Privacy Policy

Abstract pixelated blue arrow pointing to the right on a white background.

Last Updated: February 2, 2026

1. INTRODUCTION

Zenyard Ltd. ( “Zenyard”, “we”, “us”, or “our”) provides an AI-powered Solution designed to support reverse engineering and software analysis (“Solution”).

This privacy policy (“Policy”) explains how we collect, use, disclose, and protect personal data (“Personal Data”) in connection with the Solution and our website available at https://www.zenyard.ai (“Site”), and explains when we process Personal Data, in what capacity we do so, and the safeguards we apply.

This Policy forms an integral part of our Terms of Use. The Terms of Use are available and may be reviewed at the following link: https://www.zenyard.ai/eula

2. SCOPE AND APPLICABILITY

This Policy applies to the processing of Personal Data by us in the following contexts:

  • Use of or interaction with the Site
  • Use of our Solution
  • Communications with us, including support and business communications
  • Marketing, sales, and business development activities

This Policy does not govern how we independently process Personal Data using our Solution. In such cases, our customers are responsible for providing appropriate notices and determining the lawful basis for processing.

3. OUR ROLE

Depending on the context, we may act either as a data controller or a data processor, as those terms are defined under applicable data protection laws.

3.1 Zenyard as Data Processor

In connection with the use of our Solution by our customers, we generally act as a data processor, meaning that:

  • Our customers determine the purposes and means of processing;
  • we process Personal Data solely on behalf of and in accordance with the instructions of our customer;
  • we do not independently determine how customer-submitted data is used.

This role applies only where Personal Data is transmitted to us, such as in cloud-based deployments of our Solution.

We process such Personal Data on behalf and under the instruction of the respective customer in our capacity as a data processor, in accordance with our data processing addendum (hereinafter: “DPA”) with them. Our Data Processing Addendum (DPA) is available upon request. Please contact us at privacy@zenyard.ai and we will provide a copy.

For on-premises deployments, our Solution operates entirely within the customer’s environment, and we do not have access to any Personal Data processed in that environment.

3.2 Zenyard as Data Controller

We act as a data controller when processing Personal Data relating to:

  • Visitors to the Site (for information we collect on website visitors via cookies and other trackers please see below section titled “Cookies and Similar Technologies”)
  • Prospective customers (“Prospects”) and partners
  • Customer representatives, administrators, and authorized users
  • Communications, marketing, sales, and contractual relationships
  • Account management and billing

In these cases, we determine the purposes and means of processing and are responsible for complying with applicable data protection laws.

This Policy describes our independent privacy and data processing practices as a data controller with respect to our Site and Solution (collectively: “Services”). This Policy explicitly does not detail our practices as a data processor. If you have any questions or requests regarding our practices in this capacity, please review our DPA and/or contact your account administrator(s) directly.

4. CATEGORIES OF PERSONAL DATA WE PROCESS

We process Personal Data primarily in a business-to-business context and seek to limit collection to what is relevant and necessary.

You are not legally required to provide us with any of your Personal Data, and may do so (or refrain from doing so) at your own free will. If you do not wish to provide us with your Personal Data, or to have it processed by us or any of our Services providers, please do not visit or interact with our Site or use our Solution in accordance with our Terms of Use.

You may also choose not to provide us with “optional” Personal Data (i.e. Personal Data that is marked as “optional”, for instance on intake forms), but please keep in mind that this may have an impact on your user experience while making use of our Services.

4.1 Account Information

When you create or use an account with us, We process basic identification and account-related information from you, such as your name, business email address, job title, company name, and role within your organization. We also process authentication and access-related information, including login credentials and single sign-on details, to enable secure access to the Solution and manage user permissions.

4.2 Business and Contractual Information

In the context of our commercial relationship, we process business contact details and contractual information, including billing contacts, authorized signatories, payment-related correspondence, and records necessary to manage subscriptions, invoicing, and contractual obligations.

4.3 Communications and Support

We process information you provide when communicating with us, including through emails, support tickets, and other correspondence. This may also include records or transcripts of calls or meetings, where applicable and permitted by law, for purposes such as customer support, quality assurance, training, and documentation of our interactions.

4.4 Usage, Log, and Technical Data

When you access or use our Services, we collect certain technical and usage-related information, such as IP addresses, device and browser details, access times and usage patterns, log files, and diagnostic data. This information is used to operate, secure, and improve our Services. For on-premises deployments, collection of such data is strictly limited to what is necessary for license validation, essential functionality, and security-related purposes.

4.5 Marketing and Prospect Data

We process Personal Data relating to prospects and business contacts who interact with our Site, content, events, or marketing activities. This may include:

  • Contact info (name, email, phone), company + role
  • Form submission content (message, selected interests, requested assets)
  • Marketing consent + subscription preferences, opt-outs
  • Linking to previous requests/correspondence

4.6 Customer-Submitted Code and Files

Our customers may submit software code, binaries, or other technical materials for analysis through our Solution. Please do not include any Personal Data within the User Data you upload. We do not intentionally collect Personal Data through such materials, and any Personal Data embedded within them is incidental to the technical purpose of the analysis.

5. PURPOSES OF PROCESSING AND LEGAL BASES

We process Personal Data only where permitted under applicable law and where a valid legal basis applies. The specific legal basis for processing depends on the context in which the Personal Data is collected and the nature of our relationship with you.

5.1 Performance of a Contract

We process Personal Data where such processing is necessary for the performance of our contractual obligations. This includes using Personal Data to create and manage accounts, provide access to the Solution, administer subscriptions and licenses, process payments, and communicate with you regarding service-related matters. Without this processing, we would not be able to provide the Solution or fulfill our contractual obligations.

5.2 Legitimate Interest

We process Personal Data where it is necessary for our legitimate business interests. Our legitimate interests include operating, maintaining, and improving our Services; understanding how our Site and Solution are used at an aggregated level; ensuring the security, integrity, and availability of our systems; preventing fraud, misuse, or unauthorized access; communicating with you; and managing our business operations and growth.

5.3 Legal Obligations

In certain circumstances, we process Personal Data to comply with our legal obligations. This includes processing necessary to meet applicable laws and regulations, respond to lawful requests from public authorities, comply with tax, accounting, and record-keeping requirements, and exercise or defend legal claims.

5.4 Consent

Where required by applicable law, we process Personal Data based on your consent. This may apply, for example, to certain marketing communications, the use of non-essential cookies or similar technologies, or other processing activities where consent is the appropriate legal basis. Where processing is based on consent, you may withdraw your consent at any time, subject to applicable legal or contractual restrictions, without affecting the lawfulness of processing carried out before such withdrawal.

6. DISCLOSURE OF PERSONAL DATA

Zenyard discloses Personal Data only where necessary for the operation of the Services, for legitimate business purposes, or where required by applicable law. We do not sell Personal Data.

6.1 Service Providers

We may disclose Personal Data to selected third-party service providers that perform services on our behalf or support the operation of our Services. These service providers assist us with functions such as cloud hosting and infrastructure, system monitoring and security, analytics, customer relationship management, billing and payment processing, communications, and professional advisory services. Access to Personal Data by service providers is limited to what is necessary for them to perform their specific functions, and they are contractually required to process Personal Data only in accordance with our instructions, to maintain confidentiality, and to implement appropriate security measures.

6.2 Customers and Account Administrators

Personal Data relating to users of the Solution may be disclosed to the customer organization that owns and administers the relevant account. Authorized customer administrators may access user-related information within their organization’s account for purposes such as managing access, overseeing usage, ensuring security, and administering the account. We do not determine how customers further use or disclose such data and are not responsible for customers’ independent data processing activities carried out in their capacity as data controllers.

6.3 Legal and Regulatory Requirements

We may disclose Personal Data where required to comply with applicable laws, regulations, legal processes, or lawful requests from public authorities, including courts or law enforcement agencies. We may also disclose Personal Data where we believe, in good faith, that such disclosure is necessary to investigate, prevent, or take action regarding suspected illegal activity, fraud, security incidents, or violations of our Terms of Use, or to protect the rights, property, or safety of Zenyard, our customers, users, or others.

7. INTERNATIONAL DATA TRANSFERS

Personal Data may be processed in Israel, the United States, and other jurisdictions where Zenyard or our service providers operate.

Where required, we implement appropriate safeguards, such as Standard Contractual Clauses, to ensure adequate protection of Personal Data transferred internationally.

8. DATA RETENTION

We retain Personal Data only for as long as reasonably necessary to:

  • Provide our Services
  • Fulfill contractual and legal obligations
  • Maintain business records
  • Resolve disputes and enforce agreements

Retention periods may vary depending on the nature of the data and applicable legal requirements. Retention of customer-submitted data is governed by customer instructions and contractual terms.

9. DATA SECURITY

We implement administrative, technical, and organizational measures designed to protect Personal Data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access.

While we take reasonable steps to protect Personal Data, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

10. YOUR RIGHTS

We support you in exercising your data subject rights. Depending on the laws that may apply to you, you may have all or some of the following rights:

  • Access and request amendment or rectification of your Personal Data.
  • Obtain the erasure of your Personal Data under certain circumstances. You also have the right to restrict the processing of your Personal Data.
  • Receive a copy of your Personal Data or ask us to transmit that data to another controller, where technically feasible.
  • Object to the use of your personal information based on our legitimate interest for reasons which concern your particular situation. In such a situation, we will stop using your personal information, unless we can show that the interest overrides your privacy interest.
  • Not to be subject to decisions that have a material impact on you, and that are based solely on automated decisions.
  • If you are protected by the GDPR, you can lodge a complaint with the supervisory authority of your country in case you think that your rights have been breached.

If any or all of these rights apply to you and you wish to exercise any of them, please contact us at: privacy@zenyard.ai.  

11. COOKIES AND SIMILAR TECHNOLOGIES

We may use cookies and similar technologies to operate our Site, analyze performance, and support marketing activities. Where we use cookies, you can manage cookie preferences through your browser settings. We collect the following information via cookies and other trackers on our site:

  • Cookie/browser identifiers (HubSpot & Google Analytics 4)
  • Web session identifiers
  • Cookie consent status / preferences
  • IP address
  • Browser/device info and approximate location
  • Pages viewed, timestamps, sessions/engagement, tracked events
  • Referrer website + UTM parameters; ad click IDs (if present)
  • Aggregated search performance metrics (queries/pages/clicks/impressions/position);
  • Company/IP-based company identification + company domain if a website visitor self-identifies

We may collect additional identifiers in the future, at our discretion.

12. CHILDREN’S PRIVACY

Our Services are not intended for individuals under the age of 18. We do not knowingly collect Personal Data from children and do not wish to do so. If we learn that a person under the age of 16 is using our Services, we will attempt to prohibit and block such use and will make our best efforts to promptly delete any Personal Data stored with us in that regard. If you believe that we might have any such data, please contact us at: privacy@zenyard.ai.

13. UPDATES TO THIS PRIVACY POLICY

We keep this Policy under regular review and may update it from time to time. Any Personal Data we collect is subject to the Policy in effect at the time such data is collected.

Any changes we make to this Policy in the future will be posted on this page and, where appropriate, notified to you by email. Therefore, we encourage you to review it from time to time to stay informed of how we process your Personal Data.

14. CONTACT INFORMATION

If you have questions, concerns, or requests regarding this Policy or our data processing practices, please contact us at: privacy@zenyard.ai.

By clicking "Accept all cookies", you agree to storing cookies on your device to enhance site navigation, analyze site usage and assist in our marketing efforts as outlined in our privacy policy.
PreferencesAccept allDecline
Close Cookie Preference Manager
Cookie settings
By clicking 'Accept all cookies', you agree to storing cookies on your device to enhance site navigation, analyze site usage and assist in our marketing efforts as outlined in our privacy policy.
Strictly necessary (always active)
Cookies required to enable basic website functionality.
Accept all cookiesSave settings