quizzy.io — Privacy Policy
Effective date: January 07, 20261) Who is the controller & how to contact us
Controller: Jaro Cech, V lukach , 25262 Statenice, Czech Republic (Czech Republic).
Email: support@quizzy.io
2) Information we collect
Account data (name, email, credentials, settings).
Content you provide (prompts, text, files, images) to generate quizzes; may include personal data if you submit it.
Usage & logs (feature usage, timestamps, diagnostic events, crash logs).
Device & network (IP address, browser/OS, language, approximate location).
Cookies & similar tech for sign-in, preferences, analytics, and abuse prevention. See “Cookies” below.
3) Sources
We receive data directly from you, from your devices, and from service providers that help us operate the Service (e.g., hosting, authentication, analytics, payment, AI processing).
4) How we use information (purposes & legal bases — GDPR)
Provide the Service (create accounts, generate quizzes, support, payments) — contract necessity.
Improve and secure the Service (analytics, debugging, preventing abuse) — legitimate interests.
Communications about products, updates, and policy changes — legitimate interests/consent (where required).
Legal compliance (tax, accounting, requests from authorities) — legal obligation.
Personalized experience (optional) — consent, which you can withdraw anytime.
5) AI processing & model providers
To generate quiz content, we may process your prompts and uploads using our infrastructure and/or third-party AI providers acting as processors. We require processors to use data only to provide the Service, to protect it with appropriate security, and to comply with applicable data protection laws. Do not submit confidential or sensitive personal data unless you have a lawful basis and appropriate safeguards.
6) Sharing of information
Service providers/processors (hosting, storage, AI, authentication, analytics, payment).
Legal & compliance (when required by law or to protect rights, safety, and integrity of the Service).
Business transfers (merger, acquisition, restructuring), subject to this Policy’s protections.
We do not sell personal data.
7) International transfers
If we transfer personal data outside your country (including outside the EEA/UK), we use appropriate safeguards such as Standard Contractual Clauses and additional measures as needed.
8) Retention
We use cookies to operate the Service (authentication, preferences), for analytics, and to prevent abuse. You can control cookies through your browser settings and, where available, via our cookie controls.@(string.IsNullOrWhiteSpace("/cookies") ? "" : " See Cookie Settings.")
9) Your rights (EU/EEA & similar regimes)
Access, rectification, and deletion of your personal data. Restriction or objection to certain processing; portability of data you provided. Withdraw consent at any time (does not affect prior lawful processing). Complain to a supervisory authority.
10) Children
The Service is not directed to children under 13 (or the age of digital consent in your country). If you believe we collected data from a minor, contact us and we will take appropriate steps.
11) Security
We use technical and organizational measures to protect personal data. No online service can be 100% secure; you are responsible for keeping your credentials safe and notifying us of suspected unauthorized access.
12) Cookies & similar technologies
We use cookies to operate the Service (authentication, preferences), for analytics, and to prevent abuse. You can control cookies through your browser settings and, where available, via our cookie controls. See Cookie Settings.