Privacy Policy

Last updated: 2026. ports.io is operated by Zentrum Cargo Works Pvt Ltd ("we", "us"). This policy explains what we collect, why, and how we protect it.

1. What we collect

Account data (name, work email, role), tenant configuration, audit and access logs, and — for operator deployments — biometric embeddings (512-d vectors) derived from consented enrolment images. We do not store raw face crops at rest.

2. Why we process it

To deliver the contracted port-operations service: identity verification, gate access, compliance evidence, and tenant-scoped analytics. Processing is performed under the instructions of the customer (data controller).

3. Retention

Retention windows are configurable per tenant and per data class. Defaults follow customer policy and applicable port-authority regulation. Embeddings and audit logs are deleted on tenant offboarding unless legally required to retain.

4. Security

Encryption in transit (TLS 1.2+) and at rest. Per-tenant isolation. Role-based access, audit trail on every read of identity data. See the Security page for the full posture.

5. Your rights

Access, correction, erasure and objection requests should be raised with the operating customer (data controller). For ports.io platform-level requests, contact privacy@ports.io.

6. Contact

Zentrum Cargo Works Pvt Ltd · privacy@ports.io