Privacy Policy
How we collect, use, protect, and respect your data when you use the Zylyn accessibility platform.
Overview
Zylyn (“we”, “our”, or “us”) is a web accessibility audit platform that helps businesses identify and resolve WCAG, ADA, EAA, and Section 508 compliance issues. We are committed to protecting your privacy and handling your personal data with transparency, integrity, and care.
This Privacy Policy explains what information we collect when you visit zylyn.co or use any of our services, how we use it, who we share it with, and your rights regarding your personal data.
Our commitment: We respect your privacy. No spam, no selling your data to third parties, and no unnecessary data collection. We only collect what we need to provide you with a great accessibility audit experience.
By using Zylyn, you agree to the practices described in this policy. If you do not agree, please discontinue use of our platform.
Information We Collect
We collect information in the following ways:
Information You Provide
Name, email, website URL, and any details shared when registering, booking a consultation, or downloading our guide.
Automatically Collected
IP address, browser type, device, pages visited, time on site, and referral source via cookies and analytics.
Website Scan Data
URLs you submit for accessibility scanning. We scan only publicly accessible pages and do not modify your code.
Account Data
If you create an account, we store your login credentials (encrypted), audit history, and saved reports.
We do not collect sensitive personal data such as financial information, government ID numbers, or health data through our platform.
How We Use Your Data
We use the information we collect to fulfil the following purposes:
| Purpose | Data Used | Legal Basis |
|---|---|---|
| Provide accessibility audit results | Website URL, scan data | Contract performance |
| Create and manage your account | Name, email, password | Contract performance |
| Send audit reports and updates | Email address | Legitimate interest / Consent |
| Send marketing communications | Email, name | Consent (opt-in) |
| Improve our platform | Usage data, analytics | Legitimate interest |
| Respond to enquiries | Name, email, message | Legitimate interest |
| Legal compliance | As required by law | Legal obligation |
We never use your data for automated decision-making or profiling in ways that produce legal or significant effects on you.
Cookies & Tracking
We use cookies and similar tracking technologies to improve your experience on our platform. Cookies are small text files stored in your browser. We use the following types:
- Essential cookies: Required for the platform to function (e.g. login sessions, security tokens). Cannot be disabled.
- Analytics cookies: Help us understand how users interact with our site (e.g. Google Analytics). Anonymised where possible.
- Preference cookies: Remember your settings and preferences to improve your experience.
- Marketing cookies: Used to deliver relevant content and track campaign performance. Only set with your consent.
You can control cookie settings through your browser preferences at any time. Disabling certain cookies may impact platform functionality. Most browsers allow you to refuse or delete cookies.
We may use Google Analytics, Google Tag Manager, and similar third-party analytics tools. These providers have their own privacy policies governing the use of that data.
Data Sharing
We do not sell, rent, or trade your personal data to any third parties. We may share data only in the following limited circumstances:
- Service providers: Trusted vendors who help us operate our platform (e.g. cloud hosting, email delivery, analytics). They are contractually bound to protect your data.
- Business transfers: If Zylyn is involved in a merger, acquisition, or asset sale, your data may be transferred. We will notify you before this occurs.
- Legal requirements: Where required by applicable law, court order, or government authority.
- With your consent: In any other case where you have given explicit permission.
All third-party partners are required to implement appropriate security measures and handle your data in accordance with applicable privacy laws.
Data Retention
We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by law.
- Account data: Retained for the duration of your account plus 12 months after deletion.
- Audit reports: Stored for up to 24 months unless you request earlier deletion.
- Marketing data: Retained until you unsubscribe or withdraw consent.
- Usage & analytics data: Retained for up to 26 months in aggregated, anonymised form.
- Support communications: Retained for up to 3 years for quality and legal purposes.
When data is no longer needed, we securely delete or anonymise it using industry-standard processes.
Security
Protecting your data is a priority. We implement appropriate technical and organisational measures to safeguard your information against unauthorised access, disclosure, alteration, or destruction.
Our security measures include:
- TLS/SSL encryption for all data in transit
- Encrypted storage for sensitive account data and passwords (bcrypt hashing)
- Regular security audits and vulnerability assessments
- Strict access controls — staff access is limited to those who need it
- Monitoring and logging of access to production systems
While we take every reasonable precaution, no method of transmission or electronic storage is 100% secure. If you believe your account has been compromised, please contact us immediately at info@zylyn.co.
Your Rights
Depending on your location, you may have the following rights under applicable privacy laws (including GDPR, CCPA, and others):
To exercise any of these rights, please email us at info@zylyn.co. We will respond within 30 days. You also have the right to lodge a complaint with your local data protection authority.
Children's Privacy
Zylyn's platform is intended for business and professional use and is not directed at children under the age of 16. We do not knowingly collect personal data from anyone under 16 years of age.
If you believe a child has provided us with personal information, please contact us immediately at info@zylyn.co and we will promptly delete that information.
International Data Transfers
Zylyn operates globally and your data may be processed or stored in countries outside your own, including the United States, the European Union, or other jurisdictions where our service providers operate.
When transferring data internationally, we ensure appropriate safeguards are in place, including:
- Standard Contractual Clauses (SCCs) approved by the European Commission
- Data processing agreements with all third-party service providers
- Adequacy decisions where applicable
If you are located in the EU/EEA, UK, or other regulated jurisdictions, we ensure that any international transfers comply with applicable data protection laws.
Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes, we will:
- Update the “Last Updated” date at the top of this document
- Notify registered users via email for significant changes
- Post a notice on zylyn.co where appropriate
We encourage you to review this policy periodically. Your continued use of Zylyn after any changes constitutes your acceptance of the updated policy.
Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please get in touch:
Zylyn — Privacy Contact
Making the digital world accessible to everyone.