Z-Image.win Privacy Policy

This Privacy Policy explains how Z-Image.win (“Z-Image.win”, “we”, “us”, or “our”) collects, uses, stores, and shares information when you use our website at https://z-image.win/ and any related services (collectively, the “Service”).

By accessing or using the Service, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with this Policy, please do not use the Service. If you have any questions, you can contact us at support@z-image.win.

1. Scope

This Privacy Policy applies to:

• Visitors to our website https://z-image.win/
• Registered users of Z-Image.win
• Any use of our text-to-image and image-to-image generation tools, prompt templates, galleries, and related features

This Policy does not apply to third-party websites, services, or models that we may reference or link to.

2. How We Position Ourselves

Z-Image.win is an independent AI image-generation platform that deploys and optimizes open-source Z-Image models. We provide:

• Our own web interface and user experience
• Our own workflows, rate limits, and credit system
• Our own safety policies and moderation layer

We are not an official product of any cloud provider or model vendor. All references to “Z-Image” in this Policy refer solely to our own deployment and service, not to any third-party provider.

3. Information We Collect

We follow a data minimization principle and only collect information necessary to operate and improve the Service, provide support, and comply with legal obligations.

4. How We Use Your Information

We use collected data for the following purposes:

• To operate, maintain, and improve the Service
• To authenticate user accounts and keep them secure
• To prevent abuse, spam, and fraudulent usage
• To respond to support inquiries and bug reports
• To comply with legal or regulatory requirements
• To perform high-level analytics and product planning (without inspecting prompt content by default)

4.1 What We Will Not Do

Unless you explicitly consent, we:

• Do not sell your personal data
• Do not use your personal data for third-party advertising
• Do not share your prompts or generated images with external parties for their own purposes
• Do not train models on your prompts or images

Any optional data-sharing or research programs will be clearly labeled and strictly opt-in.

5. Legal Bases for Processing (GDPR)

If you are located in the EU/EEA or a jurisdiction with similar frameworks, we rely on the following legal bases to process your personal data:

• Contractual necessity – Providing access to the Service, including account creation, credit usage, and generation features.
• Legitimate interests – Ensuring security, preventing abuse, improving performance, and understanding aggregate usage, in a way that respects your privacy.
• Consent – Optional features such as saved galleries, newsletters, or any explicit opt-in data-sharing/training programs. You may withdraw consent at any time via account settings or by contacting us.

6. Sharing and Disclosure of Data

We do not sell or trade your personal information. We only share data under the following limited circumstances:

6.1 Service Providers

We may share data with trusted third-party processors who help us operate the Service, such as:

• Cloud hosting providers
• Payment processors
• Logging and monitoring services
• Email delivery services

These providers are bound by confidentiality obligations and may only process data as instructed by us.

6.2 Legal Requirements

We may disclose information if required to:

• Comply with applicable laws or regulations
• Respond to valid legal processes or governmental requests
• Protect the rights, property, or safety of Z-Image.win, our users, or the public

We resist overly broad or vague requests and only comply when legally mandated.

6.3 Security and Abuse Prevention

We may share limited technical data with security or anti-fraud services to:

• Detect and prevent fraud
• Monitor abuse and attacks
• Maintain platform integrity

We do not share your prompt content or generated images for these purposes, unless strictly necessary to investigate a specific abuse incident.

7. International Data Transfers

Your data may be processed in countries other than your own, potentially including locations outside the EU/EEA. When we transfer personal data internationally, we implement appropriate safeguards, which may include Standard Contractual Clauses (SCCs), data processing agreements with service providers, and industry-standard security and privacy controls.

8. Data Retention

We retain your personal data only as long as necessary for:

• Operating your account and the Service
• Complying with legal obligations (e.g., tax and accounting)
• Resolving disputes
• Ensuring security and abuse prevention

High-level guidelines include:

• Account data: retained while your account is active, and for a reasonable period after closure.
• Logs and security data: retained for a limited period (e.g., 30–180 days), unless needed for an ongoing investigation.
• Saved prompts or images: retained until you delete them or close your account.
• Ephemeral processing data: retained only as long as needed to complete generation or debug specific incidents.

You may request deletion of your personal data as described under “Your Rights”.

9. Security Measures

We implement industry-standard security controls, including encryption in transit (HTTPS/TLS), secure password hashing and salted storage, access control and least-privilege principles, and regular monitoring for abuse, anomalies, or vulnerabilities. However, no internet service can guarantee 100% security.

You are also responsible for keeping your password confidential, using a strong, unique password, and not sharing your account credentials with others. If you believe your account has been compromised, contact us immediately at support@z-image.win.

10. Your Rights

Depending on your jurisdiction (for example, under GDPR, CCPA, or similar laws), you may have some or all of the following rights:

• Access – Request a copy of the personal data we hold about you.
• Rectification – Request correction of inaccurate or incomplete data.
• Deletion – Request deletion of your personal data (“right to be forgotten”), subject to legal obligations.
• Restriction – Request restriction of certain processing activities.
• Portability – Request your data in a structured, commonly used, machine-readable format.
• Objection – Object to processing based on legitimate interests or direct marketing.
• Withdraw Consent – Withdraw consent for any processing based on consent.

To exercise these rights, contact us at support@z-image.win. We will respond within 30 days, or as required by applicable law. If you are not satisfied with our response, you may have the right to lodge a complaint with your local data protection authority.

11. Children's Privacy

The Service is not intended for children under 13 years of age (or the age of digital consent in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has created an account or provided personal data, please contact us, and we will take steps to verify the situation and delete the account and associated data if appropriate.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our Service, changes in legal or regulatory requirements, or feedback from users or authorities. When we make material changes, we will update the “Last Updated” date and provide a notice on our website and/or via email or in-app notification. Your continued use of the Service after the effective date of any changes constitutes your acceptance of the updated Policy.