Privacy Notice.

Effective: 24 May 2026. This Privacy Notice may be updated by VB Group at any time at its sole discretion.

1. Controller and scope

VB Group (the "Company", "we", "us", "our") is the data fiduciary for thezentry.com (the "Site"), all Zentry-branded products and services, and all communications channels operated by VB Group including email (connect@groupvb.com), live chat, WhatsApp, and any forms hosted on or linked from the Site. By accessing the Site or any VB Group channel, you accept this Privacy Notice in full. If you do not accept, you must immediately cease using the Site.

2. Information we may collect

We may collect any of the following at our discretion and to the maximum extent permitted by applicable law: identifiers (name, email address, phone number, organisation, job title), business context (plant size, sector, audit cycle information, current vendor stack, deployment intent, budget signals), technical data (IP address, device identifiers, browser type, operating system, referring URL, session duration, page interactions), communication content (any message you submit through a form, send by email, share via WhatsApp or speak during a recorded call where consent has been captured), and inferred data (lead scoring outputs, segment assignments, propensity scores derived from your interactions with the Company). We may combine information collected through any channel with information obtained from third-party enrichment providers, publicly available sources, and our customer relationship management systems.

3. How we use your information

We use your information for any lawful purpose, including without limitation: responding to your enquiry; qualifying you or your organisation as a prospective customer; executing and administering contracts; delivering Zentry products and services; operating, securing, improving and developing our products; analytics, lead scoring, segmentation and pricing optimisation; direct marketing communications (subject to your opt-out rights under applicable law); ensuring compliance with our legal obligations; enforcing our Terms of Use; protecting our rights, property, employees, agents, customers and the public; and any other purpose disclosed to you at the point of collection or otherwise permitted by law. We rely on lawful bases including your consent (where required), the performance of a contract, our legitimate interests in running and growing our business, and our legal obligations.

4. Aggregated and anonymised data

We may aggregate and anonymise any data you provide such that it can no longer reasonably be associated with you, and we may use that aggregated and anonymised data for any purpose without restriction and in perpetuity, including without limitation publishing benchmarks, training models, improving our products, sharing with partners, and incorporating it into marketing materials. Aggregated and anonymised data is not personal data under this Notice or under applicable law and is owned by VB Group exclusively.

5. Sharing your information

We may share your information with: VB Group affiliates and sibling brands (including Forgecore and Wistwin); service providers, vendors, contractors and processors engaged by us for hosting, analytics, communications, payments, identity verification, fraud prevention and similar functions, each bound to confidentiality obligations consistent with this Notice; professional advisers (lawyers, accountants, auditors, consultants); prospective or actual acquirers in connection with any merger, acquisition, restructuring, financing or sale of all or part of VB Group's business or assets; law enforcement, regulators, courts and government bodies where we determine in our sole discretion that disclosure is necessary or appropriate to comply with applicable law, respond to lawful requests, protect our rights or the rights of others, or address security or fraud concerns; and any other recipient with your consent where consent is required by law. We do not sell personal data in exchange for monetary consideration.

6. International transfers

Personal data is primarily stored in India. Where the operation of the Company requires data to be processed outside India (including by our service providers or affiliates), we will undertake such transfers in accordance with applicable law. By providing your data, you consent to such transfers and to the processing of your data in any jurisdiction where the Company or its processors operate.

7. Retention

We retain personal data for as long as we determine, in our sole discretion, is necessary to fulfil the purposes set out in this Notice, to comply with our legal, regulatory, accounting or reporting obligations, to resolve disputes, to enforce our agreements, or to maintain business records. Retention periods may extend beyond your relationship with us where there is a legitimate business or legal reason to retain the data.

8. Your statutory rights

You have such rights as are conferred on you by applicable Indian law, including the Digital Personal Data Protection Act, 2023, and not more. These rights are subject to the exemptions and conditions set out in the applicable statute. We will respond to verified rights requests within the timelines set by law. To submit a rights request, write to connect@groupvb.com with the subject line "Privacy rights request" and the verifying information we require to authenticate your identity and the request. We reserve the right to decline requests that are manifestly unfounded, repetitive or excessive, or that we determine in our sole discretion to be inconsistent with applicable exemptions.

9. Security

We implement reasonable technical and organisational measures designed to protect personal data against unauthorised access, alteration, disclosure or destruction. No system is impenetrable; we do not warrant absolute security and disclaim liability for any unauthorised access, loss or alteration of data to the maximum extent permitted by law.

10. Third-party sites and integrations

The Site and our products may contain links to third-party websites, services and hardware ecosystems. We do not control and are not responsible for third parties' privacy practices. Your interactions with third parties are governed by their respective policies.

11. Children

The Site is intended for business users aged 18 and above. We do not knowingly process personal data of individuals below 18. If you believe a minor has provided data, contact us so we can take appropriate action.

12. Changes

VB Group may update this Notice at any time at its sole discretion. The current version is the version posted at this URL. Your continued use of the Site after a change constitutes your acceptance of the updated Notice. We are not required to notify you of changes; you are responsible for reviewing this Notice periodically.

13. Data Protection Officer and contact

For privacy-related communications, including statutory rights requests, write to VB Group's appointed Data Protection Officer at connect@groupvb.com. By contacting us you agree that any information you provide is subject to this Notice.