Privacy Policy
Last updated: April 25, 2025
Privacy by Design
We integrate privacy into everything we build from the ground up.
Data Minimization
We collect only what we need to provide our services.
User Control
We give you meaningful control over your data.
No Data Selling
We never sell your personal data to third parties.
1. Introduction
Zero Sum Defense, Inc. ("ZSD," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Actualize platform, related services, websites, and mobile applications (collectively, the "Services").
We designed our Services with privacy at the core. Our zero-knowledge architecture means that certain data you store or process using our Services is encrypted in a way that even we cannot access it. However, we still collect and process some information as described in this policy.
Please read this Privacy Policy carefully. By accessing or using our Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy. If you do not agree with our policies and practices, please do not use our Services.
2. Information We Collect
3. How We Use Information
We use the information we collect for various purposes, including:
Providing and Improving Services
Creating and managing your account
Providing the features and functionality you request
Processing transactions and billing
Improving and developing new features
Analyzing usage patterns to enhance user experience
Troubleshooting issues and providing support
Security and Compliance
Detecting and preventing fraud and security incidents
Verifying your identity and authenticating access
Protecting our Services and users
Enforcing our terms and policies
Complying with legal obligations
Investigating violations and protecting rights
Communications
Sending administrative notifications
Providing customer support and responding to inquiries
Sending security alerts and updates
Delivering marketing communications (with consent)
Informing you about new features or services
Conducting surveys and collecting feedback
Personalization
Customizing your experience
Remembering your preferences
Suggesting relevant features
Providing contextual help and resources
Optimizing interface based on your behavior
Tailoring support and communications
Legal Basis for Processing (EU/UK Users)
For users in the European Union and United Kingdom, we process your personal data on the following legal bases:
Contract:
Processing necessary to fulfill our contractual obligations to you
Legitimate Interests:
Processing that serves our legitimate interests, such as improving our services, securing our platform, and preventing fraud
Consent:
Processing based on your specific consent, such as for marketing communications
Legal Obligation:
Processing required to comply with our legal obligations
5. Data Retention
We retain your personal information for as long as necessary to provide you with our Services, comply with legal obligations, resolve disputes, enforce our agreements, and protect our legal rights.
Different types of information may be retained for different periods:
Retention Periods
Account Information:
Retained for the duration of your account and for a period thereafter to comply with legal obligations or resolve potential disputes.
Usage Data:
Retained for a period necessary for analytics, improving our services, and ensuring security.
Communication Data:
Support communications and related data may be retained to maintain service quality and address ongoing concerns.
Encrypted Content:
Retained until you delete it or terminate your account. After account termination, encrypted content may be retained for a limited period before permanent deletion.
Backups:
For disaster recovery purposes, information may be retained in backups for a limited period beyond the primary retention period.
When information is no longer needed, we will delete or anonymize it. In some cases, we may retain certain information in a depersonalized or aggregated form that cannot be linked to you.
6. Your Privacy Rights
Depending on your location, you may have certain rights regarding your personal information. These may include:
Access and Portability
You can access much of your information directly through your account settings. You may also request a copy of your personal information in a structured, commonly used, and machine-readable format.
Correction
You can correct or update much of your personal information directly through your account settings. If you identify any inaccurate information that you cannot correct yourself, you may request that we correct it.
Deletion
You can delete certain information through your account settings. You may also request that we delete your personal information, subject to certain exceptions provided by law.
Restriction and Objection
You may request that we restrict the processing of your personal information or object to our processing of your personal information in certain circumstances.
To exercise your rights, you can access yourPrivacy Features or contact us at privacy@zerosumdefense.co. We will respond to your request within the timeframe required by applicable law.
Please note that certain information may be exempt from these rights under applicable law. We may need to retain certain information for legal purposes, security reasons, or to complete transactions you began before requesting a change or deletion.
7. Security
We implement technical, organizational, and physical safeguards designed to protect your information from unauthorized access, disclosure, alteration, and destruction. Our security measures include:
- Strong encryption for data in transit and at rest
- Zero-knowledge architecture for sensitive content
- Multi-factor authentication options
- Regular security assessments and penetration testing
- Access controls and authentication mechanisms
- Monitoring systems and anomaly detection
- Incident response procedures
- Employee security training
- Physical security for our facilities
- Secure development practices
- Regular security updates and patching
While we implement safeguards designed to protect your information, no security system is impenetrable. Due to the inherent nature of the Internet, we cannot guarantee that information, during transmission through the Internet or while stored on our systems or otherwise in our care, is absolutely safe from intrusion by others.
For more information about our security practices, please visit ourSecurity page.
8. International Transfers
ZSD is headquartered in the United States, and we may process, store, and transfer personal information in the United States and other countries, which may have different data protection laws than those in your country of residence.
When we transfer personal information from the European Economic Area (EEA), UK, or Switzerland to countries that have not received an adequacy decision from the European Commission, we rely on appropriate safeguards, such as:
Standard Contractual Clauses (SCCs):
We use European Commission-approved Standard Contractual Clauses in our contracts with service providers and partners to ensure adequate protection for your data when transferred internationally.
Data Transfer Impact Assessments:
We conduct assessments of the level of protection provided in the countries where your data may be transferred to ensure adequate protection.
Additional Technical Safeguards:
We implement additional technical measures, including our zero-knowledge architecture and encryption, to protect data during international transfers.
For more information about our data transfer mechanisms, including how to obtain a copy of the Standard Contractual Clauses, please see our Data Transfers Addendum or contact us at privacy@zerosumdefense.co.
9. Children's Privacy
Our Services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we learn that we have collected personal information from a child under 16, we will take steps to delete such information as soon as possible.
If you are a parent or guardian and believe that your child has provided us with personal information without your consent, please contact us at privacy@zerosumdefense.co.
10. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. If we make material changes, we will notify you as required by applicable law, which may include:
- Posting the updated Privacy Policy on our website
- Sending an email notification
- Displaying a notice in our Services
- Other appropriate means
We encourage you to periodically review this Privacy Policy to stay informed about our data practices. The "Last Updated" date at the top of this page indicates when this Privacy Policy was last revised.
Your continued use of our Services after any changes to this Privacy Policy indicates your acceptance of the revised policy.
11. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:
Privacy Office
Zero Sum Defense, Inc.
7455 France Ave S, #277
Minneapolis, MN 55435
Email: privacy@zerosumdefense.co
Phone: 818-732-8733
For EU/UK residents: You have the right to lodge a complaint with your local data protection authority if you believe that our processing of your personal information does not comply with applicable law.
12. Region-Specific Disclosures
Different regions have specific privacy requirements. Please refer to our region-specific disclosures for additional information that may apply to you based on your location.
This Privacy Policy is effective as of: April 25, 2025
Additional Privacy Resources
Cookies Policy
Learn about our use of cookies and similar technologies
Privacy Shield Policy
Information for EU/UK data transfers
Privacy Features
Manage your privacy settings and data
Data Processing Agreement
For business customers and partners