Legal

Privacy Policy

This Privacy Policy explains what data Zeyora collects, how it is used, how it is protected, and the choices you have when using our platform and mobile application.

Effective date: 12-04-2026
Last updated: 12-04-2026
On this page
1. Information we collect 2. Location data 3. How we use information 4. How we protect information 5. Sharing & disclosures 6. Cookies 7. Data retention 8. International transfers 9. Your rights 10. Children 11. Changes to this policy 12. Contact

At Zeyora ("we," "our," or "us"), your privacy is important. This policy describes how we collect, use, protect, and share personal and business information when you use our website, SaaS platform, HRM application, mobile application, and related services (collectively, the "Service"). By using Zeyora, you agree to this Privacy Policy.

1. Information we collect

We collect information to provide, operate, maintain, and improve the Service.

Personal information
  • Name, email address, phone number, company name, and business details.
  • Employee profile information created by your organization within Zeyora.
  • Billing, subscription, and account-related details where applicable.
Business and operational data
  • Customer, lead, HRM, payroll, attendance, project, sales, finance, and task-related records.
  • Files, documents, notes, comments, quotations, invoices, and other content uploaded to the platform.
Technical information
  • IP address, browser type, device information, operating system, app version, and system logs.
  • Usage activity, crash reports, diagnostic information, and performance-related data.
  • Cookies and similar technologies where applicable on our website and web application.

2. Location data

Zeyora may access and process location data within the HRM mobile application for attendance-related functionality. This applies only when your organization uses attendance features and the user grants the required location permission.

How location is used
  • To verify the employee's location during attendance check-in.
  • To capture location at check-out, whether manual or automatic.
  • To temporarily monitor whether a checked-in employee has moved away from the designated office or work location.
  • To automatically check the user out if the user remains checked in and moves more than 100 meters away from the office or designated check-in location.

If a user checks in and forgets to check out, the application may continue to access location for this attendance workflow only. When the system detects that the checked-in user has moved more than 100 meters away from the office or approved work location, the application may automatically perform attendance check-out.

After manual check-out or automatic check-out, the application stops accessing the user's location for this attendance session. The app does not continue tracking location after the attendance session ends.

Location data is used only for attendance, workforce accountability, and related HRM functions. We do not sell location data, and users can control location permissions through their device settings, subject to the attendance requirements defined by their organization.

3. How we use your information

  • Operate, maintain, and improve the Service.
  • Provide CRM, HRM, project management, attendance, and related business functionality.
  • Process user requests, support tickets, onboarding, and account communications.
  • Secure the platform and prevent abuse, fraud, unauthorized access, and misuse.
  • Analyze usage to improve performance, reliability, and user experience.
  • Generate reports, records, and operational insights for authorized business users.
  • Comply with legal, contractual, and regulatory obligations.

4. How we protect your information

We implement administrative, technical, and organizational safeguards such as:

  • Encryption: Data protected in transit using secure protocols and safeguarded at rest where applicable.
  • Access control: Role-based permissions, account authentication, and restricted administrative access.
  • Operational monitoring: Logs, audits, and monitoring measures to identify suspicious or unauthorized activity.
  • Backups: Backup and recovery processes designed to support continuity and data protection.

Although we take reasonable steps to protect information, no system or transmission method can be guaranteed to be completely secure.

5. Sharing your information

We do not sell your personal information. We may share data only in limited circumstances such as:

  • Service providers: Hosting, cloud storage, email delivery, infrastructure, analytics, payment, notification, and support providers that help us operate the Service.
  • Organization-controlled use: If you use Zeyora through your employer or company, authorized administrators within that organization may access business and employee records managed in the platform.
  • Legal requirements: Where disclosure is necessary to comply with law, regulation, legal process, or enforceable governmental request.
  • Protection of rights: To protect the rights, safety, security, users, customers, or integrity of Zeyora and its services.
  • Business transfers: In connection with a merger, acquisition, restructuring, financing, or sale of assets, subject to applicable safeguards.

6. Cookies

We may use cookies and similar technologies to:

  • Maintain sessions and remember preferences.
  • Improve website functionality, performance, and reliability.
  • Understand usage patterns and optimize user experience.

You can control cookies through your browser settings. Disabling cookies may affect some website functionality.

7. Data retention

We retain personal and business information for as long as necessary to provide the Service, fulfill the purposes described in this policy, comply with legal obligations, resolve disputes, maintain records, and enforce agreements. Retention periods may vary depending on account status, organizational settings, legal requirements, and the nature of the data.

8. International data transfers

Zeyora is a cloud-based service, and data may be processed or stored in infrastructure, hosting environments, or service-provider systems located in different jurisdictions as necessary to operate the Service. Where applicable, we use reasonable safeguards appropriate to the nature of the data.

9. Your rights

Depending on your jurisdiction and relationship with the Service, you may have rights to:

  • Access, review, or correct certain personal information.
  • Request deletion of personal information where legally applicable.
  • Object to or restrict certain processing activities.
  • Request export of certain information where technically feasible and legally applicable.

To make a request, please contact us using the details below. For organization-managed accounts, certain requests may need to be handled through your employer or account administrator.

10. Children

Zeyora is intended for business and organizational use and is not directed to children. We do not knowingly collect personal information directly from children through the Service.

11. Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, or operational practices. When we make changes, we will revise the “Last updated” date shown above.

12. Contact

If you have questions about this Privacy Policy or how your information is handled, please contact us through the Contact page.