1. Introduction & Our Commitment to Your Privacy

Welcome to ZEDUNIX. At ZEDUNIX, we are deeply committed to protecting the privacy and security of the personal and business information entrusted to us. As a pioneering software solutions company headquartered in Bangalore, India, and serving a global clientele, we understand that robust data protection is not just a legal obligation but a fundamental principle that underpins every aspect of our business.

This Privacy Policy serves as your comprehensive guide to understanding how ZEDUNIX (“we”, “our”, “us”) collects, uses, discloses, stores, and safeguards your information when you interact with our website, utilize our diverse range of software services, or communicate with us. Our practices are conscientiously aligned with the highest international standards for data protection and privacy, including the General Data Protection Regulation (GDPR) in the EU/UK, the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) in the US, and India’s Digital Personal Data Protection Act (DPDP Act).

By accessing, engaging with, or utilizing any of our ZEDUNIX services, you affirm your informed agreement to the terms stipulated within this Privacy Policy. We encourage you to read this policy carefully.

 

2. Definitions of Key Terms

To ensure clarity, the following key terms are defined:

*   Personal Data (or Personal Information): Any information that relates to an identified or identifiable natural person. This includes, but is not limited to, names, email addresses, phone numbers, IP addresses, and any data linked to these identifiers.

*   Non-Personal Data: Any information that cannot be used to identify an individual (e.g., aggregated, anonymized, or technical data).

*   Processing: Any operation performed on Personal Data, such as collection, storage, use, disclosure, or deletion.

*   Data Controller: Determines the purposes and means of processing Personal Data. ZEDUNIX is the Data Controller for data we directly collect from you (e.g., your contact details as a potential client).

*   Data Processor: Processes Personal Data on behalf of the Data Controller. ZEDUNIX acts as a Data Processor for data related to your customers, employees, or operations that you, as our client, provide to us.

*   Data Subject: The identified or identifiable natural person to whom Personal Data relates (i.e., you, the individual).

*   Client: A business, institution, or individual that has engaged ZEDUNIX for its software solutions.

*   Service Provider (or Third-Party Service Provider): External entities processing data on behalf of ZEDUNIX to facilitate or deliver services.

*   Consent: Freely given, specific, informed, and unambiguous agreement to the processing of Personal Data.

*   Cookies: Small text files placed on your device to remember preferences and track activity.

*   GDPR / CCPA / DPDP Act: Key international and national data protection legislations influencing our policy.

*   AI (Artificial Intelligence): Used in ZEDUNIX products for automation, analytics, and enhanced interaction.

 

3. Who We Are: ZEDUNIX at a Glance

ZEDUNIX is a leading software solutions company based in Bangalore, India, dedicated to empowering businesses and institutions worldwide through cutting-edge technology. We specialize in leveraging Artificial Intelligence and robust automation to create intelligent, scalable, and secure platforms that redefine operational excellence and foster sustainable growth.

Our comprehensive portfolio supports diverse sectors, including retail, education, healthcare, automotive, and professional services. Our offerings include:

*   ERP Systems: Startup ERP (Zestart), Corporate ERP, School & College ERP (Zolara), Multi-store Management, Hospital & Clinics Automation (Zanitas Care), Garage Management System (Zentrix).

*   AI & Automation Solutions: AI Voice Agent, AI Automated Office (Zenith Workspace), AI Automated Campus (ZeitCampus), AI Vehicle Log System (Zodiac Drive), AI Camera Solution for Revenue Assurance.

*   Communication & Interaction Tools: WhatsApp API Agent, VOIP System (Zelus Connect), Web Radio/TV Software (Zonic Stream), Booking System CRM (Zervos), Spa & Salon CRM.

*   Creative & Digital Design Services: Web Design, Package Designing.

Note: Zollid Films is an independent entity and is not a part of ZEDUNIX

 

4. Information We Collect

ZEDUNIX collects various categories of information, acting as both a Data Controller (for data we directly collect) and a Data Processor (for client data).

4.1 Personal Data You Provide to Us Directly:

This includes information you voluntarily submit when engaging with ZEDUNIX:

*   Identity and Contact Information: Full name, email address, phone number, company name, job title, physical business address, country.

*   Account & Profile Information: Usernames and securely stored passwords for platform access, role, preferences.

*   Project & Service Requirements: Detailed business needs, project scope, and feedback specific to services like ERP, AI solutions, web design, or package design.

*   Payment & Billing Information: Billing address, and (for recurring payments or refunds) bank account information. Full payment card details are processed by secure third-party gateways.

*   Communications: Records of your interactions with us via email, chat, WhatsApp, or phone (with prior notification if recorded).

*   Marketing Data: Your preferences for marketing communications, newsletter subscriptions.

*   Recruitment Data: Resume, cover letter, interview notes for job applicants (with consent for references).

4.2 Information We Process on Behalf of Our Clients (Our Role as Data Processor):

When you use certain ZEDUNIX services, we process data that you, our client (“Data Controller”), own and control. This data processing is strictly according to your documented instructions, contractual agreements (including Data Processing Agreements or DPAs), and applicable laws. This data may contain Personal Data of Data Subjects (your customers, employees, students, patients, etc.).

Examples include:

*   Customer Records: Names, contact info, service history, bookings, communication logs (e.g., WhatsApp chat transcripts, AI Voice Agent call recordings as per client instruction), payment status.

*   Employee/Student Records: Names, contact details, attendance, performance, payroll/fee info (e.g., for Zolara, Zenith Workspace, ZeitCampus).

*   Patient Data: Names, medical history, appointments, billing (for Zanitas Care, adhering to healthcare data standards).

*   Vehicle & Driver Data: Location, speed, maintenance logs, driver behavior (for Zodiac Drive).

*   Operational Footage/Data: Video feeds, traffic counts, activity logs from AI Camera Solutions or Automated Office/Campus solutions (processed as per client instructions).

ZEDUNIX processes this data solely for service delivery, maintenance, and improvement as contractually agreed with clients.

4.3 Information Collected Automatically (Usage Data, Cookies & Tracking Technologies):

When you interact with our website or platforms, we automatically collect non-personal and, in some cases, pseudo-anonymized data:

*   Usage Data: IP addresses, browser type, operating system, device details, pages viewed, time spent, interaction patterns, and diagnostic data.

*   Cookies and Tracking Technologies: Small data files (session, persistent, first-party, third-party) and web beacons/pixel tags placed on your device to enhance functionality, analyze usage, remember preferences, and enable marketing (see Section 6).

This collection helps optimize user experience, monitor performance, analyze trends, ensure security, and improve our services.

 

5. How We Use Your Information (Purposes and Legal Bases)

We process your personal data for specified, explicit, and legitimate purposes, always underpinned by a valid legal basis (primarily GDPR/DPDP Act compliance):

1. To Provide and Maintain Our Services: Operating our ERPs, AI solutions, communication tools, and design services; managing client data for various automation platforms as per contractual obligations.

    *   Legal Basis: Contractual Necessity.

2. To Manage Your Account & Contractual Obligations: Account registration, billing, payment processing, sending service-related communications.

    *   Legal Basis: Contractual Necessity.

3. To Improve and Personalize Your Experience: Tailoring services, customizing dashboards, and personalizing communication content.

    *   Legal Basis: Legitimate Interests (service improvement, user experience).

4. For Communication and Customer Support: Responding to inquiries, providing technical support, sending service updates and security alerts.

    *   Legal Basis: Contractual Necessity, Legitimate Interests (effective communication).

5. For Marketing and Promotions: Sending promotional materials, newsletters, and offers about ZEDUNIX services.

    *   Legal Basis: Consent (where required), Legitimate Interests (direct marketing for existing clients/similar services with opt-out).

6. For Analytics, Research, and Development: Analyzing usage, monitoring performance, fixing issues, and developing new features (often using anonymized data).

    *   Legal Basis: Legitimate Interests (product innovation, performance optimization).

7. For Security and Fraud Prevention: Monitoring for unauthorized access, detecting threats, preventing fraud within our systems and in client operations (e.g., AI Camera for Revenue Assurance).

    *   Legal Basis: Legitimate Interests (system security, fraud prevention), Legal Obligation.

8. For Legal Compliance and Enforcement: Adhering to laws, regulations, and governmental requests; enforcing Terms of Service; resolving disputes.

    *   Legal Basis: Legal Obligation, Legitimate Interests (legal rights).

Data Controller for Client-Provided Data: You, our client, remain the Data Controller for data you provide. ZEDUNIX processes this data strictly according to your instructions and our DPA.

 

6. Cookies and Tracking Technologies: Managing Your Preferences

ZEDUNIX uses cookies and similar technologies for functionality, performance analysis, and marketing.

*   Types Used:

    *   Strictly Necessary Cookies: Essential for website basic functions (e.g., login, security).

    *   Functionality Cookies: Remember your choices and preferences (e.g., language).

    *   Performance and Analytics Cookies: Collect anonymous information on website usage (e.g., Google Analytics).

    *   Advertising and Targeting Cookies: Deliver relevant ads and measure campaign effectiveness (often third-party, requires consent).

    *   Web Beacons / Local Storage: Used for tracking user actions and storing local data.

*   Your Choices:

    *   Website Cookie Banner: Presented on your first visit, allowing you to accept all, decline non-essential, or customize preferences.

    *   Browser/Device Settings: You can modify your browser or mobile device settings to refuse cookies or manage tracking (may affect website functionality).

    *   Third-Party Opt-Outs: Utilize industry-specific opt-out tools for advertising networks.

 

7. Data Storage and Security Measures

ZEDUNIX prioritizes the integrity, confidentiality, and availability of your data. We implement robust, multi-layered security measures aligned with international best practices.

*   Secure Infrastructure: Data is stored on secure, state-of-the-art data centers operated by leading global cloud service providers (e.g., AWS, Azure, Google Cloud). These have stringent physical security (biometrics, 24/7 staff, surveillance) and environmental controls.

*   Network Security: Comprehensive firewalls, Intrusion Prevention/Detection Systems (IPS/IDS), network segmentation, and DDoS protection secure our digital backbone. All data transmission is encrypted using TLS 1.2 or higher.

*   Application & Data Security:

    *   Secure Development: Security practices embedded throughout our software development lifecycle.

    *   Encryption: Data is encrypted both in transit (TLS) and at rest (AES-256) for sensitive information.

    *   Access Controls: Strict Role-Based Access Control (RBAC) and Multi-Factor Authentication (MFA) enforce the principle of least privilege.

    *   Regular Backups: Data is backed up to redundant, encrypted locations.

*   Incident Response: We have a clearly defined and regularly tested Incident Response Plan, 24/7 monitoring, and recovery procedures to address security incidents promptly.

*   Employee Awareness: All staff receive mandatory security and data protection training and are bound by confidentiality agreements.

*   Audits & Certifications: We rely on our cloud providers’ industry certifications (e.g., ISO 27001, SOC 2) and conduct our own vulnerability assessments.

While we strive for the highest security, no method is 100% foolproof.

 

8. Sharing of Information with Third Parties

We uphold our pledge: ZEDUNIX does NOT sell your personal information to third parties. Any data sharing is under strict conditions, for legitimate purposes, and with robust safeguards.

*   With Service Providers (Data Processors): We engage trusted third parties (e.g., cloud hosting, payment processors, analytics, CRM platforms, email services) to perform functions on our behalf. They are contractually obligated to protect your data and use it only for specified services.

*   With Your Consent: We share data with third parties when you provide explicit, informed consent (e.g., for specific service integrations or marketing partnerships).

*   For Legal Reasons: We may disclose data if required by law, regulation, court order, or governmental requests, or to protect the rights, property, or safety of ZEDUNIX, our clients, or the public.

*   Business Transfers: In mergers, acquisitions, or asset sales, your data may be transferred as part of the business assets, under equivalent privacy protection.

*   With Affiliates: Information may be shared with our parent companies, subsidiaries, or affiliated entities under common control, all bound by this Privacy Policy.

*   Marketing & Advertising Partners: With your consent, non-personally identifiable or pseudonymized data may be shared for targeted advertising and campaign effectiveness measurement.

*   Aggregated or Anonymized Data: Data that cannot be linked to individuals may be shared for research, analytics, or reporting.

 

9. Your Data Protection Rights

ZEDUNIX fully respects your rights as a data subject. Depending on your jurisdiction (e.g., GDPR, CCPA, DPDP Act), you may have specific rights regarding your personal data. For data where ZEDUNIX is a Data Processor, requests should be directed to our client (the Data Controller).

*   Right to Access: Request confirmation and a copy of your personal data we hold.

*   Right to Rectification: Request correction of inaccurate or incomplete data.

*   Right to Erasure (“Right to be Forgotten”): Request deletion of your data under specific conditions (e.g., data no longer necessary, consent withdrawn).

*   Right to Restrict Processing: Request us to limit processing under certain circumstances (e.g., data accuracy contested).

*   Right to Data Portability: Receive your data in a structured, machine-readable format for transfer to another controller (where processing is based on consent/contract by automated means).

*   Right to Object: Object to processing based on legitimate interests or for direct marketing.

*   Right to Withdraw Consent: Withdraw consent at any time without affecting prior lawful processing.

*   Right to Lodge a Complaint: Lodge a complaint with a competent data protection supervisory authority.

To exercise these rights, submit a written request to our Data Protection Officer (DPO). We will verify your identity and respond within legal timeframes.

 

10. Data Retention Policy

We retain your personal information only as long as necessary to fulfill the purposes for which it was collected, and to comply with legal, accounting, and reporting requirements.

*   Guiding Principles: Purpose limitation, necessity, legal/regulatory compliance, contractual obligations, and legitimate business interests.

*   General Retention Periods:

    *   Client Contact & Account Info: Duration of active relationship + 7-10 years (for legal/audit).

    *   Project & Service Requirements: Duration of project + 7-10 years.

    *   Payment & Billing Info: 7 years (or longer per tax laws).

    *   Communication & Support Records: Up to 3-5 years.

    *   Website Usage Data & Cookies: Varies by cookie type (e.g., session, 30 days-24 months).

    *   Recruitment Data: 6 months – 2 years for unsuccessful applicants (per labor laws).

    *   Client Data (as Processor): Strictly governed by client’s instructions and DPA. Upon termination, data is deleted or returned as instructed.

*   Anonymization & Deletion: Upon expiry, data is securely deleted or anonymized for research/statistics.

 

11. Policy for Children’s Privacy

Our services and website are not intended for individuals under 18 (“Children”). We do not knowingly collect personal data directly from Children.

*   Data Processor Role: For services like Zolara (School/College ERP) or ZeitCampus, where we process children’s data for our clients, the client remains the Data Controller responsible for obtaining parental consent. ZEDUNIX processes this data strictly under client instructions and DPA.

*   Parent/Guardian Action: If you believe your child has provided us data directly, contact us immediately for deletion.

 

12. International Data Transfers

As a Bangalore-based company serving global clients, your data may be stored/processed in countries outside your residence (including India) with different data protection laws.

*   Safeguards for EEA/UK/Switzerland Transfers (GDPR/UK GDPR): We rely on Standard Contractual Clauses (SCCs), adequacy decisions, or explicit consent, along with conducting Transfer Impact Assessments (TIAs).

*   Safeguards for California Transfers (CCPA/CPRA): Contracts prohibit the sale, and restrict use/disclosure of Personal Information by service providers.

*   Safeguards for India Transfers (DPDP Act): Adherence to Central Government notifications for adequate protection and prescribed conditions.

*   General Safeguards: Stringent Data Processing Agreements (DPAs), security by design (encryption), due diligence on recipients, and data minimization.

By using our services, you agree to these transfers under our implemented safeguards.

 

13. Links to Other Websites and Third-Party Services

Our services may link to third-party websites or services not operated by ZEDUNIX (e.g., social media, payment gateways, partners). We have no control over their content or privacy practices. We strongly advise you to review their policies. ZEDUNIX is not liable for data processed by third parties.

 

14. Updates to This Privacy Policy

We may update this Privacy Policy to reflect changes in practices, technology, or legal requirements. We will notify you of material changes by posting the new policy on this page (www.zedunix.com/privacy-policy) and updating the “Last Updated” date. For significant changes, we may notify you directly via email. Your continued use of our services signifies your acceptance of these changes.

 

15. Contact Us (Data Protection Officer & Privacy Team)

For any questions, concerns, or requests regarding this Privacy Policy or your data protection rights, please contact our Data Protection Officer:

ZEDUNIX

Attn: Data Protection Officer / Privacy Team

City/State/Zip: Bangalore, Karnataka, India , 560043

Email: privacy@zedunix.com

Phone: 974633383