Privacy Policy

1. Introduction

Zeo ("we," "our," or "us") is an open source fork of KiCad with a focus on automation and AI. Zeo consists of a desktop application that runs locally on your computer and communicates with our cloud API services for AI functionality. This Privacy Policy explains how we collect, use, and protect your information when you use our desktop application, web dashboard, and API services.

2. Information We Collect

Account Information

When you sign in using Google or GitHub OAuth, we receive and store:

• Your email address
• Your display name (if provided by the OAuth provider)
• A unique user identifier from the OAuth provider

Usage Data

When you use our API services, we collect:

• API request timestamps
• Token counts (input and output tokens)
• Model identifiers used
• Calculated usage costs

Local Data

Your KiCad schematic files remain on your local computer. The desktop application may send portions of your schematic data to our API for AI processing, but this data is processed in real-time and not permanently stored on our servers. We do not retain conversation content or schematic designs after processing is complete.

3. How We Use Your Information

We use the collected information to:

• Authenticate your identity and provide access to our services
• Track and display your API usage on your dashboard
• Enforce usage quotas and billing limits
• Improve and maintain our services
• Communicate with you about service updates or issues

4. Third-Party Services

We use the following third-party services:

Supabase

We use Supabase for authentication and database services. Your account information and usage data are stored in Supabase. See their privacy policy.

Anthropic

We use Anthropic's Claude API to process your AI requests. Your prompts and conversations are sent to Anthropic for processing. See their privacy policy.

Vercel

Our application is hosted on Vercel. See their privacy policy.

OAuth Providers (Google, GitHub)

We use Google and GitHub OAuth for authentication. The desktop application uses these services to securely verify your identity without handling your passwords directly. We only receive basic profile information (email, display name) necessary for account creation. We do not access your Google Drive, Gmail, or any other Google services beyond authentication. When you sign in, you are also subject to Google's and GitHub's privacy policies.

5. Data Security

We implement appropriate technical and organizational measures to protect your data, including:

• Encryption of data in transit using HTTPS
• Row-level security policies ensuring users can only access their own data
• Secure authentication via OAuth 2.0
• Regular security reviews of our infrastructure

6. Data Retention

We retain your account information for as long as your account is active. Usage data is retained for billing and analytics purposes. If you delete your account, your personal data will be removed within 30 days, though anonymized usage statistics may be retained.

7. Your Rights

You have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your account and associated data
• Export your usage data
• Withdraw consent for data processing

To exercise these rights, please contact us at the address below.

8. Children's Privacy

Our services are not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the new policy on this page and updating the "Last updated" date.

10. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

privacy@zeo.dev

You can also reach us through our GitHub page.