Zappix Trust Center

At Zappix, trust is the foundation of our relationship with our customers, partners, and users. We understand the importance of safeguarding your data and delivering secure, reliable, and compliant services. This Trust Center document outlines our commitment to security, privacy, compliance, and transparency.

1. Security

We take the security of your data seriously and implement a robust, multi-layered approach to ensure protection against unauthorized access, threats, and vulnerabilities. Our security practices include:

1.1. Data Encryption
  •  In Transit: All data transmitted between Zappix systems and your environment is encrypted using Transport Layer Security (TLS).
  • At Rest: Data stored within Zappix systems is encrypted using industry-standard encryption methods.
1.2. Authentication and Access Control
  • Multi-Factor Authentication (MFA): We implement MFA to ensure that access to our systems is protected by an additional layer of security beyond just passwords.
  • Role-Based Access Control (RBAC): Access to data and systems is granted based on roles, ensuring that employees and users only have the necessary access to perform their job functions.
1.3. Vulnerability Management

We continuously monitor and assess our systems for vulnerabilities and apply patches and updates as needed. Our dedicated security team performs regular penetration testing and security assessments to maintain a high standard of protection.

1.4. Incident Response

Zappix has a formalized incident response process in place to quickly address security incidents and minimize potential impact. Our team follows best practices to detect, respond, and recover from any security-related event.

2. Privacy

At Zappix, we prioritize the privacy of our users and comply with global data privacy regulations. Our privacy policies are transparent, and we are committed to processing personal data responsibly.

2.1. Data Minimization

We only collect data that is necessary for providing our services. We do not store excessive information, and data retention policies ensure that data is deleted when no longer required.

2.2. User Consent

Zappix ensures that users are informed about the collection and use of their data. We obtain explicit consent when necessary, and users have control over their personal data preferences.

2.3. Third-Party Data Sharing

We only share data with third parties for the purpose of providing services to our customers, and only when these parties are compliant with our security and privacy standards.

2.4. Data Subject Rights

We respect the rights of individuals under data protection laws such as the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). These rights include access, correction, deletion, and portability of personal data.

3. Compliance

Zappix is committed to maintaining compliance with global standards, regulations, and certifications that ensure the highest level of data protection and security.

3.1. Regulatory Compliance
  •  GDPR: We comply with the General Data Protection Regulation to protect the data and privacy of EU citizens.
  •  CCPA: Zappix adheres to the California Consumer Privacy Act, ensuring compliance with U.S. data privacy standards.
  • HIPAA: We ensure that our solutions are HIPAA-compliant when processing healthcare-related data.
3.2. Certifications and Audits

Zappix undergoes regular third-party audits to validate our compliance with security and privacy standards. We aim to meet or exceed industry certifications and adhere to SOC 2 standards.

4. Transparency

At Zappix, transparency is key to building trust. We ensure that our customers and users have full visibility into how their data is used, processed, and protected.

4.1. Privacy Policy

Our privacy policy clearly outlines how we collect, use, and protect personal data. We regularly update this document to reflect any changes in regulations or our practices.

4.2. Status and Updates

We maintain open communication with our customers regarding the status of our services. In the event of a security incident or data breach, Zappix commits to notifying affected parties promptly and providing detailed information on the scope, impact, and resolution.

4.3. Data Requests

Customers can request information about the data we hold and how it is processed. We offer support for data access, deletion, and modification requests through clear and accessible channels.

5. Reliability and Availability

Our platform is built for high availability and performance. We understand the critical nature of our services and take proactive steps to ensure maximum uptime.

5.1. System Uptime

Zappix strives to maintain 99.9% uptime, leveraging redundant infrastructure, failover systems, and continuous monitoring to ensure service availability.

5.2. Disaster Recovery

We have a comprehensive disaster recovery plan in place, designed to minimize disruption and ensure the continuous operation of our services in the event of an unforeseen incident.

5.3. Monitoring and Support

Our systems are continuously monitored for performance and potential issues. We provide customer support to address any concerns and ensure prompt resolutions.

6. Customer Responsibility

While Zappix provides strong security measures, it is also important for customers to follow best practices for securing their environments.

These include:

  •  Implementing strong password policies
  • Using multi-factor authentication (MFA)
  • Regularly reviewing access controls and permissions
7. Contact and Support

If you have any questions or concerns about the security, privacy, or compliance of Zappix services, please do not hesitate to reach out to our team. We are dedicated to addressing your needs and ensuring that Zappix continues to be a trusted partner.

Security and Compliance Inquiries: admin@zappix.com
General Support: support.us@zappix.com