Fair Data Use & Compliance

Zlash AI helps shoppers make smarter financial decisions. We display publicly available prices and offers from trusted retailers and compute the most cost-effective purchase option based on a user’s payment instruments (cards, EMI, rewards, etc.). We never sell raw data; we only create insights that save consumers money.

• Zlash accesses only information visible to the public — titles, MRPs, discounts and offers.
• We never log in to accounts, bypass paywalls, or collect PII.
• All pages queried are public and non-authenticated.

Public information is used for a transformative purpose — comparison and analysis. Our output adds new value and never substitutes merchant content, aligning with fair-use and authorized-access principles.

• All trademarks and brand names remain with their owners.
• Zlash does not reproduce entire catalogues or media assets.
• For removal or opt-out requests contact gss@zlash.ai.

• Controlled request rates and distributed load avoid server stress.
• Respect for robots.txt where feasible.
• No CAPTCHA or security-bypass automation.
• Smart caching and periodic refresh instead of constant polling.
• Until official or partner APIs are available, Zlash uses light-weight automated methods to collect publicly visible pricing and offer data. These methods never access private or secured systems and exist solely for consumer transparency.
• Our engineers monitor request behavior to ensure these methods never create undue load or affect merchant site performance.

Zlash currently does not participate in any affiliate or partner API programs. However, we maintain an open and cooperative approach with all merchants, financial institutions, and data providers. If any retailer or partner is willing to provide an official or authorized API, Zlash will adopt it immediately and discontinue all automated data collection for that source. Our long-term goal is a transparent, authorized, and mutually beneficial ecosystem.

Global courts have recognized that accessing public web data does not constitute unauthorized access. For context, the U.S. Ninth Circuit in hiQ Labs v. LinkedIn (2022) affirmed that collecting publicly visible information can qualify as authorized under fair-use doctrines. Zlash follows similar ethical principles by accessing only public, non-authenticated merchant information.

Until official or partner APIs are available, Zlash uses light-weight automated methods to fetch public pricing and offer data. This process never touches private or secured systems and exists purely for consumer transparency. If any retailer or financial institution offers an official API, Zlash will immediately discontinue all automated collection for that source and migrate entirely to the authorized integration. Our goal is cooperation — not circumvention.

• Transport-layer security (TLS 1.3) and encrypted storage for tokens.
• Principle of least privilege with periodic security audits.
• No PII collected without explicit consent.

Users can request deletion of any account-linked data or revoke authorization for connected payment instruments at any time by contacting gss@zlash.ai. Zlash does not maintain historical records beyond what is necessary for analytics and security compliance.

Zlash is committed to full transparency in how our automation and analytics operate. We periodically review our data collection logic to ensure it remains non-intrusive, respectful of merchants, and compliant with evolving norms. Internal documentation of all data sources and audit reviews is maintained for accountability.

Zlash operates under the legal framework of India. Any disputes or interpretations related to data usage, intellectual property, or this policy shall be governed by Indian law and subject to the jurisdiction of courts in Kota, Rajasthan. References to international cases such as hiQ Labs v. LinkedIn are cited for context only.

For notices or compliance queries email gss@zlash.ai.

Zlash operates under fair-data-use principles consistent with global precedents and applicable Indian law. Nothing here constitutes legal advice; please consult your own counsel for specific guidance.