Privacy Policy

Privacy Policy

Version: 1.0
Effective Date: May 2025

1. Introduction

Welcome to Gaterzone (“Company,” “we,” “our,” or “us”). Your privacy is critically important to us. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you engage with our on-premise Privileged Access Management (PAM) solution. We adhere to the principles set forth in the General Data Protection Regulation (GDPR), the Health Insurance Portability and Accountability Act (HIPAA), the National Institute of Standards and Technology (NIST) guidelines, and other applicable privacy regulations.

2. Information We Collect

As an on-premise solution provider, we do not collect or store user session data, authentication logs, or system usage details from our customers. The only information we collect includes:

  • Customer Firm Information: Company name, address, and industry details.

  • Contact Details: Name, email address, and phone number of customer representatives.

  • Billing and Payment Information: Data necessary for invoicing and processing payments.

We do not access or store any privileged access details, user login sessions, or system authentication logs from customer environments.

3. How We Use Your Information

We use the collected data to:

  • Manage customer accounts and provide support.

  • Process transactions and issue invoices.

  • Communicate important updates related to our services.

  • Ensure compliance with contractual obligations and applicable laws.

4. Legal Basis for Processing

Under GDPR and other regulations, we process your data based on:

  • Contractual Necessity: To fulfill our obligations related to product licensing and support.

  • Legal Obligation: To comply with applicable laws and financial regulations.

  • Legitimate Interests: For customer relationship management and business operations.

5. Data Sharing and Disclosure

We do not share, sell, or disclose customer information to third parties. The only exceptions are:

  • Legal Authorities: When required by law or regulatory obligations.

  • Service Providers: For payment processing and customer communication under strict confidentiality agreements.

6. International Data Transfers

As a global company, we ensure compliance with GDPR and other regulations when handling customer data across jurisdictions. We implement Standard Contractual Clauses (SCCs) and other necessary safeguards for data transfers.

7. Data Retention

We retain customer information only for as long as necessary to fulfill contractual and legal obligations. Once a customer terminates their engagement with us, data is securely deleted in compliance with relevant regulations.

8. Data Security Measures

We implement strong security measures, including:

  • Encryption: Secure storage of customer information.

  • Access Controls: Limited access to authorized personnel only.

  • Regular Security Audits: Ensuring compliance with GDPR, HIPAA, and NIST standards.

9. Your Rights Under GDPR and Other Regulations

You have the right to:

  • Access the data we store about you.

  • Rectify inaccurate information.

  • Request Data Deletion in compliance with legal obligations.

  • Restrict Processing under certain conditions.

  • Withdraw Consent for marketing communications at any time.

Requests regarding these rights can be made via “privacy[at]gaterzone.com”

10. Compliance with Privacy Regulations

GaterZone ensures full compliance with relevant privacy regulations, including:

  • GDPR: Protecting the rights of individuals regarding their personal data.

  • HIPAA: Ensuring secure handling of health-related data where applicable.

  • NIST Standards: Implementing cybersecurity best practices.

11. Cookies and Tracking Technologies

As our solution is on-premise, we do not use cookies or tracking technologies within customer environments. Our website may use cookies for session management and analytics, which users can manage via browser settings.

12. Third-Party Services and Links

Our website may contain links to third-party services. We are not responsible for their privacy practices. We encourage users to review their policies before providing any personal data.

13. Children’s Privacy

Our services are not directed at individuals under the age of 18. We do not knowingly collect personal data from minors.

14. Data Breach Notification

While we do not store sensitive session data, in the event of a security breach affecting customer-related data, we will:

  • Notify affected customers as required by law.

  • Report incidents to regulatory authorities where necessary.

  • Implement corrective actions to prevent future breaches.

15. Changes to This Privacy Policy

We may update this policy periodically. The latest version will always be available on our website. Significant changes will be communicated via email or in-app notifications.

16. Contact Information

For any privacy-related inquiries, contact us at:

  • Email: “privacy[at]gaterzone.com”

By using our services, you acknowledge that you have read and understood this Privacy Policy and agree to its terms.

cookie By using this website, you agree to our cookie policy. Close