Privacy Policy

This Privacy Policy is published in multiple languages for your convenience. The English language version is the legally binding document. All other language versions are provided for reference purposes only and are not legally binding.

In the event of any conflict or discrepancy between the English version and any translation, the English version shall prevail and govern.

If you have questions about specific terms, please refer to the English version or contact support@gigzoro.com for clarification.

Effective: February 1, 2026

Controller: GigZoro, Inc. ("GigZoro") – www.GigZoro.com – support@gigzoro.com

This is a plain‑English overview. The legally binding details are set out below.

We collect contact and account details, identity and verification data, payment and transaction data, device and usage data, photo evidence including GPS coordinates and device metadata, communications, and Provider qualifications.

We use this information to operate the Platform, process bookings and payouts, prevent and detect fraud, provide AI-assisted features, personalize and improve the experience, support users, and comply with law.

We share information with Providers and Customers to fulfill bookings, with service providers acting on our instructions, and with authorities where required. GigZoro personnel may access customer-provider messages and photos for support, fraud prevention, and dispute resolution. We do not sell personal information.

Your controls include access, correction, deletion (subject to limitations for photo evidence), portability, objection or restriction in some cases, consent withdrawal where used, and opt‑outs for sale/share and targeted ads where applicable.

GigZoro, Inc. is the controller for personal information processed in connection with the Platform (www.GigZoro.com and our mobile applications). This notice applies to use of the Platform by Customers, Providers, visitors, and administrative personnel.

For payment services or certain Provider features, a GigZoro Payments or Provider Services entity may act as controller for those activities depending on your region and the specific service.

Identifiers and account data (name, email, phone, address, account settings, profile details).

Identity and verification data where permitted or required (for example government ID details, date of birth, verification selfies).

Payment and transaction data (payment instrument details, billing information, transaction amounts, payout information).

Device and usage data (IP address, device identifiers, app and browser events, diagnostics and crash logs, cookies and similar technologies).

Photo and media data: When you upload photos for rental check-in/check-out documentation, we automatically extract and store EXIF metadata embedded in your images, including GPS coordinates (latitude, longitude, altitude), timestamp of photo capture, device manufacturer and model, camera software version, and image dimensions and orientation. This metadata is stored separately from the visible photo content and is used for fraud prevention and dispute resolution.

Communications and support interactions: All messages exchanged through the Platform between Customers and Providers, including chat conversations, support tickets, and inquiry messages. Message content is stored in plaintext and may be processed by automated translation services to facilitate cross-language communication. GigZoro personnel have access to these communications for support, fraud prevention, dispute resolution, and platform safety purposes.

IP addresses and session data: Your IP address is logged when you access the Platform, send messages, or submit forms. This data is used for security, fraud prevention, and to comply with legal requirements.

For Providers, qualifications, licenses, and compliance information relevant to listings.

Sensitive data: we do not intentionally seek sensitive categories; if you choose to share such information, we will rely on consent or another lawful basis where required.

When you participate in equipment rental transactions, you may be asked to take photos for check-in and check-out documentation. These photos serve as evidence of equipment condition and are critical to our Rental Protection Program.

Photo Metadata Collection: For each photo captured through our Platform, we automatically extract and store the following metadata: (a) GPS coordinates (latitude, longitude, and altitude if available); (b) Capture timestamp from your device; (c) Device manufacturer and model; (d) Camera software version; (e) Image dimensions and orientation. This metadata is extracted using industry-standard EXIF data parsing.

Purpose: Photo metadata is collected exclusively for fraud prevention, dispute resolution, and verification of equipment condition claims. It helps establish when and where photos were taken, which is essential for processing damage claims fairly.

Photo Deletion: You may delete photos you have uploaded within 15 minutes of upload. After this 15-minute grace period, photos become locked and cannot be deleted by users. This limitation exists because photos serve as legal evidence for potential insurance claims and disputes.

Access: Photos and associated metadata are accessible to: (a) The customer who uploaded them; (b) The provider associated with the rental; (c) GigZoro staff for dispute resolution, fraud investigation, and claims processing. Photos are stored in secure cloud storage with access controls.

Metadata Visibility: While photos are visible to both transaction parties, the extracted metadata (GPS coordinates, device information) is not displayed to users and is accessible only to GigZoro personnel for administrative and fraud prevention purposes.

Storage Location: Photos are stored in Azure Blob Storage with the following path structure: {orderId}/{lineItemId}/photos/{role}/{photoType}/. Metadata is stored as separate JSON files alongside each photo.

Operate, maintain, and improve the Platform; enable listings, bookings, messaging, payments, and Provider payouts; provide AI-assisted product search, content generation, and translation services; and personalize features and communications.

Authenticate users; detect, investigate, and prevent fraud, abuse, and security incidents; verify photo evidence authenticity using GPS and device metadata; enforce our Terms and policies; and protect the rights, safety, and property of users and GigZoro.

Comply with legal obligations including tax, anti‑money laundering, insurance claim documentation, and recordkeeping; respond to lawful requests; and handle disputes.

Conduct analytics, testing, and quality assurance to improve performance, reliability, and user experience.

We process personal information under these bases: contract (to provide the Platform and bookings), legitimate interests (such as security, fraud prevention, service improvement, and certain communications, subject to balancing), legal obligations (such as tax and AML), and consent where required (for example certain marketing or cookies). You may withdraw consent at any time without affecting prior processing.

With Providers and Customers as needed to fulfill a booking or support a service interaction.

With service providers acting on our instructions, including payment processors, hosting and cloud infrastructure, analytics, customer support, security providers, and AI service providers (Azure OpenAI for product search, translation, and content assistance).

With authorities, advisors, or third parties when required by law, to protect rights or safety, or in connection with a corporate transaction.

Platform Communications: GigZoro personnel may access, review, and respond to customer-provider chat messages and support tickets. This access is used for: (a) Providing customer support when requested; (b) Investigating fraud, abuse, or policy violations; (c) Resolving disputes between customers and providers; (d) Ensuring platform safety and compliance. GigZoro may, at its discretion, participate in chat threads as a third party to provide assistance, mediate disputes, or communicate important platform information.

We do not sell personal information. We may share aggregated or de‑identified information for research, benchmarking, or marketing consistent with your choices.

The Platform provides messaging features that allow Customers and Providers to communicate directly. All messages sent through the Platform are subject to monitoring and are not private end-to-end encrypted communications.

What We Collect: Message content (original text and any translations), sender and recipient identifiers, timestamp of each message, IP address from which messages are sent, and read receipt status.

Automatic Translation: Messages may be automatically translated using Azure Translator services to facilitate communication between users who speak different languages. Both the original message and the translated version are stored and displayed to recipients.

GigZoro Access: GigZoro staff have full access to all customer-provider messages through our administrative systems. Staff may read message content for: (a) Responding to support requests; (b) Investigating reported issues or policy violations; (c) Fraud prevention and detection; (d) Dispute resolution and evidence gathering. GigZoro staff may also respond directly in chat threads when necessary to resolve issues or provide platform-related information.

Message Retention: Chat messages are retained indefinitely in our systems and are not automatically deleted. Messages may be retained even after account deletion to preserve records for legal compliance, dispute resolution, and fraud prevention.

Support Tickets: Support conversations follow similar practices. All support ticket content, including attachments and responses, is accessible to GigZoro support staff and may be used for training, quality assurance, and service improvement.

GigZoro uses artificial intelligence (AI) and machine learning technologies to enhance Platform functionality and user experience. This section describes how AI is used and how your data interacts with AI systems.

AI-Powered Features: We use AI for: (a) Product search and recommendations (GigZoro Assistant); (b) Provider content generation (descriptions, policies, pricing suggestions); (c) Message translation between customers and providers; (d) FAQ and policy information retrieval; (e) Provider onboarding assistance.

Data Sent to AI: When you use AI features, the following data may be sent to our AI service providers: Your query or search terms, your preferred language, your general location (country, state, city) if relevant to search, and contextual information about your request. We do NOT send personal identifiers, payment information, or sensitive account data to AI systems.

AI Service Provider: AI features are powered by Azure OpenAI Service (GPT-4o-mini model). Your queries are processed through a secure Azure Function and are not used to train AI models. Microsoft's data processing terms apply to AI-processed data.

No Automated Decision-Making: AI is used as an assistive tool only. AI does not make binding decisions about: insurance claim approvals or denials, account suspensions or terminations, payment processing or refunds, or dispute resolutions. All such decisions are reviewed and made by human personnel.

AI-Generated Content Disclosure: When providers use AI to generate product descriptions, policies, or other content, this content is presented to providers for review and approval before publication. Providers remain responsible for all published content, whether AI-assisted or manually created.

Data Retention for AI: Queries sent to AI services are not retained by the AI provider after processing. Request logs may be retained by GigZoro for up to 30 days for debugging and service improvement purposes, after which they are automatically deleted.

We use strictly necessary cookies to operate the site. With consent where required, we also use performance and analytics, functional, and advertising cookies. Manage preferences via your browser and in‑product controls, subject to technical limitations.

We do not sell personal information. Where our use of advertising or analytics constitutes "sharing" for cross‑context behavioral advertising or targeted advertising under state privacy laws, you may opt out using available controls or by contacting support. We honor required opt‑out preference signals where applicable.

Depending on your location, you may have rights to request access, correction, deletion, and portability; to object to or restrict certain processing; to withdraw consent where processing is based on consent; and to appeal a denial. California and other US state laws may also provide opt‑outs for sale/share and targeted advertising.

Photo Evidence Limitations: Due to the evidentiary nature of rental documentation photos, your right to deletion is limited for photo data. You may delete photos within 15 minutes of upload. After this period, photos are locked and cannot be deleted until the standard retention period expires (7 years after rental end date). This limitation is necessary to preserve evidence for potential insurance claims and dispute resolution. If you believe photos were uploaded in error or contain inappropriate content, please contact support@gigzoro.com.

You can exercise rights through in‑product privacy controls or by contacting support@gigzoro.com. We may request information to verify your identity. We will not discriminate for exercising your rights.

We may transfer personal information to countries with different data protection laws. Where required, we use safeguards such as standard contractual clauses and perform transfer risk assessments.

We retain personal information for different periods depending on the type of data and applicable legal requirements. Below are our standard retention periods:

Account Profile Data: Retained for the duration of your account plus 7 years after account closure to comply with tax and legal requirements. You may request deletion earlier subject to legal retention obligations.

Transaction Records & Orders: Retained for 7 years after the transaction date for tax compliance, financial auditing, and legal requirements. Order details, payment records, and invoices fall under this category.

Chat Messages & Communications: Retained indefinitely. Messages are not automatically deleted and may be preserved even after account deletion for dispute resolution, fraud prevention, and legal compliance purposes.

Photo Evidence (Check-in/Check-out): Retained for 7 years after the rental end date. Photos serve as legal evidence for insurance claims and disputes. GPS metadata and EXIF data are retained for the same period as the associated photos.

Support Tickets: Retained for 5 years after ticket closure for quality assurance, legal compliance, and dispute reference purposes.

Push Notification Subscriptions: Active subscriptions are retained until you unsubscribe or your subscription expires. Expired subscriptions are automatically removed.

Notification History: In-app notifications expire and are automatically deleted 30 days after creation.

AI Interaction Logs: Queries to AI services are logged for up to 30 days for debugging purposes, then automatically deleted. The AI service provider does not retain your queries after processing.

Security & Access Logs: IP addresses, login events, and security logs are retained for 2 years for security auditing and fraud prevention.

Anonymous & Aggregated Data: De-identified statistical data may be retained indefinitely for research, analytics, and service improvement.

Legal Hold: Any data subject to a legal hold, litigation, or regulatory investigation will be retained until the matter is resolved, regardless of standard retention periods.

We employ administrative, technical, and physical safeguards designed to protect personal information, including encryption in transit and at rest where appropriate, access logging, vetting of service providers, and periodic reviews of our controls. No method of transmission or storage is perfectly secure.

The Platform is not directed to children under 13, or under 16 in certain regions. We do not knowingly collect personal information from children. If you believe a child has provided information, contact us to request deletion.

We may update this notice from time to time. When we make changes, we will post the revised version and update the "Last Updated" date. Your continued use of the Platform after changes take effect means you accept the updated notice.

Questions or requests about this policy or your personal information can be sent to support@gigzoro.com.