Privacy Policy

1. Introduction

Zoom1031 Inc. ("we," "us," or "our") operates zoom1031.com (the "Platform"). This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our Platform or services. By accessing zoom1031.com, you agree to the practices described in this policy.

We are committed to handling your data responsibly, particularly because our Platform processes sensitive financial and tax-related information in connection with IRC Section 1031 exchange transactions.

2. Information We Collect

We collect the following categories of information:

• Account Information: Name, email address, phone number, and login credentials.
• Exchange Data: Property addresses, sale prices, tax identification numbers, exchange agreement details, and documents you upload (purchase agreements, title reports, closing statements).
• Usage Data: IP address, browser type, pages visited, session duration, and device information collected automatically when you use the Platform.
• Payment Information: Billing details are processed by Stripe, Inc. We do not store, transmit, or have access to full credit card or bank account numbers.
• Communications: Messages sent through the Platform, support tickets, and correspondence with our team.

3. How We Use Your Information

We use your information to:

• Provide Qualified Intermediary services and manage your 1031 exchange from initiation to completion.
• Send deadline alerts (45-day and 180-day), exchange updates, and transactional notifications critical to your exchange.
• Verify your identity and comply with know-your-customer (KYC) obligations.
• Improve and personalize the Platform, including AI agent performance and document analysis accuracy.
• Comply with legal and regulatory obligations, including IRS record-keeping requirements and FinCEN reporting obligations.
• Prevent fraud, abuse, and unauthorized access to the Platform.

4. Information Sharing

We do not sell your personal data. We share your information only as necessary to provide our services:

• Stripe, Inc. — Payment processing. Governed by Stripe's Privacy Policy and our data processing agreement.
• Amazon Web Services (S3) — Encrypted document storage. Data remains within the United States.
• Resend — Transactional email delivery (deadline alerts, exchange confirmations).
• Twilio — SMS notifications for time-sensitive deadline alerts.
• Anthropic — AI-powered document analysis. We transmit document content for analysis but do not send personally identifiable information (PII) such as names, SSNs, or bank details to Anthropic's API.
• Legal and Regulatory Authorities — When required by law, court order, or regulatory inquiry.

All third-party service providers are subject to data processing agreements consistent with applicable privacy laws.

5. Data Retention

Exchange records, including documents and transaction history, are retained for a minimum of 7 years following exchange completion, consistent with IRS record-keeping requirements under IRC Section 1031 and Treasury Regulation §1.1031(k)-1.

Account data not associated with an active or completed exchange may be deleted upon your request. Requests for account deletion can be submitted to privacy@zoom1031.com.

6. Your Rights

Depending on your jurisdiction, you may have the right to:

• Access — Request a copy of the personal information we hold about you.
• Correction — Request that we correct inaccurate or incomplete information.
• Deletion — Request deletion of your data, subject to our legal retention obligations.
• Portability — Receive your data in a structured, machine-readable format.
• Opt-Out — Opt out of non-essential communications at any time.

To exercise any of these rights, contact us at privacy@zoom1031.com. We will respond within 30 days.

7. Security

We implement security practices aligned with SOC 2 Type II principles, including:

• TLS 1.2+ encryption for all data in transit.
• AES-256 encryption for documents at rest in AWS S3.
• Multi-factor authentication for all staff access to customer data.
• Fully segregated escrow accounts — exchange funds are never commingled with operating funds.
• Regular vulnerability assessments and third-party security audits.

No system is completely secure. If you believe a security incident has occurred, contact privacy@zoom1031.com immediately.

8. Cookies

We use two categories of cookies:

• Essential Cookies: Required for authentication sessions and core Platform functionality. Cannot be disabled without impairing Platform use.
• Analytics Cookies: Optional cookies that help us understand how users navigate the Platform. These do not identify you personally.

You may disable analytics cookies through your browser settings or by contacting us. Disabling essential cookies will prevent you from logging into the Platform.

9. Contact

For privacy-related questions, requests, or concerns: