ZevCloud ZevCloud
ZevCloud ZevCloud
Get started Sign in
Continue as there
Open dashboard

Legal

Privacy Policy

Last updated

This policy explains what personal data ZevCloud collects, how we use it, and what rights you have over it. We follow the Nigeria Data Protection Regulation (NDPR) as our baseline and apply equivalent standards to customers in other jurisdictions.

1. Who we are

ZevCloud is operated by ZevOP Technologies. Our registered office is in Lagos, Nigeria. The data controller for your ZevCloud account is ZevOP Technologies; for the personal data you deploy onto the platform (your end users, employees, etc.), you are the controller and we are the processor.

2. Data we collect

Account data

Through ZevID we receive your name, email address, profile picture, and login activity. This is the minimum required to give you a working account.

Billing data

Through ZevPay we receive billing addresses, transaction references, and payment status. We do not store your card details — they're held by our payment processors.

Service data

Logs, deployment events, build outputs, performance metrics, error reports. We use these to operate the service and surface them in the dashboard for you.

Customer Content

The code, files, databases, and configuration you deploy. We treat this as confidential and access it only when strictly necessary to operate the service or when required by law.

3. How we use it

  • Provide and maintain the platform you signed up for.
  • Bill correctly and pursue invoices that go unpaid.
  • Investigate abuse, security incidents, and fraud.
  • Communicate platform updates and lifecycle events (deploys, renewals, expiries) — see your notification preferences in the dashboard.
  • Comply with legal obligations.

4. Who we share it with

We share data with subprocessors who help us run the service: Coolify (orchestration), Cloudflare (DNS + edge), Hetzner (compute), Namesilo (domain registration for non-NiRA TLDs), NiRA (Nigerian domain registry), Sentry (error tracking), Axiom (logs), and ZevPay (billing). We bind every subprocessor with a written agreement that requires them to protect your data to at least the same standard as this policy.

5. International transfers

Some of our subprocessors are based outside Nigeria. We rely on standard contractual clauses or equivalent safeguards to protect your data when it's transferred internationally.

6. Retention

We retain account data for as long as your account is active and for a limited period afterwards to satisfy tax and audit obligations (typically 7 years for invoices). We delete Customer Content within 30 days of account termination unless you've asked us to keep it for a defined transition window.

7. Your rights

You can:

  • Access the personal data we hold about you.
  • Correct inaccurate data — most fields are editable in the dashboard.
  • Delete your account and the associated personal data.
  • Export your Customer Content.
  • Object to processing or restrict it where applicable.

Email privacy@zevcloud.net to exercise any of these rights. We respond within 30 days.

8. Security

We encrypt data in transit (TLS 1.2+) and at rest (AES-256 for storage volumes and managed databases). We run least-privilege access controls internally and audit access to Customer Content. No system is perfectly secure — if you discover a vulnerability, please email security@zevcloud.net.

9. Cookies and similar technologies

The marketing site uses minimal cookies — primarily a session cookie for the SSO context lookup and analytics that respects Do-Not-Track. The dashboard uses additional functional cookies required for login and team selection.

10. Changes

We'll email account owners 30 days before material changes to this policy take effect.

Questions? Reach us at legal@zevcloud.net .