Privacy Policy

Last updated: April 15, 2025

Welcome to Zenith Analysis. This Privacy Policy describes how your information is collected, used, and shared when your organization visits or makes use of our services (the "Service"). As a business-to-business (B2B) service provider, we primarily collect and process information in the context of our business relationship with your organization.

Information We Collect

We collect several different types of information to provide and improve our Service:

• Business Contact Information: We collect information about representatives of your organization who interact with our Service, including:
  • Business email addresses
  • Names and job titles
  • Business phone numbers
  • Business postal addresses
• Account and Billing Information: Information related to your organization's account and billing details, including payment information, subscription details, and billing contacts.
• Business Data: Data that your organization inputs, uploads, or creates while using our Service. This may include analytical data, reports, documents, and other content.
• Usage Data: Information about how your organization's authorized users access and use the Service, including IP addresses, device information, browser type, pages visited, features used, and other diagnostic data.
• Cookies and Similar Technologies: We use cookies and similar tracking technologies to track activity on our Service and to maintain certain information. For more information about the cookies we use, please see our Cookie Policy.

How We Use Your Information

Zenith Analysis uses the collected information for various business purposes:

• To provide, maintain, and improve our Service for your organization
• To process transactions and manage your organization's account
• To send administrative information, including updates to our terms, conditions, and policies
• To respond to your inquiries and provide customer support
• To communicate about new features, offerings, or other information that may be of interest to your organization (with opt-out options)
• To gather analysis and feedback to improve and optimize our Service
• To monitor usage patterns and technical performance of our Service
• To detect, prevent, and address technical issues and security incidents
• To enforce our terms, conditions, and policies
• To comply with legal obligations

Employee and End-User Data

If your organization uploads or inputs information about your employees, customers, or other individuals ("End-User Data") into our Service, we process this data solely on your organization's behalf and in accordance with your instructions. Your organization is responsible for:

• Ensuring it has the necessary rights and permissions to share End-User Data with us
• Providing appropriate notices to individuals whose data is shared with us
• Obtaining any necessary consents for the processing of End-User Data
• Responding to requests from individuals regarding their data

We will assist your organization in fulfilling its obligations to individuals whose data we process on your behalf, as required by applicable data protection laws.

Data Retention

We retain different categories of information for different periods based on our business needs and legal requirements:

• Account Information: We retain account information for as long as your organization maintains an active account with us, and for a reasonable period thereafter for accounting, audit, and compliance purposes.
• Business Contact Information: We retain business contact information for as long as we have an ongoing business relationship with your organization or until a contact opts out.
• Business Data: We retain your organization's Business Data for the duration specified in our agreement with your organization, or until your organization requests its deletion.
• Usage Data: We generally retain usage data for shorter periods, except when this data is used to strengthen the security of our Service, to improve functionality, or we are legally obligated to retain this data for longer periods.

Sharing Your Information

We may share business information in the following circumstances:

• With Service Providers: We use third-party service providers to help us operate our business and provide the Service, such as cloud hosting providers, payment processors, email communication services, and customer support tools. These providers have access to information only to perform these tasks on our behalf and are contractually obligated to protect it.
• For Compliance and Safety: We may disclose information when required by law or if we believe in good faith that such action is necessary to (a) comply with a legal obligation; (b) protect and defend our rights or property; (c) prevent or investigate possible wrongdoing; (d) protect the personal safety of users of the Service or the public; or (e) protect against legal liability.
• For Business Transfers: If we are involved in a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our Service of any change in ownership or uses of your information.
• With Affiliates: We may share information with our affiliated companies, in which case we will require those affiliates to honor this Privacy Policy.
• With Your Consent: We may share information with third parties when we have your organization's consent to do so.

Cookies and Tracking Technologies

We use cookies and similar tracking technologies to track activity on our Service and to maintain certain information. These technologies are primarily used for Service functionality, analytics, and performance monitoring. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.

For more information about the cookies we use, please see our Cookie Policy.

Data Security

We implement appropriate technical and organizational security measures designed to protect the information we process. These measures include encryption of data in transit and at rest, access controls, regular security assessments, and employee training on data protection practices. However, no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee its absolute security.

We have implemented incident response procedures to handle any suspected or actual data breaches. In the event of a data breach that affects your organization's information, we will notify your organization in accordance with applicable laws and our contractual obligations.

Cross-Border Data Transfers

Our Service may involve transferring data to countries outside of your organization's country. When we transfer business information across international borders, we take steps to ensure that it receives an adequate level of protection wherever it is processed. These steps may include:

• Entering into Standard Contractual Clauses approved by relevant authorities
• Relying on adequacy decisions where applicable
• Implementing additional safeguards as required by applicable laws
• Obtaining your explicit consent for certain transfers

For more information about our cross-border data transfer mechanisms, please see our GDPR Compliance Statement.

Your Data Protection Rights

If your organization is located in the European Economic Area (EEA), UK, or other regions with similar data protection laws, your organization and the individuals whose data we process on your behalf may have certain rights regarding their information.

For information we process as a Controller (such as business contact information):

• The right to access: You have the right to request copies of your personal data from us.
• The right to rectification: You have the right to request that we correct any information you believe is inaccurate or incomplete.
• The right to erasure: You have the right to request that we erase your personal data, under certain conditions.
• The right to restrict processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.
• The right to object to processing: You have the right to object to our processing of your personal data, under certain conditions.
• The right to data portability: You have the right to request that we transfer the data we have collected to another organization, or directly to you, under certain conditions.

For information we process as a Processor on behalf of your organization (such as End-User Data), requests should be directed to your organization, which is the Controller of such data. We will assist your organization in fulfilling these requests as required by applicable laws.

For more information about our GDPR compliance, please see our GDPR Compliance Statement.

Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date at the top of this Privacy Policy. For material changes, we will provide notice to the primary email address associated with your organization's account or through a notice on our homepage. You are advised to review this Privacy Policy periodically for any changes.

Contact Us

If you have any questions about this Privacy Policy, please contact us:

• By email: privacy@zenithanalysis.com
• For data protection inquiries: GDPR@zenithanalysis.com