Regulatory and Compliance

At ZenBeli, we prioritize the security, privacy, and well-being of our users and partners. Our platform, including the ZenBeli App, is designed to comply with international standards and regulations to ensure a safe, reliable, and transparent experience for all stakeholders.

Compliance Standards

We adhere to a comprehensive set of compliance frameworks to safeguard user data and maintain operational integrity:

  1. HIPAA Compliance

    • Our platform protects the confidentiality and security of health-related data.

    • We implement rigorous administrative, physical, and technical safeguards to prevent unauthorized access.

  2. GDPR Compliance

    • Users have full control over their data with the ability to manage, delete, or request access to personal information.

    • Transparent consent mechanisms ensure compliance with privacy regulations in the European Union.

  3. PCI DSS Compliance

    • Secure payment processing is managed through our PCI-certified payment partner.

    • All transactions on the ZenBeli App and platform are encrypted to the highest standards.

  4. CCPA Compliance

    • For California residents, we honor requests for data access and deletion in accordance with the California Consumer Privacy Act.

Data Security Measures

The ZenBeli platform employs cutting-edge security protocols to protect user data:

  • Encryption: Data at rest is encrypted using AES-256, while data in transit is secured with TLS 1.3.

  • Role-Based Access Control (RBAC): Ensures only authorized personnel access sensitive data.

  • Regular Audits: We conduct periodic security assessments to identify and mitigate risks.

  • Secure Infrastructure: Hosted on AWS with advanced security features, including GuardDuty and CloudTrail for real-time monitoring and audit logging.

Regulatory Oversight

Our operations and practices are aligned with the following regulatory bodies and standards:

  • Health and Wellness Compliance:
    We work closely with certified health professionals to ensure our dietary assessments and recommendations adhere to established guidelines.

    • Integration with regulatory-approved dietary frameworks.

    • Transparent labeling and allergen disclosures.

  • AI Governance:
    ZenBeli's AI models, including those powering the ZenBeli App, are developed with ethical AI principles.

    • Transparent decision-making processes.

    • Regular audits for algorithmic bias and fairness.

  • Food Safety and Partner Certifications:

    • Partner kitchens must comply with ZenBeli standards, which include all Federal, State and local standards for food safety and cross-contamination protocols, all of which are required for operators to receive local operating licenses.

    • ZenBeli widgets and app integrations highlight these certifications for consumer confidence.

ZenBeli App Compliance

The ZenBeli App is designed to offer users a safe and compliant experience across all touchpoints:

  • Symptom Assessments: Ensures user data is stored securely and shared only with consent.

  • Personalized Food Plans: Recommendations are generated using anonymized and securely processed data.

  • Marketplace Transactions: Transactions within the app comply with PCI DSS standards for secure payments.

  • Community Engagement: User interactions within the app are moderated to ensure adherence to privacy and anti-discrimination policies.

Commitment to Transparency

ZenBeli remains committed to maintaining an open dialogue with our users and partners. We provide clear information on how data is collected, used, and protected across our platform and app. Our Privacy Policy and Terms of Service are designed to reflect this commitment.

For inquiries or to report concerns, please contact us at compliance@zenbeli.com.

This compliance framework is updated regularly to incorporate new standards and best practices as ZenBeli evolves to serve our community better.