zerotrust.sim

Privacy Policy

Last updated: June 20, 2026

Overview

This page describes how zerotrust.sim ("we", "the Service") handles data when you use it. It is maintained by the project owner and reflects current behavior of the app.

Information We Collect

  • Account data: email address and authentication identifiers when you sign in (email/password or Google).
  • Project data: the assets, rules, IAM graphs, baselines, conflict snapshots, and YAML manifests you create.
  • Collaboration data: presence, cursor positions, and soft-lock selections broadcast to peers in the same project while you are connected.
  • Operational logs: minimal request and error logs needed to operate the Service.

How We Use Data

We use your data only to operate the Service: to authenticate you, persist your projects, compute conflicts, render real-time collaboration, and surface errors. We do not sell your data and do not use it for advertising.

Storage and Processing

Account, project, and snapshot data are stored in our managed backend with row-level security so that only you and the collaborators you invite can read or modify a given project. Realtime collaboration messages are transient and not persisted beyond the active session.

Sharing

Project content is visible only to the project owner and explicit collaborators. We do not share your data with third parties except processors strictly required to run the Service (authentication, database, realtime transport).

Retention and Deletion

Your data is retained for as long as your account exists. You can request deletion of a project or your account by contacting the project owner; once removed, content cannot be recovered.

Your Rights

Depending on your jurisdiction, you may have the right to access, correct, export, or delete personal data we hold about you. Contact us to exercise these rights.

Security

We use industry-standard transport encryption and role-scoped database access. No system is perfectly secure; please use strong, unique passwords and report any suspected vulnerability.

Children

The Service is not directed to children under 13 and we do not knowingly collect personal information from them.

Changes

We may update this policy as the Service evolves. Material changes will be reflected by an updated "Last updated" date.

Contact

For privacy questions or requests, contact the project owner through the channel used to invite you to the Service.