Privacy Policy

1. Introduction

Zero-day S.R.L. (“Company,” “we,” “us,” or “our”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use Prometheus™ – our AI-Powered Business Intelligence Platform (“the Service”).

2. Information We Collect

2.1 Personal Information

We may collect the following personal information:

• Name and contact information (email address, phone number)
• Account credentials
• Billing and payment information
• Company name and job title
• Communication preferences

2.2 Business Data

When you connect your 1C system, we access and process:

• Financial and accounting data
• Transaction records
• Customer and vendor information
• Inventory and product data
• Other data necessary to provide the Service

2.3 Usage Data

We automatically collect:

• Queries and interactions with the Service
• Device and browser information
• IP address and location data
• Usage patterns and preferences

3. How We Use Your Information

We use collected information to:

• Provide, maintain, and improve the Service
• Process queries and generate insights from your data
• Process transactions and send billing information
• Send administrative communications
• Provide customer support
• Analyze usage patterns to improve functionality
• Detect, prevent, and address technical issues or fraud
• Comply with legal obligations

4. Data Sharing and Disclosure

We may share your information with:

• Service Providers: Third-party vendors who assist in operating the Service (e.g., cloud hosting, payment processing)
• Legal Requirements: When required by law or to protect our rights
• Business Transfers: In connection with mergers, acquisitions, or asset sales
• With Your Consent: For any other purpose with your explicit consent

We do not sell your personal information or business data to third parties.

5. Data Security

We implement industry-standard security measures including:

• AES-256 encryption for data at rest
• TLS 1.3 encryption for data in transit
• Regular security audits and penetration testing
• Multi-factor authentication options
• SOC 2 Type II compliance
• Access controls and employee training

6. Data Retention

We retain your personal information and business data for as long as your account is active or as needed to provide the Service. Upon account termination, we will delete or anonymize your data within 90 days, unless retention is required by law.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

• Access your personal data
• Correct inaccurate data
• Delete your data
• Export your data in a portable format
• Object to or restrict certain processing
• Withdraw consent at any time

To exercise these rights, contact us at privacy@prometheus.md.

8. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including standard contractual clauses approved by relevant authorities, to protect your data during international transfers.

9. Cookies and Tracking

We use cookies and similar technologies to enhance your experience, analyze usage, and deliver personalized content. You can control cookie preferences through your browser settings. For more information, see our Cookie Policy.

10. Children's Privacy

The Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we learn we have collected data from a child, we will delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or through the Service. Your continued use of the Service after changes become effective constitutes acceptance of the updated Policy.