Privacy Notice

1. Introduction

This Privacy Notice explains how Zapdor ("we", "us", "our") collects, uses, and protects your personal information when you use our security scanning platform. We are committed to protecting your privacy and complying with applicable data protection laws.

2. Information We Collect

2.1 Personal Information

• Account Information: Name, email address, company details, billing information
• Contact Information: Phone numbers, mailing addresses, communication preferences
• Authentication Data: Login credentials, security questions, two-factor authentication data
• Profile Information: Job title, role, preferences, settings

2.2 Technical Information

• Device Information: IP address, browser type, operating system, device identifiers
• Usage Data: Scan history, platform interactions, feature usage, performance metrics
• Log Data: Access logs, error logs, security logs, audit trails
• Location Data: Country, region, city (based on IP address)

2.3 Scan Data

• Target Information: URLs, IP addresses, domain names, network ranges
• Scan Results: Vulnerability findings, security assessments, technical details
• Configuration Data: Scan parameters, custom settings, preferences
• Metadata: Timestamps, scan duration, success/failure status

3. How We Use Your Information

3.1 Service Provision

• Account Management: Creating and managing your account
• Service Delivery: Providing security scanning and reporting services
• Customer Support: Responding to inquiries and providing assistance
• Billing: Processing payments and managing subscriptions

3.2 Security and Compliance

• Security Monitoring: Detecting and preventing abuse, fraud, and security threats
• Compliance: Meeting legal and regulatory requirements
• Audit Trails: Maintaining records for compliance and security purposes
• Incident Response: Investigating and responding to security incidents

3.3 Platform Improvement

• Analytics: Understanding usage patterns and improving our services
• Research: Conducting research and development (with anonymized data)
• Product Development: Enhancing features and functionality
• Performance: Optimizing platform performance and reliability

4. Legal Basis for Processing

4.1 Contractual Necessity

• Processing necessary for the performance of our service contract
• Providing security scanning services as requested

4.2 Legitimate Interest

• Improving our services and platform functionality
• Preventing fraud and abuse
• Ensuring platform security and reliability

4.3 Legal Obligation

• Compliance with applicable laws and regulations
• Responding to legal requests and court orders
• Maintaining audit trails for compliance purposes

4.4 Consent

• Marketing communications (where required)
• Optional features and services
• Data processing beyond contractual necessity

5. Data Sharing and Disclosure

5.1 Service Providers

We may share your information with trusted third-party service providers who assist us in:

• Cloud infrastructure and hosting services
• Payment processing and billing
• Customer support and communication
• Analytics and monitoring
• Security and compliance services

5.2 Legal Requirements

We may disclose your information when required by law or to:

• Comply with legal obligations
• Respond to court orders or legal requests
• Protect our rights and interests
• Prevent fraud or abuse
• Ensure platform security

6. Data Security

6.1 Technical Safeguards

• Encryption: Data encrypted in transit and at rest
• Access Controls: Role-based access and authentication
• Network Security: Firewalls, intrusion detection, and monitoring
• Regular Updates: Security patches and system updates

6.2 Organizational Safeguards

• Staff Training: Data protection and security awareness
• Confidentiality: Non-disclosure agreements for all personnel
• Access Management: Regular review and revocation of access rights
• Incident Response: Procedures for handling security incidents

7. Data Retention

7.1 Retention Periods

• Account Data: Retained for the duration of your account plus 7 years
• Scan Data: Retained for 2 years after scan completion
• Log Data: Retained for 1 year for security and compliance
• Billing Data: Retained for 7 years for tax and legal compliance

8. Your Rights

8.1 Access Rights

• Request access to your personal information
• Receive copies of your data in a structured format
• Understand how your data is being used

8.2 Correction Rights

• Request correction of inaccurate information
• Update your account information
• Modify your preferences and settings

8.3 Deletion Rights

• Request deletion of your personal information
• Right to be forgotten (subject to legal obligations)
• Account closure and data removal

9. International Data Transfers

We may transfer your personal information to countries outside your jurisdiction. We ensure appropriate safeguards are in place for such transfers, including:

• Adequacy decisions by relevant authorities
• Standard contractual clauses
• Binding corporate rules
• Certification schemes

10. Cookies and Tracking

We use cookies and similar technologies to enhance your experience. You can control cookie settings through your browser preferences.

11. Children's Privacy

Our services are not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16.

12. Contact Information

General Privacy Questions:

• Email: robby.ardison@hotmail.com

Privacy Contact:

• Email: robby.ardison@hotmail.com

Legal Inquiries:

• Email: robby.ardison@hotmail.com