Privacy Policy

This policy is effective as of 22 April 2021
Last updated: 22 April 2021

Zenda Financial (“Zenda”, “we”, “us”) respects your privacy and takes our responsibility to safeguard your personal information seriously.

This Privacy Policy explains how we acquire, use, and transmit Personal Information. We may collect information on our website (“Site”) at http://www.getzenda.com or our mobile application (“App”), including the establishment of accounts to hold funds, receive one or more debit cards and the option to establish an investment account, collectively the (“Services”).

Personal information is any information about you which can be used to identify you. This includes information about you as a person (such as name, address, and date of birth), your devices, payment details, and even information about how you use an app or online service.

In the event our Services contain links to third-party sites and services, please be aware that those sites and services have their own privacy policies. After following a link to any third-party content, you should read their posted privacy policy information about how they collect and use personal information. This Privacy Policy does not apply to any of your activities after you leave our Services.

We may update this Privacy Policy from time to time. We will notify you by posting information on the Site and the App or by sending you an email about the update. Continued use of the Services following the posting of such updates will be deemed your acceptance of those changes.

1. Personal Information We Collect

Zenda collects information about you to provide you with the Services. Information we collect falls into one of two categories: “voluntarily provided” information and “automatically collected” information. “Voluntarily provided” information refers to any information you knowingly and actively provide us when using our App and its associated Services. “Automatically collected” information refers to any information automatically sent by your devices while accessing our App and its associated Services.

Personal information (“PI”) means data that can be used to identify you or contact you.   For purposes of this Privacy Policy, PI includes but is not limited to Non-Public Information (“NPI”) as defined in the Gramm-Leach-Bliley Act of 1999 and Protected Health Information (“PHI”) as that term is defined in the Health Insurance Portability and Accountability Act of 1996 (HIPAA). Anonymous Data means data that by itself does not permit the identification of an individual.

1.1 Information Collected Voluntarily

We may ask for personal information — for example, when you create for an account (“Account”), submit content to us or when you contact us — which may include one or more of the following:

  • Name
  • Email
  • Date of birth
  • Phone/mobile number
  • Home/mailing address
  • Social Security Number or Tax Identification Number
  • Personal Bank Account Information
  • Beneficiary information
  • Dependent information
  • Authorized user information
  • Health Plan information
  • Transactions with us such as contributions, withdrawals, payments and fees
  • Receipts, photographs or other documentation which may contain PHI
  • If you participate in surveys, or App questionnaires, we may collect additional information


Some data collected voluntarily is required to operate the Service. If you do not wish to provide required information, you may not be able to make use of the Service.

1.2 Information Collected Automatically

Information collected by the Service , which may be hosted by a third party, collect information via your device’s in-built tools, such as:

  • Browser type
  • OS Versions
  • IP Address
  • Your phone number
  • Unique Device ID number
  • Location data, GPS
  • Camera
  • Phone/SMS
  • Storage, photos and/or media
  • Notifications
  • Background data refresh


Biometric data is not collected by the App, rather, by the OS manufacturer and is provisioned to us to assist in automatic logins. We neither collect nor retain any biometric

1.3 Permission from Devices

When you install the app or use your device’s tools within the app, we request permission to access this information. The specific data we collect can depend on the individual settings of your device and the permissions you grant when you install and use the app. Some features may be disabled if you do not grant permission for some data collection.

1.4 Cookies

We use cookies to collect information. Our privacy policy covers the use of cookies between your device and our servers. A cookie is a small piece of data that an app may store on your device, typically containing a unique identifier that allows the app servers to recognize your device when you use the app; information about your account, session and/or device; additional data that serves the purpose of the cookie, and any self-maintenance information about the cookie itself. Any communication of cookie data between your device and our servers occurs within a secure environment. We may use session cookies that expire once you close your browser, or persistent cookies that stay until you delete them. The cookies are used to provide you with a personalized and intuitive experience in our Services. You can control the use of cookies by adjusting the settings of your browser and devices, however, changing these setting may affect functionality in the Services.

1.5 Beacons

We use web beacons (“Beacons”) or pixel tags to collect information. Beacons are placed on website and applications and are used to track online movements and information. Beacons also allow us to send email in an optimized format for best user experience, and tell us whether emails have been opened. This information is collected to help us improve the Services and make them more useful to you.

1.6 Log Data

When you access our servers via our Service, we may automatically log the standard data provided by your device. It may include your device’s Internet Protocol (IP) address, your device type and version, your activity within the Service, time and date, and other details about your usage.

Additionally, when you encounter certain errors while using the Service, we automatically collect data about the error and the circumstances surrounding its occurrence. This data may include technical details about your device, what you were trying to do when the error happened, and other technical information relating to the problem. You may or may not receive notice of such errors, even in the moment they occur, that they have occurred, or what the nature of the error is.

Please be aware that while this information may not be personally identifying by itself, it may be possible to combine it with other data to personally identify individual persons.

1.7 User-Provided Content

We consider “user-generated content” to be materials (text, image and/or video content) voluntarily supplied to us by our users. We will not post or in any other way make public the information that is provided to us via the Services. We may use third parties to process and enhance this content, only for the operation of the Service.

1.8 Do-not-track

We do not currently respond to “do not track” signals or other mechanisms that might enable you to opt out of tracking on our Services.

1.9 Third Party Analytics

We make use of third includes third party analytics services that may set their own cookies or beacons. These services include but are not limited to Google Analytics (“Analytics Services”), We engage these services to help analyze how users use the Services. We may receive reports based on these parties’ use of these tools on an individual or aggregate basis. We use the information we get from Analytics Services only to improve our Services. The information generated by the Cookies or other technologies about your use of our Services (the “Analytics Information”) is transmitted to the Analytics Services. The Analytics Services use Analytics Information to compile reports on user activity. The Analytics Services may also transfer information to third parties where required to do so by law, or where such third parties process Analytics Information on their behalf. Each Analytics Services’ ability to use and share Analytics Information is restricted by such Analytics Services’ Terms of Use and Privacy Policy. By using our Site and Services, you consent to the processing of data about you by Analytics Services in the manner and for the purposes set out above. For a full list of Analytics Services, please contact us at privacy@getzenda.com.

1.10 Advertising

We may partner with ad companies to support our marketing efforts, such as to inform potential customers about our Services. We do not sell data for advertising nor do we offer advertising from third parties to users on our Services. In the furtherance of marketing efforts, certain third parties may automatically collect information about your visits to this and other websites, your IP address, your ISP, and the browser you use to visit our Site (but not your name, physical address, email address or telephone number). They do this by using Cookies, Beacons, or other technologies. Information collected may be used, among other things, to better understand the usage and visitation of our Site and the other websites tracked by these third parties. This policy does not apply to, and we are not responsible for, Cookies or Beacons in third party ads, and we encourage you to check the privacy policies of advertisers and/or ad services to learn about their use of Cookies and other technologies. If you would like more information about this practice and to know your choices about not having this information used by these companies, visit: www.networkadvertising.org.

1.11 Information Collected from Third Parties

In some instances your account may be established by your employer, health plan or other third party providing services to your employer. To enable the Services on your behalf, they may provide information that assists us to establish the accounts in a lawful manner. Further, these third parties may make available a website that allows you to access your Zenda account with or without logging in. When you access those sites, you are authorizing Zenda to pass this information, such as balances, to those systems.

1.12 Banks and Financial Institutions

In the establishment and ongoing maintenance of your Account, we receive information from banking and financial partners related to your account to provide the Services. You may receive separate terms and conditions from financial partners which will further describe their processing of your personal information. As part of the Service, you may receive a debit card to facilitate purchases from your Account. In this case, information will be shared between the financial institution, the card issuer, the payment processor, and us to provision of the Service. If you establish an investment account through the Services, we will transmit and receive information with the investment institution to provide you with the Service.

2. Processing Personal Information

We only collect and use your personal information when we have a legitimate reason for doing so. In which instance, we only collect personal information that is reasonably necessary to provide our Services to you.

2.1 Use of Personal Information

We may collect, hold, use, and disclose information for the following purposes, and personal information will not be further processed in a manner that is incompatible with these purposes:

  • to verify your identity, open and administer Accounts and provide services under the USA PATRIOT Act
  • to provide you with our Services
  • to enable you to customize or personalize your experience of our Services
  • to link accounts and facilitate movement of funds for savings, payment and investments as directed by you
  • to contact and communicate with you about your Account and the Services
  • to help protect you and us from financial loss
  • to prepare statements and annual tax statements, if applicable
  • for internal record keeping and administrative purposes
  • to comply with our legal obligations and resolve any disputes that we may have
  • for security and fraud prevention, and to ensure that our sites and apps are safe, secure, and used in line with our terms of use


We may combine voluntarily provided and automatically collected personal information with general information or research data we receive from other trusted sources.

3. How Zenda Shares Your Personal Information

We disclose your Personal Information as described below and elsewhere in this Privacy Policy.

3.1 Employers

We may share your Personal Information with your employer for the sole purpose of providing the Service.

3.2 Affiliates

We may share your Personal Information with a parent company, subsidiary or joint venture under common control (“Affiliates”). In this event, we require our Affiliates to honor this Privacy Policy.

3.3 Third Party Services

We may share your Personal Information with third-party service providers for the purpose of enabling them to provide the Services, including (without limitation) IT service providers, data storage, hosting and server providers, analytics, error loggers, marketing providers, professional advisors, and payment systems operators. These service providers are required to use your Personal Information solely to provide services requested by Zenda.

4. Other Disclosures

Zenda may disclose Personal Information if it believes in good faith that such disclosure is necessary (a) in connection with any legal investigation; (b) to comply with relevant laws or to respond to subpoenas or warrants served on Zenda; (c) to protect or defend the rights or property of Zenda or users of the Services; and/or (d) to investigate or assist in preventing any violation or potential violation of the law, this Privacy Policy, or our Terms of Use.

You are responsible for selecting any password and its overall security strength, ensuring the security of your own information within the bounds of our services. For example, ensuring any passwords associated with accessing your personal information and accounts are secure and confidential.

4.1 No Sales

Zenda does not engage in the sale of any personal information. We have not engaged in the sale of personal information in the last 12 months and not anticipate doing so.

4.2 How Long We Keep Your Personal Information

We keep your personal information only for as long as we need to. This time period may depend on what we are using your information for, in accordance with this privacy policy. For example, if you have provided us with personal information as part of creating an account with us, we may retain this information for the duration your account exists on our system. If your personal information is no longer required for this purpose, we will delete it or make it anonymous by removing all details that identify you.

However, if necessary, we may retain your personal information for our compliance with a legal, accounting, or reporting obligation or for archiving purposes.

4.3 Children’s Privacy

We do not aim any of our products or services directly at children under the age of 13, and we do not knowingly collect personal information about children under 13.

4.4 Users Outside the United States

The Service is governed by U.S. tax law, not intended for data subjects in the European Union. If you are a non-U.S. user of the Site, by visiting the Site and providing us with data, you acknowledge and agree that your Personal Information may be processed for the purposes identified in the Privacy Policy. In addition, your Personal Information may be processed in the country in which it was collected and in other countries, including the United States, where laws regarding processing of Personal Information may be less stringent than the laws in your country.

5. Your Rights and Controlling Your Personal Information

By providing personal information to us, you understand we will collect, hold, use, and disclose your personal information in accordance with this privacy policy. You do not have to provide personal information to us, however, if you do not, it may affect your use of our app or the products and/or services offered on or through it. Zenda supports data subject rights, and to exercise any of these rights you may contact Zenda at:

Email: privacy@getzenda.com

Zenda Financial, Inc.
455B Portage Avenue

Palo Alto, CA 94306

5.1 Marketing Permission

We will periodically send you email communications as part of the Service. You may choose to opt-out of email communications by following the instructions provided in the email or contacting us directly. Despite this, we may send service-related communications including notices of updates to our Terms of Service, Privacy Policy or those communications required by law.

5.2 Access

You may access your Account through the App and update your personal information. For Personal Information cannot be changed via the App you may contact us at privacy@getzenda.com. We will use commercially reasonable efforts to accommodate your request.

5.3 Right to Deletion

You may request deletion of your Personal Information. We may retain an copy of your records as required by law, to continue to provide you with the Services, or for other legitimate business purposes. If you choose to delete all of your Personal Information, then your Account may become deactivated.

5.4 Right to Non-Discrimination

Zenda will not discriminate against you for exercising any of the rights described above.

5.5 Correction

If you believe that any information we hold about you is inaccurate, out of date, incomplete, irrelevant, or misleading, please contact us using the details provided in this privacy policy. We will take reasonable steps to correct any information found to be inaccurate, incomplete, misleading, or out of date.

5.6 Security of Your Personal Information

We have policies and procedures to keep your Personal Information confidential and secure. We restrict access to those employees and other persons who must use that information to provide services on our behalf. We maintain physical, electronic, and procedural safeguards, in compliance with applicable laws, regulations, and industry standards, to protect the confidentiality of the Personal Information we obtain. We require our service providers to maintain the same level of confidentiality and security that we do. We continually update and improve our security standards and procedures to help protect against anyone gaining unauthorized access to your Personal Information and to prevent fraud.

5.7 Notification of Data Breaches

We will comply with laws applicable to us in respect of any data breach. If you believe that we have breached a relevant data protection law and wish to make a complaint, please contact us using the details above and provide us with full details of the alleged breach. We will promptly investigate your complaint and respond to you, in writing, setting out the outcome of our investigation and the steps we will take to deal with your complaint.

5.8 Limits of Our Policy

Our App may link to external sites that are not operated by us. Please be aware that we have no control over the content and policies of those sites, and cannot accept responsibility or liability for their respective privacy practices.

5.9 Changes to This Policy

This policy is subject to revision. At our discretion, we may change our privacy policy to reflect updates to our business processes, current acceptable practices, or legislative or regulatory changes. If we decide to change this privacy policy, we will post the changes here and on our website.

If the changes are material, or if required by applicable law, we will contact you (based on your selected preferences for communications from us) with the new details and links to the updated or changed policy. These changes will be effective immediately for new users of our Service, and details about when the changes take effect for existing users will be included in the communication about the changes. Continued use of our Site or Service following notice of such changes shall indicate your acknowledgement of such changes and agreement to be bound by the terms and conditions of such changes.

5.10 Additional Disclosures for California Compliance

Under California Civil Code Section 1798.83, if you live in California you may ask us about the information we release to other organizations for their direct marketing purposes.   To make such a request, please contact us at privacy@getzenda.com with “Request for California privacy information” in the subject line. You may make this type of request once every calendar year.

5.11 California Notice of Collection

In the past 12 months, we have collected the following categories of personal information enumerated in the California Consumer Privacy Act:

  • Customer records, such as billing and shipping address, and credit or debit card data.
  • Commercial information, such as products or services history and purchases.
  • Audio or visual data, such as photos or videos you share with us or post on the service.
  • Geolocation data.
  • Employment and education data, such as data you provide when you apply for a job with us.


For more information on information we collect, including the sources we receive information from, review the “Information We Collect” section. We collect and use these categories of personal information for the business purposes described in the “Collection and Use of Information” section, including to provide and manage our Service.

To exercise any of these rights, please contact us using the details provided in this privacy policy.