Legal

Privacy Policy

Enforza Privacy Policy
Last Updated: May 2025

Enforza ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy outlines how we collect, use, and safeguard your personal information when you use our cloud-based firewall and networking services, including our management portal and APIs. By using our platform, you consent to the terms of this Privacy Policy.

1. Overview

We care about privacy. We do not sell your personal data. We only use your information to provide and improve the Enforza service.

We never sell your data or use your contact details for purposes unrelated to Enforza operations or support.

2. What We Collect

We collect information when you:

  • Create an Enforza account (name, email, password, and optional company details)
  • Manage devices and configure firewall or NAT gateway rules
  • Deploy agents or interact with our APIs and web interfaces
  • Send support queries or provide feedback
  • Access the Enforza portal, CLI, or agent tools
  • Opt in via Single Sign-On (e.g., Google, Microsoft)

We may also collect:

  • IP addresses, login timestamps, and session metadata
  • Device identifiers, hostname, OS version, cloud provider metadata
  • Network activity data (e.g., policy application, firewall event logs, NAT flow metadata)
  • Telemetry and usage metrics for performance tuning
  • Cookies, device settings, language preferences, and browser fingerprints

If you manage multiple users or sub-accounts, we may store:

  • User role, email, IP address, access logs, and permission settings

3. How We Use Your Data

We use your data to:

  • Deliver, operate, and secure the Enforza platform
  • Manage authentication, access control, and session persistence
  • Process support requests and customer communications
  • Send account-related alerts and system status updates
  • Perform analytics to improve performance and usability
  • Detect abuse, unauthorized access, and fraud attempts
  • Monitor rule enforcement, policy usage, and system health

We may also process data to:

  • Meet regulatory and compliance obligations
  • Perform logging and auditing of security-critical actions
  • Analyze product usage and service effectiveness
  • Onboard new customers and guide administrators

4. Sharing Your Data

We do not sell your personal information. We may share it only in the following circumstances:

  • With trusted third-party service providers (e.g., billing, authentication, analytics)
  • With infrastructure providers for secure cloud hosting and database storage
  • With regulatory or legal authorities if required by law
  • With professional advisors (e.g., auditors, legal counsel)
  • Within Synvu Limited and affiliated service teams to operate the platform
  • When explicitly authorized by you, such as during integrations or role delegation

5. Cookies and Device Data

We use cookies and session data to:

  • Maintain logged-in sessions and secure access
  • Track usage patterns and feature engagement
  • Support diagnostics, telemetry, and bug tracking
  • Identify returning users and apply preferences

We may also use tools like Microsoft Clarity to anonymously record user interactions for UI optimization and debugging. This includes mouse activity, page scrolls, and screen resolution.

You may disable cookies in your browser, but some functionality may be limited.

6. Storage and Retention

We retain your data as long as necessary to:

  • Provide and support our services
  • Enforce our agreements and fulfill legal obligations
  • Conduct security audits and maintain platform integrity

We may retain:

  • Audit logs, firewall rule changes, and access attempts for up to 3 years
  • Billing and transaction records as required by law
  • Anonymized usage metrics indefinitely for analytics

When no longer needed, personal data is securely deleted or anonymized.

7. Security Measures

We employ modern security practices including:

  • TLS encryption for all data in transit
  • Encryption at rest using industry standards
  • Role-based access controls and least privilege
  • Multi-factor authentication (MFA)
  • Continuous monitoring and anomaly detection

However, no system is immune to all threats. We take reasonable steps to protect your data but cannot guarantee absolute security.

8. Children’s Privacy

Enforza is not intended for children under 13. We do not knowingly collect information from minors. If you believe a child has submitted personal information, please contact us immediately.

9. Your Rights and Choices

Depending on your region, you may have rights to:

  • Access or correct your personal data
  • Request deletion of your data
  • Restrict or object to certain processing activities
  • Export your data in a structured format

To exercise any of these rights, contact us at contact@enforza.io.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Significant changes will be announced via our website or portal notifications. Your continued use of Enforza after such updates constitutes your agreement to the revised policy.

11. Legal Disclaimers

  • Enforza is provided "as is" without warranties of any kind.
  • We are not liable for any damages resulting from the use or misuse of the platform.
  • We do not guarantee uninterrupted or error-free service.
  • External integrations and linked services are governed by their own policies.
  • You are responsible for ensuring your use of Enforza complies with applicable laws and industry regulations.

12. Contact Information

If you have questions or concerns about this policy, contact us at contact@enforza.io.

"We improve our product and website by using Microsoft Clarity to see how users interact. By using Enforza, you agree to this analysis."

Enforza is a product and trading name of Synvu Limited, a company registered in the UK (Company No. 15761962), with its registered office at 71–75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom.