Privacy Policy

Last updated: December 15, 2025

1. Introduction

Zeus ("we", "our", "us") is committed to protecting the privacy of its users. This privacy policy explains how we collect, use, store, and protect your personal information when you use our data leak prevention (DLP) service for artificial intelligence services.

2. Data Collected

We collect the following types of data:

  • Informations de compte : Account information: email, organization name, password (hashed)
  • Données d'utilisation : Usage data: login logs, service usage statistics
  • Incidents de sécurité : Security incidents: DLP alert metadata (data type detected, timestamp, URL)
  • Données de facturation : Billing data: payment information processed by Stripe

3. Data NOT Collected

Important : Important: Zeus NEVER collects, stores, or transmits the actual content of your sensitive data. Our extension analyzes text locally in your browser. Only anonymized incident metadata is transmitted to our servers:

  • We do NOT store your passwords, credit card numbers, or API keys
  • We do NOT store the content of your conversations with AI
  • We do NOT store the content of your uploaded files
  • Analysis is performed locally in your browser

4. Use of Data

Your data is used to:

  • Provide and improve our DLP protection service
  • Generate statistics and reports for your dashboard
  • Send security alerts configured by your organization
  • Manage your subscription and billing
  • Communicate important service updates

5. Storage and Security

Your data is stored on secure European servers. We implement the following security measures:

  • Data encryption in transit (TLS 1.3)
  • Data encryption at rest (AES-256)
  • Secure authentication with MFA support
  • Restricted data access following the principle of least privilege
  • Access monitoring and logging

6. Data Retention

privacy_page.section6.content

7. Data Sharing

We never sell your data. We may share certain information with:

  • Droit d'accès : Stripe: for payment processing
  • Droit de rectification : European cloud providers: for infrastructure hosting
  • Droit à l'effacement : Competent authorities: if required by law
  • Droit à la portabilité : privacy_page.section7.item4
  • Droit d'opposition : privacy_page.section7.item5

8. Your Rights (GDPR)

privacy_page.section8.content

9. Cookies

Our service uses only essential cookies for operation (authentication, preferences). We do not use advertising or third-party tracking cookies.

10. Changes

We may update this privacy policy. Important changes will be notified by email or via our dashboard. The last update date is shown at the top of this page.