product of Zivi Labs, Inc. References to "we," "us," and "our" in this Privacy Policy refer to Zivi Labs, Inc. as the data controller of personal information collected through this website.

1. Introduction

Zivi Labs, Inc. ("we", "us" or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard personal information when you visit the ArchWeaver website (www.archweaver.ai), engage our services, or interact with us. For the purposes of the EU and UK General Data Protection Regulation (GDPR), Zivi Labs, Inc. is the Data Controller responsible for your personal data.

2. Scope of This Policy

This Privacy Policy applies to personal data collected through the ArchWeaver website (www.archweaver.ai). It does not govern data processed within the ArchWeaver platform itself once a customer agreement is in place. Platform data handling is governed by the customer's Master Service Agreement, Data Processing Agreement (DPA), and applicable deployment configuration (cloud, on-premises, or air-gapped). For customers using on-premises or air-gapped deployments of ArchWeaver, no platform data is transmitted to Zivi Labs, Inc.

3. Information We Collect

We may collect information that identifies, relates to, or could reasonably be linked to you ("Personal Data"):

  • Direct Identifiers: Name, email, phone number, company name, and job title provided via contact forms.
  • Technical Data: IP address, browser type/version, time zone, operating system, and platform collected automatically.
  • Usage Data: Information about how you use our website, products, and services.
  • Marketing Data: Your preferences in receiving communications from us.

4. Lawful Basis for Processing (EEA/UK)

We process personal data only when the law allows, including:

  • Performance of a Contract: To provide the services you request.
  • Legitimate Interests: Where necessary for our business interests, provided your rights do not override them.
  • Compliance with Legal Obligations: Where required by law or regulation.
  • Consent: Primarily for sending marketing communications where you have opted in.

5. How We Use Your Information

We use your data to:

  • Respond to demo requests, reference blueprint inquiries, and technical walkthroughs.
  • Register and manage customers or leads.
  • Manage our relationship with you.
  • Deliver relevant website content and communications.
  • Analyze data to improve our website, services, and marketing.

6. Cookies and Tracking Technologies

We use cookies and similar technologies to operate the website, analyze usage, and improve user experience. Our cookie banner allows you to manage your preferences. Categories include:

  • Strictly Necessary Cookies: Required for the website to function.
  • Analytics Cookies: Help us understand how visitors use the website.
  • Marketing Cookies: Used to deliver relevant content and measure campaign effectiveness. You can adjust your cookie preferences at any time through the cookie banner or your browser settings.

7. Sharing and Disclosure

We do not sell personal data. We may share data with:

  • External Third Parties: Service providers (cloud hosting, IT support, CRM).
  • Professional Advisers: Lawyers, auditors, bankers, and insurers.
  • Legal Authorities: Regulators or authorities as required by law. A list of current sub-processors is available upon request for customers and prospective customers under NDA.

8. International Transfers

Zivi Labs, Inc. is based in the United States. For users in the EEA or UK, data may be transferred outside these regions. We implement safeguards such as:

  • Transfers to countries deemed adequate by the European Commission.
  • Standard Contractual Clauses (SCCs) approved by the European Commission.
  • For UK data subjects, the UK International Data Transfer Agreement (IDTA) or UK Addendum to the EU SCCs.

9. Data Retention

We retain personal data only as long as necessary for the purposes for which it was collected, including legal, regulatory, tax, accounting, or reporting requirements.

10. Your Legal Rights

Depending on your jurisdiction, you may have rights including:

  • Accessing your personal data.
  • Correcting or erasing your personal data.
  • Objecting to or requesting restriction of processing.
  • Requesting data portability.
  • Withdrawing consent where applicable.

11. California Privacy Rights (CCPA/CPRA)

California residents have rights under the CCPA/CPRA. We do not sell personal information as defined by law, nor do we collect sensitive personal information from website visitors. You may request deletion, correction, or disclosure of personal information collected over the past 12 months by contacting us at the email below.

12. Security

We implement appropriate administrative, technical, and physical safeguards to protect personal data. Access is restricted to employees and partners with a legitimate business need. Additional information regarding our security practices, certifications, and audit posture is available to customers and prospective customers under NDA.

13. Contact Us

For questions about this Privacy Policy or your data rights: