Privacy Policy

Effective Date: 7-04-2025

Welcome to ZAPISECURE, a cloud-based SaaS platform specializing in securing API infrastructures, implementing advanced application firewalls, BOT mitigation, and anomaly detection. At ZAPISECURE, we are committed to protecting your privacy and ensuring transparency about how we collect, use, disclose, and protect your personal and organizational data.

This Privacy Policy applies globally, irrespective of your location, and governs the use of our website, services, and platform offerings.

1. Scope of this Policy

This Privacy Policy applies to:

  • Visitors to our website
  • Users of our platform
  • Customers who subscribe to our services
  • End-users whose data is processed as part of customer integrations

2. Information We Collect

We collect the following types of information:

a. Information You Provide

  • Company and contact details (e.g., name, email address, phone number)
  • Account credentials
  • Billing and payment information
  • Support and inquiry messages

b. Automatically Collected Information

  • IP addresses and device information
  • Browser type and settings
  • Access logs and activity data
  • Location (approximate, based on IP)
  • Usage metrics for platform optimization and security analytics

c. API and Traffic Metadata

  • API request/response metadata (headers, timestamps, endpoint URIs)
  • Anomalous behavior patterns
  • BOT signatures and behavioral indicators
  • Payloads if explicitly configured for inspection

3. How We Use Your Information

We use collected data to:

  • Provide and manage ZAPISECURE services
  • Authenticate and authorize users
  • Detect, prevent, and respond to security threats, abuse, and fraud
  • Improve our platform’s performance and features
  • Perform analytics and usage monitoring
  • Process payments and manage subscriptions
  • Communicate service updates, releases, and support

4. Data Storage and Retention

All data is stored in secure cloud environments with access control and encryption in transit and at rest. We retain data only for as long as necessary to:

  • Provide services to our customers
  • Comply with legal, regulatory, or contractual obligations
  • Support business analytics (in anonymized format where possible)

You can request deletion or anonymization of your data by contacting privacy@zapisecure.ai.

5. Data Sharing and Transfers

We do not sell your data.

We may share your data with:

  • Service providers (e.g., cloud hosting, payment processors) under strict confidentiality agreements
  • Legal or regulatory authorities, if required by law or to protect rights and safety
  • Affiliated companies only as needed to provide our services

Where applicable, data may be transferred across regions under standardized safeguards such as SCCs (Standard Contractual Clauses).

6. Security Measures

ZAPISECURE employs industry-best security practices, including:

  • End-to-end TLS encryption
  • Role-based access controls
  • API traffic isolation
  • Continuous vulnerability scanning
  • Multi-factor authentication (MFA)
  • Regular security audits and compliance checks

We also monitor API and user activity to detect and respond to potential anomalies and threats in real-time.

7. Your Rights and Choices

Depending on your jurisdiction, you may have the following rights:

  • Access your data
  • Correct or update information
  • Request deletion or anonymization
  • Object to certain processing activities
  • Port your data (where applicable)

You can manage preferences or request actions by contacting privacy@zapisecure.ai.

8. Cookies and Analytics

We use essential cookies for service functionality and analytical cookies for understanding usage patterns. You can configure your browser to reject non-essential cookies. Third-party analytics providers (e.g., Google Analytics) may also collect anonymized usage data.

9. Children’s Privacy

ZAPISECURE is not intended for use by individuals under the age of 16. We do not knowingly collect or process data from minors.

10. International Compliance

Our Privacy Policy is designed to comply with international data protection standards, including:

  • General Data Protection Regulation (GDPR)
  • California Consumer Privacy Act (CCPA)
  • Personal Data Protection Law (PIPL – China)
  • Other applicable laws worldwide

We aim for consistent and respectful handling of data regardless of where you are located.

11. Changes to this Policy

We may update this policy from time to time. Material changes will be communicated via email or within the platform interface. Your continued use of the services implies acceptance of the revised policy.

12. Contact Us

For questions, concerns, or to exercise your data rights, please contact:

Privacy Officer
ZAPISECURE Technologies
Email: privacy@zapisecure.ai
Website: www.zapisecure.ai