zung.ai operates in 180+ countries and maintains compliance with the primary financial data protection and privacy regulations in each jurisdiction. Key frameworks include:

GDPR (EU/UK): Full Article 28 DPA available; Data Protection Officer appointed; Standard Contractual Clauses for transfers
Nigeria NDPR: NITDA-compliant data processing; in-country AWS Lagos hosting available
South Africa POPIA: Information Officer appointed; POPIA-compliant processing records maintained
Kenya DPA 2019: ODPC registered; in-country hosting available
India DPDP Act: Data fiduciary registered; AWS Mumbai hosting available
CCPA (California): Opt-out rights honoured; no data sale; consumer rights workflows active

Security Certifications

SOC 2 Type II: Annual third-party audit — Security, Availability, Confidentiality, and Processing Integrity globally
ISO 27001 Aligned: Information Security Management System aligned to ISO 27001:2022
PCI DSS: Level 1 compliant for card data environments
Penetration Testing: Quarterly third-party penetration testing with reports available under NDA

📄 Security certifications and audit reports are available to qualified institutions under NDA. Contact security@zung.ai globally.

Contact the Legal Team

Privacy & DPO

privacy@zung.ai

GDPR, NDPR, data rights

Legal Counsel

legal@zung.ai

Contracts, terms, compliance

Security Team

security@zung.ai

Certs, audits, incidents