Privacy policy

This Privacy Policy describes how ZIF Labs LLC (“ZIF Labs,” “we,” “us”) collects, uses, and shares information when you use DAJU (the “Service”), operated under the DAJU trade name at dajuspecs.com, our public blog at dajuspecs.com/blog, and related subdomains.

Who we are

The Service is provided by ZIF Labs LLC. DAJU is a doing-business-as (DBA) name of ZIF Labs LLC. For privacy questions or requests, contact hello@dajuspecs.com.

Information we collect

• Account and organization data: name, email, organization name, role, authentication credentials, and workspace settings.
• Content you submit: requirements, documents, messages, generated artifacts (summaries, test cases, test data, test plans, automation output), and related metadata needed to provide the Service.
• Billing data: subscription status, plan tier, and limited billing identifiers. Payment card data is processed by Stripe; we do not store full card numbers.
• Technical and usage data: IP address, browser type, device information, logs, security events, and product usage (e.g., feature usage, quotas) to operate and improve the Service.
• Communications: messages you send us (e.g., demo requests, support, newsletter sign-ups).
• Blog and newsletter: email address if you subscribe on the blog, plus basic analytics (e.g., pages viewed, referral source) to understand readership.

Blog and third-party advertising

Our public blog publishes articles about QA, software quality, and related topics. We may display third-party advertisements on blog pages now or in the future. Ad partners may use cookies, pixels, and similar technologies to deliver, measure, and personalize ads, subject to their own privacy policies. Where required by law, we will provide additional notice or consent tools when advertising features go live.

Bring Your Own Key (BYOK) and third-party AI providers

Organizations may connect their own large language model (LLM) provider credentials. When BYOK is enabled, content you submit for AI features may be sent to your chosen provider under their terms and privacy policy. You are responsible for configuring an appropriate provider and reviewing their data practices.

How we use information

• Provide, secure, and maintain the Service (including multi-tenant workspaces and billing).
• Process AI-assisted generation and QA workflows you request.
• Send transactional messages (e.g., invitations, account notices, demo confirmations) via our email provider.
• Enforce plans, quotas, and acceptable use.
• Comply with law, prevent fraud, and protect our rights and users.
• Publish and measure blog content and newsletter engagement.
• Display and measure advertising on public blog pages, where enabled.
• Improve the Service with aggregated or de-identified analytics where feasible.

How we share information

We do not sell your personal information for money. We may share information with:

• Service providers that help us operate the Service, such as cloud hosting, database hosting, email delivery, and payment processing.
• Your LLM provider when you use BYOK or org-configured AI settings.
• Other members of your organization according to your workspace role and product design.
• Advertising partners on public blog pages (when ads are enabled), who may collect or receive online identifiers and usage data under their policies.
• Authorities or third parties when required by law, to protect rights and safety, or in connection with a merger, acquisition, or asset sale (with notice where appropriate).

Typical subprocessors

Depending on configuration, subprocessors may include:

• Cloud infrastructure and application hosting (e.g., AWS)
• Database hosting (e.g., Supabase Postgres)
• Payment processing (Stripe)
• Transactional email (e.g., Resend)
• LLM providers you or your organization configure (e.g., OpenAI, Google)
• Source-control integrations you connect (e.g., GitHub)
• Advertising and analytics providers on the blog (when enabled), such as ad networks or measurement tools

Cookies and similar technologies

We use session cookies and similar technologies for authentication, security, and preferences on the Service. On public marketing and blog pages, we and our partners may also use cookies or similar technologies for analytics and advertising (including to limit how often you see an ad). You can control cookies through your browser and, where offered, through on-site consent or opt-out controls; disabling cookies may limit sign-in, certain features, or ad personalization.

Data retention

We retain information for as long as your account or organization is active and as needed to provide the Service, comply with legal obligations, resolve disputes, and enforce agreements. You may request deletion subject to legal and operational requirements.

Security

We use administrative, technical, and organizational measures designed to protect information. No method of transmission or storage is completely secure; you use the Service at your own risk and should protect your credentials and BYOK keys.

International users

We are based in the United States. If you access the Service from other regions, you understand that information may be processed in the U.S. and other locations where our providers operate.

Your choices and rights

Depending on where you live, you may have rights to access, correct, delete, or restrict certain processing of your personal information. Contact hello@dajuspecs.com to submit a request. We may need to verify your identity. If you are a California resident, you may have additional rights under the CCPA/CPRA; we do not sell personal information as defined by those laws.

Children

The Service is not directed to children under 16, and we do not knowingly collect their personal information.

Changes

We may update this policy from time to time. We will post the revised version on this page and update the “Last updated” date. Material changes may be communicated through the Service or by email where appropriate.

Contact

ZIF Labs LLC (DAJU)
Email: hello@dajuspecs.com
Web: https://dajuspecs.com