ZIAZI public document
ZIAZI Privacy Policy
How ZIAZI processes personal data on the platform.
1. Controller and scope
The controller of personal data is ZIAZI DIGITAL GROUP S.R.L, IDNO 1026023041407, with its registered office at MD-6801, str. Nucarilor 53, or. Ialoveni, Republic of Moldova.
This policy applies to the use of ziazi.app, the public pages, the legal pages, and the ZIAZI web app.
This policy is written in relation to the applicable legal framework in the Republic of Moldova, including:
- Law no. 133/2011 on personal data protection, applicable until 23 August 2026;
- Law no. 195/2024 on personal data protection, applicable from 23 August 2026;
- Regulation (EU) 2016/679, used as a reference standard where relevant;
- Law no. 284/2004 on information society services;
- Law no. 124/2022 on electronic identification and trust services.
2. What ZIAZI is
ZIAZI is a digital platform that connects clients and workers for local jobs and services.
In the current product, ZIAZI mainly allows:
- one account with Client mode and Worker mode;
- OTP authentication;
- worker profile, offers, and work locations;
- service requests and proposals;
- direct requests started from an offer;
- chat and messages in product contexts that allow them;
- a review from the client to the worker after the job is finalized;
- public pages and web surfaces with basic technical analytics and declared campaign-measurement tags.
3. What data we may process
Depending on the functions used, ZIAZI may process the following categories of data:
3.1 Account data
- first and last name or display name;
- phone number;
- email address;
- preferred language;
- avatar, if the user uploads one;
- account settings and state.
3.2 Authentication and security data
- phone or email used for OTP;
- OTP purpose;
- expiration time;
- verification attempts;
- IP address;
- user agent;
- audit and security data.
OTP codes are time-limited. If temporarily stored for verification or abuse prevention, they are kept in protected form and with a short expiry.
3.3 Worker profile and offer data
- profile description;
- selected services;
- work locations;
- offer description;
- indicative prices, if filled in;
- active/inactive state of the offer;
- public reputation indicators available in the product.
3.4 Request, proposal, and job data
- selected service;
- location;
- description of the work;
- budget or budget range, if used;
- sent or received proposals;
- selected worker;
- statuses and status history;
- data about acceptance, start, confirmation, and cancellation of the job;
- cancellation reasons or operational notes, where they exist.
3.5 Messages and media
- messages in the context of an offer, a request, or a job;
- photos or other uploaded files, if the function is active;
- technical metadata associated with files and messages.
3.6 Review data
In the current public configuration, review is available only from the client
to the worker after finalized.
For reviews, we may process:
- the associated job;
- the review author;
- the reviewed worker;
- the rating;
- the comment;
- the review state and moderation reasons, where applicable.
3.7 Checkout and billing data
If ZIAZI exposes a paid digital feature in the product, such as offer promotion or activation of a separate digital plan, we may process data such as:
- the selected digital feature or package;
- the plan or package code;
- amount, currency, and order status;
- the technical checkout or payment provider used for that flow;
- technical identifiers for the order, checkout session, or verification;
- confirmation, callback, or verification metadata transmitted within the limits of the active integration;
- the service, location or region, public offer status, and promotion status needed for display, priority, and rotation of the offer in relevant lists;
- operational data needed for support, commercial audit, and fraud prevention.
3.8 Technical and analytics data
- IP address;
- browser and device type;
- operating system;
- technical logs;
- technical request and error data;
- technical data collected through Google Tag Manager, any analytics services configured through the active container, and Meta Pixel used for visit attribution and basic conversion measurement, according to the current configuration described in the Cookie Policy.
3.9 Data that we do not intend to collect as part of the current product
- biometric data;
- mandatory live GPS location;
- medical data;
- card data for direct payment between client and worker;
- data about persons under 18.
4. Purposes and legal bases of processing
We may process data for:
- creating and managing the account;
- authentication and security;
- displaying and managing the worker profile;
- publishing offers and requests;
- initiating, verifying, and activating paid digital platform features when they are explicitly shown in the product;
- displaying, prioritizing, and rotating promoted offers in relevant lists, without guaranteeing a fixed ranking or a commercial result;
- matching clients and workers;
- managing job statuses;
- communication between users in allowed contexts;
- support and moderation;
- fraud and abuse prevention;
- technical maintenance, diagnostics, and stability;
- basic technical analytics and campaign measurement;
- compliance with legal obligations.
Depending on the situation, the legal bases may include:
- performance of the relationship concerning use of the platform;
- legitimate interest for security, abuse prevention, support, and stability;
- consent, where required by law;
- legal obligation.
5. What data may become visible to other users or to the public
Depending on the active product surface, other people may see:
- profile data that the worker publishes in the profile or offer;
- services and locations linked to the profile or offer;
- public reputation indicators available in the interface;
- reviews displayed publicly for the worker;
- the content needed for a request or job between the involved users.
Contact details such as phone and email are not intended for general public display and are exposed only within the active product surfaces and rules or when users choose to share them voluntarily.
The public share page for a worker offer is not configured by the platform as an indexable page for search engines. However, we cannot fully control external saves, screenshots, caches, or manual link sharing.
6. To whom we may disclose data
Data may be accessible to:
- users directly involved in an offer, request, or job;
- the ZIAZI team when this is necessary for support, security, moderation, or operations;
- technical providers for hosting, infrastructure, email, SMS, storage, backup, monitoring, technical measurement, or checkout for platform digital features, when such mechanisms are active;
- competent authorities, where the law requires it.
ZIAZI does not sell personal data to advertisers.
7. International transfers
Some technical providers used by the platform may process data outside the Republic of Moldova.
Where such transfers exist, ZIAZI seeks to rely on appropriate safeguards, such as:
- processing within the European Economic Area;
- standard contractual clauses;
- appropriate technical and contractual measures for data protection.
8. How long we keep data
We keep data only as long as it is needed for:
- operation of the account and the platform;
- support and the relationship with the user;
- audit and security;
- fraud prevention;
- legal obligations and the defense of our rights.
Indicatively:
- account data is kept as long as the account is active or as long as there is a legal basis for keeping it;
- OTP and verification data are kept for a short period;
- job, message, and moderation history may be kept longer for audit, support, or safety;
- payment, checkout, and verification data may be kept as long as needed for commercial audit, support, fraud prevention, and applicable legal or contractual obligations;
- technical logs and analytics data are kept according to operational rules and the rules of the technical providers used.
9. User rights
Subject to applicable law, the user may have the right to:
- be informed;
- access data;
- rectify data;
- erase data;
- restrict processing;
- object;
- withdraw consent where processing is based on consent;
- portability where the right applies;
- lodge a complaint with the competent authority.
To exercise these rights, the user may write to support@ziazi.app.
In the Republic of Moldova, the competent authority is the National Center for Personal Data Protection.
10. Closing the account and deleting data
At the date of this policy, the user may request account closure or data deletion by contacting ZIAZI at support@ziazi.app.
In some situations, we may not be able to delete all data immediately, for example when it must be kept for:
- legal obligations;
- audit;
- fraud prevention;
- abuse investigation;
- defense or exercise of rights.
Where immediate full deletion is not possible, we may restrict, anonymize, or keep only the minimum necessary part.
11. Data security
ZIAZI applies reasonable technical and organizational measures to protect data, such as:
- secure connections;
- access control;
- separation of technical environments;
- expiry and protection for credentials and OTP;
- logs and audit for sensitive actions;
- backups and operational continuity measures.
No security measure can guarantee absolute protection, but we treat data security as a constant operational obligation.
12. Cookies and analytics
ZIAZI uses cookies and similar technologies for the functioning of the website and the web app.
According to the current configuration, the platform uses Google Tag Manager as the shared layer that loads technical analytics and Meta Pixel as a measurement tag for public campaigns and basic conversions.
More details are available in the ZIAZI Cookie Policy.
13. Data about minors
ZIAZI is intended for persons at least 18 years old and does not intentionally seek to collect data from minors.
If we learn that an account belongs to a minor, we may restrict or close that account and treat the related data according to applicable legal obligations.
14. Policy changes
We may update this policy to reflect product, infrastructure, or legal changes.
If the changes are important, we may inform users through the app, email, or another reasonable available channel.
15. Contact
For questions about personal data or this policy, you can contact us at:
- ZIAZI DIGITAL GROUP S.R.L
- IDNO: 1026023041407
- Registered office: MD-6801, str. Nucarilor 53, or. Ialoveni, Republic of Moldova
- E-mail: support@ziazi.app
- Website: ziazi.app