Skip to content
ZygenTrust
Signals · checking
Privacy

Privacy Policy

Last updated

Draft — pending legal review

This page is a structural placeholder. The clauses below are templates and have not been reviewed by qualified counsel. Do not rely on this document for legal compliance until the review marker is removed.

Scope

This Privacy Policy describes how ZygenTrust ("we", "our") collects, uses, and shares information when you visit our website, use our API, or communicate with us. It applies to all ZygenTrust products and services.

What we collect

Account data

  • Email address (waitlist or account)
  • Company name (optional)
  • Authentication metadata (login timestamps, session IDs)

Product usage data

  • API request metadata: route, status code, latency bucket, plan tier, cache hit/miss
  • Domain names submitted to the analyze endpoint
  • API key prefix used (never the full key)

Website telemetry

  • Aggregated, privacy-preserving page-view counts
  • No third-party tracking pixels, no cross-site cookies

We do not collect personal data from end-users of the websites you analyze. The analyze endpoint operates on public web data only (DNS, HTTP, HTML head, a small fixed set of standard pages).

How we use data

  • To provide and operate the ZygenTrust API
  • To enforce plan quotas and detect abuse
  • To improve product quality (aggregate analytics)
  • To communicate service updates, incidents, and account notices
  • To comply with legal obligations

We do not sell your data. We do not use your data to train AI models. We do not enrich or resell domain analyses to third parties.

Retention

  • Usage logs: 12 months, then aggregated and anonymized
  • Audit logs: 12 months in the live database, archived 24 months total
  • Account data: kept while your account is active; deleted within 30 days of account closure unless legally required
  • Cached analyze results: up to 24 hours by default (configurable per plan)

Sharing

We share data only with vetted subprocessors required to operate the service (hosting, database, email delivery, bot defense). The current subprocessor list is available in the Trust Center for customers under a Data Processing Addendum.

We may disclose information when required by law, valid legal process, or to protect rights and safety.

International transfers

ZygenTrust may process data in jurisdictions different from where it was collected. Where applicable, we rely on standard contractual clauses for international transfer of personal data covered by GDPR.

Your rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate data
  • Request deletion ("right to be forgotten")
  • Object to or restrict processing
  • Receive your data in a portable format
  • Withdraw consent where processing is based on consent

To exercise these rights, contact us at privacy@zygentrust.com.

Contact

Questions about this policy? Email privacy@zygentrust.com. Security issues should go to security@zygentrust.com.