Compliance Centre
Compliance Documentation
All security policies, privacy documents, and legal agreements — version-controlled and audit-ready. Share with enterprise clients, regulators, or your legal team on demand.
10
Policy Documents
7
Regulations Covered
24 hrs
Breach Notify SLA
99.9%
Uptime SLA
Document Library
All documents version-controlled · Annual review cycle
Information Security Policy
v1.0 · 4 pages · 2026-04-30
Our overarching security framework.
Access Control Policy
v1.0 · 4 pages · 2026-04-30
Principle of least privilege — how access is granted and revoked.
Incident Response Plan
v1.0 · 5 pages · 2026-04-30
24hr tenant notification. 72hr GDPR authority notification.
Change Management Policy
v1.0 · 3 pages · 2026-04-30
How code changes are reviewed, tested, and deployed.
Data Retention Policy
v1.0 · 4 pages · 2026-04-30
Storage tiering, 90-day cancellation window, RCIC 6-year compliance.
Privacy Policy
v1.0 · 4 pages · 2026-04-30
GDPR, NZ Privacy Act, India DPDP — all data subject rights.
Sub-Processor List
v1.0 · 2 pages · 2026-04-30
MongoDB, Render, Vercel, Cloudflare, Zoho — with signed DPAs.
DPA Template
v1.0 · 5 pages · 2026-04-30
For tenants to use with their own clients.
Business Continuity Plan
v1.0 · 4 pages · 2026-04-30
RTO/RPO targets, failure scenarios, monthly backup verification.
Password Policy
v1.0 · 3 pages · 2026-04-30
12-char minimum, complexity, 90-day expiry, bcrypt enforcement.
Need a signed DPA or custom compliance document?
Enterprise tenants on the Enterprise plan receive a Zoho Sign DPA automatically on upgrade.