To protect the privacy of its customers and the safety of their information, ZAP maintains high standards of data security. ZAP relies upon state-of-the-art secure technology, data centers; enforces strict internal product controls, and regularly audits its policies and procedures. ZAP addresses security at three independent layers:
Here we set out the policies and benefits accrued at each layer in order to ensure the ZAP Cloud platform provides enterprise-level security.
ZAP provides both single-tenanted and multi-tenanted hosting plans to suit a range of customer needs: Single-tenanted:
Multi-tenanted:
ZAP recognizes that even with best intentions and best-practice policies and procedures in place, vulnerabilities can still occur. In the event that your team discovers a vulnerability please contact ZAP HelpDesk; our support team may then provide a secure channel on which to discuss the details.
Security-related announcements including bug fixes and known vulnerabilities can be found on the ZAP HelpDesk website. Please note: this bulletin provides general bug fix and vulnerability information. Where a breach is known to have occurred ZAP will seek to contact the affected customers directly. Please ensure contacts details are up to date.
Definitions for terms of this document can be found in EXHIBIT A of the ZAP Cloud Subscription Agreement; or for Azure-related terms may be found on the Azure Trust Centre website.