Privacy Policy

Last updated: May 2026

Your privacy matters to us. This Privacy Policy explains what information Zodovia ("we", "us", "our") collects, how we use it, and your rights regarding your personal data — including rights under Sri Lanka's Personal Data Protection Act No. 9 of 2022 (PDPA).

1. Information We Collect

Information you provide

  • Account information: your name, email address, and password when you register
  • Birth data: your date of birth, time of birth, and city of birth — used solely to calculate your astrological chart and generate personalised guidance
  • Personal context: optional information you provide such as life goals, wellness focus, and general life situation — used to personalise your guidance
  • Sensitive flags: if you voluntarily indicate you are going through a difficult period — used only to ensure your guidance is written with greater care and sensitivity

Information collected automatically

  • Usage data: pages visited, features used, and time spent on the site
  • Device data: browser type, operating system, and IP address
  • Registration IP: recorded at account creation to prevent abuse

Payment information

We do not store your payment card details. All payments are processed securely by your chosen payment provider. We receive only subscription confirmation and a transaction reference — not your card number or bank details.

2. How We Use Your Information

  • To create and manage your account
  • To calculate your personalised birth chart and generate astrological guidance
  • To send daily horoscope emails (paid users only, if email delivery is enabled)
  • To process subscription payments via your chosen payment provider
  • To improve our service and fix issues
  • To respond to your support requests
  • To prevent fraud and abuse

We do not sell your personal data. We do not use your birth data for any purpose other than generating your astrological content.

3. AI-Generated Content and Cross-Border Processing

Your birth chart data and relevant personal context are sent to Anthropic's Claude API (United States) to generate personalised readings and horoscopes. By using Zodovia, you consent to this cross-border transfer of your data to the United States for the purpose of AI processing. This transfer is necessary for the service to function. Anthropic's privacy and data use policies govern the handling of this data at their end.

We transmit only the data necessary for generating your reading. We do not store any data with Anthropic beyond what is required for the API request.

4. Data Sharing

We share your data only with the following third-party service providers, and only to the extent necessary to deliver our service:

  • Anthropic (USA) — to generate AI readings (birth chart data and personal context)
  • Resend (USA) — to deliver horoscope emails (email address only)
  • Railway (USA) — our cloud hosting provider where your account data is stored
  • Bank of Ceylon (Sri Lanka) — bank transfer payments (no data shared beyond confirmation of transaction)

We do not share your data with advertisers, data brokers, or any other third parties. All third-party processors are bound by their own privacy policies and applicable data protection laws.

5. Data Retention

We retain your account and birth data for as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where retention is required by applicable law (including Sri Lankan law).

6. Your Rights under Sri Lanka's PDPA

Under the Personal Data Protection Act No. 9 of 2022 of Sri Lanka, you have the following rights regarding your personal data held by us:

  • Right to Access: request a copy of the personal data we hold about you
  • Right to Rectification: request correction of inaccurate or incomplete data
  • Right to Erasure: request deletion of your account and associated personal data
  • Right to Data Portability: request your data in a machine-readable format
  • Right to Object: object to certain processing activities
  • Right to Withdraw Consent: withdraw consent for optional data processing at any time

To exercise any of these rights, email us at zodovia.lk@gmail.com. We will respond within 30 days.

7. Cookies and Local Storage

Zodovia uses only essential browser local storage to keep you logged in (your session token). We do not use tracking cookies, advertising cookies, or third-party analytics. No cookie consent banner is needed as we do not use non-essential cookies.

8. Security

We use industry-standard security measures including encrypted connections (HTTPS), hashed passwords (bcrypt), and secure cloud infrastructure. No method of transmission over the internet is 100% secure, but we take reasonable precautions to protect your data.

9. Children's Privacy

Zodovia is not intended for users under 18 years of age. We do not knowingly collect personal data from children. If you believe a child has provided us with their data, please contact us and we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or by posting a notice on our website. Continued use of Zodovia after changes constitutes acceptance of the updated policy.

11. Contact and Complaints

For any privacy-related questions, data requests, or complaints, contact us at zodovia.lk@gmail.com.

If you believe your data protection rights have been violated, you may also lodge a complaint with the Data Protection Authority of Sri Lanka at www.dpa.gov.lk.

Contact Us

We respond within 24 hours (Mon–Sat, 9 AM – 6 PM Sri Lanka time)

📧zodovia.lk@gmail.com 💬WhatsApp: +94 741 251 212