Your privacy matters to us. This policy explains how ZeroRisk collects, uses, and protects your personal information when you use our website or sign up for our services. We're committed to being transparent and safeguarding your information at every step.
ZeroRisk B.V., is a technology-driven company headquartered at the World Trade Centre - The Hague, Margrietplantsoen 33, 2595 AM Den Haag, Netherlands. For more information about our services, please visit our website: zerorisk.com.
This Privacy Policy governs personal data collected through ZeroRisk (collectively, "we," "our," or "us"), which share the same application and infrastructure, in connection with the following services and interactions:
Where this policy mentions "personal information", we're referring to any information that identifies, relates to, or can reasonably identify you, such as name, email address, phone number, IP address, or other information linked to an identifiable person.
We provide details on how your personal information is collected, used, and protected when you engage with ZeroRisk as a:
Customers who subscribe to our services ("customer account owners") can also grant their employees and business associates access to our application by creating user accounts for these individuals. End users can also invite third parties in a similar fashion. These invited individuals are able to access the application using their unique email addresses and credentials.
Customer account owners and administrators assign roles to end users, at their own discretion, determining the permissions and access rights to information within their accounts.
We may ask you to provide personal information when you:
If you choose to provide us with a third-party's personal information—such as their name, email address, or company details—while participating in a referral program or inviting them to ZeroRisk's application, you confirm that you have obtained their permission to do so.
The personal information we collect may include:
As an end user of the application, we may collect the following from you:
Additionally, we may collect information uploaded by you, your employer, or other end users of the application that is necessary for the provision of our services. We expect all end users to comply with their organization's privacy policy and any applicable regulatory requirements when uploading, accessing, or using personal information in our application. This information may include:
As a job applicant, we may also collect your resume, cover letter, and other details provided during the application process.
For further details, including ZeroRisk's obligations and your rights, please refer to our Terms and Conditions.
We automatically collect information about your interactions with our website and application whenever you visit any of our web pages. This may be done using cookies and similar tracking technologies where applicable (as outlined under the Cookies and user consent section).
The information collected automatically may include:
Additionally, we may collect information when you interact with our email communications, such as opening an email message from us and clicking on links within our email messages.
We may supplement the information we collect directly from you with additional information obtained from third-party sources. This includes:
We do not process personal information through the use of automated means.
Occasionally, we may record video conferencing calls to analyze and improve our team's communication skills. If a call is recorded, we will notify participants at the beginning of the meeting.
We do not sell your personal information to any third party.
If you are an end user of our application, your personal information may be visible to other end users within the application who have the necessary access rights as assigned by a member of your organization.
We use third-party service providers to assist in delivering our services. These providers may access your personal information collected through the website or application, as reasonably necessary to perform their contracted tasks on our behalf.
To protect your personal information, we:
| Service Provider | Business Purpose | Information Collected |
|---|---|---|
| Close | Customer Relationship Management software | Customer contact information |
| Chargebee | Billing system | Customer invoicing information |
| ZeroRisk Datacenters | Cloud data storage provider | Customer Deposited Material |
| Google Ads | Web ads service | Website information and searches |
| Google Analytics | Web analytics service | Website information and performance |
| Google Drive | Central database | Various forms of documented information |
| HubSpot | Customer Relationship Management software | Emails, leads, website visitor information, marketing information |
| Microsoft Ads | Web ads service | Website information and searches |
| Stripe | Payment processing service | Subscriptions and invoicing information, cardholder data |
| Twinfield | Accounting software | Invoicing information |
We may disclose personal information when required by law, subpoena, or other legal processes, as specified in applicable legislation.
Whenever appropriate and permitted, we attempt to notify our customers of any legal demands for their personal information. However, notification may not be possible if prohibited by law, court order, or when the request is urgent or an emergency.
Your personal information may be shared as part of a business transaction, such as a sale, merger, acquisition, or change in control, or during the preparation for any of these events. Any entity that acquires us or a part of our business will have the right to continue using your personal information as described in this Privacy Policy, unless you provide explicit consent for an alternative use.
We are dedicated to safeguarding the personal information we collect and use. To achieve this, we employ a range of physical, administrative, and technical measures designed to prevent unauthorized access, use, or disclosure of your information.
Our security practices include:
These measures are designed to ensure the confidentiality, integrity, and availability of personal information throughout its lifecycle.
We are committed to respecting and protecting your privacy. Regardless of your location or applicable privacy regulations, we offer the following rights to all individuals whose personal information we process.
You have the right to:
This Privacy Policy provides an overview of these practices. Additional privacy notices or statements may also be available to you at the time of providing information directly to us.
If you are an end user of the application, you can log in to your account to view your personal information or contact your employer for further details. You may also contact us at service@zerorisk.com to request a copy of your personal information.
You can edit your information directly through your user account in the application, or ask us to do it on your behalf. Alternatively, you can contact us at service@zerorisk.com to request updates or deletion.
If we cannot delete your personal information, we will explain the reasons and inform you about any further actions available to you.
If you object to direct marketing, we will stop using your personal information for these purposes.
We do not process personal information through the use of automated means.
For general data subject requests (not specified under GDPR), we aim to respond within 30 days. In some cases, depending on the complexity of the request, this may extend to 60 days, with notice provided.
To exercise any of the rights described above, please contact us at service@zerorisk.com.
We retain personal information for as long as it is necessary to provide our services to our customers, while complying with any applicable legal obligations to retain such information.
Additionally, we may retain information to:
All retained information will be handled in accordance with this Privacy Policy.
When information associated with you is no longer necessary or relevant to provide our services, we may de-identify or aggregate it with other non-personal information. This aggregated information may be used to generate insights that are commercially valuable to ZeroRisk, such as usage statistics for our services.
We process personal information globally and use legally recognized mechanisms to transfer information across borders, including contractual agreements that incorporate information protection and sharing obligations. We ensure the secure return, transfer, and/or disposal of personal information as required.
We collect and process your personal information only where we have a lawful basis to do so.
You can review the applicable terms and conditions here: Terms and Conditions.
Where we rely on your consent to process your personal information, you have the right to withdraw or decline consent at any time.
For marketing communications, you can:
For other types of information processing that rely on consent, you may contact us at service@zerorisk.com to submit your request.
Withdrawing your consent will not affect the lawfulness of any processing we carried out before your withdrawal. However, depending on the type of information, withdrawing consent may limit our ability to provide certain services or fulfill requests.
You have the ability to choose your preferences regarding communications and information collection. You may opt out of receiving marketing emails by clicking the "Unsubscribe" link included in any marketing communication.
Even if you opt out of marketing communications, we may still contact you regarding security or privacy issues, servicing your account, fulfilling your requests, and administering promotions or programs in which you have chosen to participate.
In the event of a data breach that affects your personal information, we are committed to notifying you promptly:
If you believe your rights have been violated or that your personal information has been compromised, you have the right to lodge a complaint with the appropriate authority responsible for enforcing privacy legislation in your jurisdiction.
You may contact us to exercise any of your rights or request more information about your personal information and our privacy practices by reaching out to us at service@zerorisk.com.
We are committed to keeping this Privacy Policy accurate and up to date. As our practices, services, or applicable laws evolve, we may make changes to this Privacy Policy from time to time.
When updates are made, a new Effective Date will be displayed at the top of this Privacy Policy. We encourage you to review this Privacy Policy periodically to stay informed about how we process your personal information.
Where required or appropriate, we may also provide additional notice of significant changes to this Privacy Policy.
If you are located in one of these jurisdictions or wish to exercise your rights under the General Data Protection Regulation ("GDPR"), ZeroRisk acts as:
Please contact your employer or the organization that granted you access to the application for details about their privacy practices.
We use cookies to enhance your experience on our website, analyze traffic, and support marketing efforts. In line with the GDPR, we use a clickwrap method to obtain your consent. This means you can actively select your cookie preferences.
When visiting our site, users are presented with a cookie consent popup where they can manage cookies by category. Users can choose to allow or block specific types of cookies. Note: Disabling certain cookies may impact user experience and limit the functionality of the website.
We process and share personal information globally, which may involve transferring information to jurisdictions outside the EEA, UK, and Switzerland. To ensure these transfers comply with applicable data protection laws, we implement safeguards designed to protect your information.
For information transfers to countries that do not have an adequacy decision from the European Commission (for EEA-based transfers) or the UK's Information Commissioner's Office (for UK-based transfers), we rely on Standard Contractual Clauses or other approved mechanisms to ensure an equivalent level of data protection.
If you believe your rights have been violated or that your personal information has been compromised, you may lodge a complaint with your local supervisory authority. You may also contact us directly at service@zerorisk.com for assistance.
| Date | Summary of Changes |
|---|---|
| 2 September 2025 | Initial release of the policy. |