Zero-Knowledge Policy

Privacy by Design

Overview

Yama Industrials, Inc. was founded in 2014 on the principles of privacy-by-design and zero-knowledge frameworks. We do not retain copies of client data, do not collect or store client passwords and login credentials, and do not maintain permanent remote support connections on client systems.

What We Do NOT Retain or Maintain

Client Passwords and Login Credentials

We do not retain, store, or keep client passwords, usernames, authentication credentials, or access tokens. We do not maintain permanent credentials that would allow ongoing access to client systems.

Client Data Storage

We do not store, host, or retain copies of client data on our servers or off-site infrastructure. Client data remains the responsibility and property of the client.

Permanent Remote Support Connections

We do not maintain standing remote support access, persistent remote tools, or permanent connections to client systems. Remote support is provided on an as-needed, temporary basis during active service engagements only.

Data Access During Service Delivery

During the course of providing IT services, cybersecurity consulting, device migrations, system support, and technical work, our technicians may temporarily access:

  • Client systems and devices

  • Files and data stored on client equipment

  • Personally Identifiable Information (PII) of client employees or customers

  • For healthcare clients: Protected Health Information (PHI) under HIPAA Business Associate Agreements

All such access is:

  • Limited to the duration of the active service engagement

  • Governed by our contractual agreements and security obligations

  • Subject to strict confidentiality and data protection requirements

For healthcare clients, all PHI access is governed by Business Associate Agreements and subject to the terms specified in those agreements. See our HIPAA Business Associate Notice for information about our role as a Business Associate.

Third-Party Service Providers

Yama Industrials, Inc. utilizes third-party service providers for operational infrastructure and business functions. These services support our operations and are not used to store, retain, or monitor client data or credentials.

Please refer to our Privacy Policy and other compliance documentation for information regarding third-party data handling and processing.

Changes to Our Service Providers

As our business infrastructure needs evolve, we may add or discontinue service providers. We will update this page periodically to reflect changes.

Questions About This Policy

For questions or clarifications regarding our Zero-Knowledge Policy, please contact Yama Industrials, Inc. directly at [email protected]

PreviousPrivacy PolicyNextCCPA

Last updated