Privacy Policy
This Privacy Policy describes how KZO Lab LLC ("KZO Lab," "we," "us," or "our") collects, uses, and shares information about you when you use Diola, our AI-powered financial education and decision-support mobile application and website (collectively, the "Service").
We've written this policy to be readable. If anything is unclear, contact us at support@diola.co and we'll explain.
1. Who We Are
Diola is operated by KZO Lab LLC, a limited liability company. References to "Diola," "we," "us," or "our" mean KZO Lab LLC.
Contact: support@diola.co
2. Information We Collect
We collect only what we need to run Diola and improve it. We do not sell your personal information.
2.1 Information You Provide Directly
- Account information. Your email address and any profile details you choose to enter (such as your name) when you create an account.
- Authentication information. When you sign in using Sign in with Apple or Sign in with Google, we receive limited information from those providers (typically a unique identifier, your name, and your email or a relay email address). We do not receive your Apple ID or Google password.
- Financial inputs you enter.Information you voluntarily enter into Diola's calculators, planning tools, sprint tasks, goals, and Advisor conversations — for example, income figures, expenses, debt amounts, target credit scores, and questions you ask the AI Advisor.
- Communications. Messages you send to our support team.
2.2 Information Collected Automatically
- Usage data. Pages and screens you view, features you use, taps and navigation patterns, and similar interaction data.
- Device and session data. Device type, operating system version, app version, language settings, time zone, IP address, and unique device identifiers.
- Diagnostic data. Crash logs and performance data that help us identify and fix bugs.
2.3 Information We Do NOT Collect
Diola does not currently:
- Connect to your bank accounts or use services like Plaid.
- Process payments, transfer money, or execute financial transactions on your behalf.
- Access your credit reports from credit bureaus.
- Collect Social Security numbers, account numbers, or other sensitive identifiers.
If this changes in the future, we will update this Privacy Policy and notify you.
3. How We Use Your Information
We use your information to:
- Provide, operate, and maintain the Service.
- Create and manage your account.
- Generate personalized financial education content, calculations, plans, and AI Advisor responses based on the inputs you provide.
- Save your progress (sprint tasks, goals, calculator history) across sessions and devices.
- Communicate with you about your account, respond to support inquiries, and send service-related notifications.
- Monitor app performance, diagnose crashes, and improve features.
- Detect, prevent, and address security issues, fraud, or abuse.
- Comply with legal obligations.
We do not use your personal financial inputs to train external third-party AI models. Inputs sent to AI providers to generate Advisor responses are processed transiently for that purpose and governed by the terms below.
4. Third-Party Service Providers
We work with a small number of trusted service providers to operate Diola. These providers process your information on our behalf and are contractually limited in how they may use it.
| Provider | Purpose | Type of Data |
|---|---|---|
| Supabase | Database hosting, authentication, account storage | Account data, user inputs |
| Apple | Sign in with Apple, App Store distribution, crash reporting | Authentication identifiers, diagnostic data |
| Sign in with Google authentication | Authentication identifiers | |
| AI model providers | Powering the Advisor feature | Questions you submit to the Advisor and relevant context |
| Vercel | Web hosting for diola.co | Server logs, IP addresses |
We may add or change service providers over time. We'll update this list when we make significant changes.
5. How We Share Information
We share information only in these limited circumstances:
- Service providers (listed above) who help us operate Diola.
- Legal requirements. When required by law, regulation, court order, or government request, or to protect rights, safety, or property.
- Business transfers.If KZO Lab is involved in a merger, acquisition, financing, or sale of assets, your information may be transferred. We'll notify you before your information becomes subject to a different privacy policy.
- With your consent. Any other sharing will be done with your explicit permission.
We do not sell your personal information. We do not share your personal information with advertisers.
6. Data Retention
We keep your information for as long as your account is active. If you delete your account, we will delete your personal information from our active systems within 30 days, except where we are required to retain certain information for legal, regulatory, security, or fraud- prevention purposes.
Backups containing your information may persist for up to 90 days before being permanently overwritten.
7. Your Rights and Choices
You have control over your information.
7.1 Access, Update, and Deletion
- Access and update. You can view and edit your profile information at any time from within the Diola app.
- Account deletion. You can delete your account at any time through the Profile tab in the Diola app. Account deletion removes your personal information from our active systems as described in Section 6.
- Direct request. You can also email us at support@diola.co to request access, correction, or deletion of your personal information.
7.2 Region-Specific Rights
Depending on where you live, you may have additional rights under laws such as the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), or similar laws. These rights may include:
- Requesting a copy of the personal information we hold about you.
- Requesting correction or deletion of your information.
- Objecting to or restricting certain processing.
- Data portability.
- Withdrawing consent where processing is based on consent.
To exercise any of these rights, contact us at support@diola.co. We'll respond within the timeframes required by applicable law.
8. Children's Privacy
Diola is intended for adults and is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us at support@diola.co and we will delete it.
9. Security
We implement reasonable technical and organizational measures designed to protect your information, including encryption in transit (HTTPS/TLS), access controls, and infrastructure provided by reputable providers like Supabase and Vercel.
No system is completely secure. We cannot guarantee absolute security, but we work hard to protect your information and to respond quickly if a security incident occurs.
10. International Data Transfers
KZO Lab is based in the United States. If you access Diola from outside the United States, your information will be transferred to, stored, and processed in the United States. By using Diola, you consent to this transfer.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. When we do, we'll update the "Last Updated" date at the top. For material changes, we'll provide additional notice — for example, by email or through an in-app notification — before the changes take effect.
Continued use of Diola after changes become effective means you accept the updated policy.
12. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or your personal information, contact us:
KZO Lab LLC
Email: support@diola.co
We aim to respond to all privacy inquiries within 7 business days.
See also our Terms of Service.