Zyra logo

Zyra

Privacy Policy

Effective date: 2023-02-05

This Privacy Policy explains how Zyra Technology ("we", "us", "our") collects, uses, and shares information when we provide software-as-a-service (SaaS) products to business customers (the "Services"). It also explains the rights you have regarding your personal information and how to contact us.

1. Scope & Roles

We provide software and related services to business customers. For Customer Data (data our customers upload to or manage in the Services), customers are typically the data controller and we act as the data processor under your instructions. For account, billing, and marketing data we act as a controller.

2. Information We Collect

  • Customer Data: Data uploaded by customers into the Services (e.g., records about their users or customers). The scope of Customer Data depends on each customer.
  • Account & Billing: Company name, billing contact, address, and payment records (payment instrument details are processed and stored by our payment processor).
  • Authentication & Profile: Administrator names, emails, roles, and permissions.
  • Usage & Technical: Logs, IP address, device/browser metadata, feature usage, error reports, and performance metrics.
  • Support & Marketing: Communications with our support and sales teams, and marketing preferences when you opt in.

3. How We Use Information

We use information to provide, operate, secure, and improve the Services, to authenticate and administer accounts, to process payments, and to respond to support requests. We may also use data for internal analytics, product development, and fraud prevention. We do not sell Customer Data or use it for advertising.

4. Legal Basis (GDPR)

Where applicable, our lawful bases for processing include performance of a contract (to deliver Services), compliance with legal obligations, and our legitimate interests (product security, improvement, and preventing fraud). We rely on consent for marketing communications where required.

5. Sharing & Sub processors

We may share data with sub processors who process data on our behalf (hosting, analytics, payment processors, email delivery). We require sub processors to process data only under contract and to maintain reasonable security measures. We may also disclose data to comply with law, or to protect rights and safety.

6. Cross‑Border Transfers

Data may be transferred and stored outside your country. When required, we use appropriate safeguards such as Standard Contractual Clauses to protect international transfers.

7. Data Retention

We retain Customer Data for as long as the customer's account is active and thereafter as described in our Data Processing Addendum (DPA) or upon request. Account and billing data are retained for business, legal, and tax purposes (commonly 3–7 years).

8. Security

We maintain administrative, technical, and physical safeguards to protect data from unauthorized access, use, or disclosure. These measures include encryption in transit, access controls, monitoring, and vulnerability management. If a security incident affects customer data we will notify affected customers in accordance with applicable law and contract.

9. Your Rights

Depending on your jurisdiction, you may have rights to access, correct, delete, or export personal data, and to object to certain processing. To exercise rights, contact us at support@zyracorp.com.

10. Children

Our Services are intended for business use and not for children. We do not knowingly collect data from children.

11. Cookies & Tracking

We use cookies and similar technologies for authentication, analytics, and product improvement. Marketing cookies are used only with consent where required.

12. Changes to this Policy

We may update this policy. Material changes will be communicated by email or via the Services. Continued use after notice constitutes acceptance.

13. Contact

Questions, requests, or DPA inquiries: support@zyracorp.com

For legal requests: Contact page