Exercise your privacy rights under the NJDPA, CCPA/CPRA, GDPR, and other applicable data protection laws.
Depending on your jurisdiction, you may have the following rights regarding your personal information processed by Zone OS CRM:
Request a copy of the personal data we hold about you.
Request correction of inaccurate or incomplete personal data.
Request deletion of your personal data, subject to legal retention requirements.
Receive your data in a structured, machine-readable format.
Opt out of the sale of personal data, targeted advertising, and profiling.
Request restriction of processing in certain circumstances.
Zone OS CRM acts as a Data Processor. If you are a customer or employee of a business that uses Zone OS CRM, your data is controlled by that business (the Data Controller). You should direct your request to the business that collected your data first. If they are unable to assist, you may submit a request to us and we will coordinate with the applicable Data Controller.
Use the secure form below to submit your request directly to our compliance team. We will verify your identity before processing any data.
To protect your privacy and prevent unauthorized access to personal data, all requests are subject to identity verification. Our verification process follows the requirements of the ESIGN Act and applicable state privacy laws:
We verify your identity using a minimum of three (3) data points β for example: email address, name on account, and employer identification or last 4 digits of SSN (for payroll-related requests).
For high-sensitivity requests (deletion, payroll data access), we will send a one-time verification code to the email or phone number on file. This code expires after 15 minutes.
For requests involving sensitive data (SSN, payroll records, tax documents), you will be asked to provide a declaration under penalty of perjury confirming your identity, in compliance with CCPA verification requirements.
Verified requests are fulfilled within the applicable legal timeframe. Requests that cannot be verified will be denied with written explanation and instructions for appeal.
If your request is denied, you have the right to appeal. Appeals should be submitted to privacy@zone-os.co with the subject line "DSAR Appeal". We will respond to appeals within 45 calendar days.
If you are not satisfied with the outcome of your appeal, you may file a complaint with the appropriate regulatory authority:
For all data rights requests and privacy inquiries: