Zypheron

ZYPHERON

Privacy Policy

Last Updated: January 2025

Our Commitment to Privacy

At ZYPHERON, we take your privacy seriously. This Privacy Policy explains how we collect, use, protect, and handle your personal information when you use our AI-powered cybersecurity platform. We are committed to transparency and giving you control over your data.

1. Information We Collect

Account Information

  • Email address and username
  • Account credentials (encrypted)
  • Subscription and billing information

Usage Information

  • Security scan results and vulnerability reports
  • Tool usage patterns and feature interactions
  • API usage and token consumption
  • Internal analytics (page views, user behavior)

Technical Information

  • IP addresses and device information
  • Browser type and operating system
  • Session duration and timestamps

2. How We Use Your Information

  • Service Delivery: To provide, maintain, and improve ZYPHERON's cybersecurity tools
  • Account Management: To manage your account, subscriptions, and billing
  • Security: To protect against unauthorized access and security threats
  • Communication: To send important updates, security alerts, and support messages
  • Analytics: To understand usage patterns and improve our service (internal only)
  • Legal Compliance: To comply with legal obligations and enforce our terms

3. Data Protection and Security

Encryption

All sensitive data is encrypted both in transit (TLS/SSL) and at rest using industry-standard encryption algorithms.

Limited Collection

We collect only the data necessary for service operation and functionality. We do not collect unnecessary personal information.

Secure Storage

Security scan results and user data are stored securely in protected databases with access controls and audit logging.

Access Controls

Strict access controls ensure that only authorized personnel can access user data, and only when necessary for support or legal compliance.

4. Third-Party Sharing

✓ We do NOT share your personal data with third parties for marketing or advertising purposes.

We may share limited information only in these specific circumstances:

  • Service Providers: With trusted service providers (e.g., Stripe for payment processing) who are bound by confidentiality agreements
  • Legal Requirements: When required by law, court order, or government request
  • Security Threats: To prevent fraud, abuse, or security threats to our platform or users
  • With Your Consent: When you explicitly authorize us to share specific information

5. Privacy Features

✓ No 3rd Party Tracking

No Google Analytics, no external tracking services, no third-party cookies

✓ Internal Analytics Only

Page views and user behavior tracked internally only, never shared

✓ DNS Privacy

Reduced DNS prefetching to only essential services

✓ Font Privacy

System fonts used instead of external font services when possible

✓ HCFS Client Block

Active protection to prevent 3rd party tracking attempts

✓ Minimal Data

We collect only what's necessary for functionality

6. Regulatory Compliance

ZYPHERON complies with major data protection regulations:

  • GDPR (General Data Protection Regulation): For users in the European Union
  • CCPA (California Consumer Privacy Act): For California residents
  • HIPAA: When handling healthcare-related security assessments
  • SOX: For financial industry compliance requirements

7. Your Privacy Rights

You have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you
  • Rectification: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your personal data (subject to legal requirements)
  • Portability: Request transfer of your data to another service
  • Objection: Object to certain types of data processing
  • Withdrawal: Withdraw consent for data processing at any time

To exercise any of these rights, please contact us at Harrison@zypheron.com

8. Data Retention

We retain your personal data only for as long as necessary:

  • Active Accounts: Data retained while your account is active
  • Closed Accounts: Data deleted within 90 days of account closure (unless legally required to retain)
  • Scan Results: Security scan data retained according to your subscription plan
  • Billing Records: Retained for 7 years to comply with tax and financial regulations

9. Cookies and Tracking

We use minimal cookies for essential functionality only:

  • Essential Cookies: Required for authentication and security
  • Preference Cookies: Store your settings and preferences
  • No Tracking Cookies: We do not use cookies for advertising or cross-site tracking

10. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of significant changes by email or through a prominent notice on our platform. The "Last Updated" date at the top indicates when this policy was last revised.

11. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

Privacy Officer: Harrison McCall

Email: Harrison@zypheron.com

Website: https://zypheron.net

Address: Available upon request for legal correspondence

ZYPHERON

ZYPHERON Desktop is a cybersecurity IDE for offensive and defensive workflows. The open source CLI remains available for terminal-first users.

AUTHORIZED USE ONLY

Infrastructure

Network

© 2025 ZYPHERON SYSTEMS//DESKTOP + CLI