Security & FAQ Enterprise Security with Browser Simplicity

Your Data, Your Control

3

Scroll Down

ZHERO processes everything locally in your browser. Your Zscaler configuration never leaves your environment, and we never store your sensitive data.

Local Processing Only

Everything Happens in Your Browser

 

ZHERO is a Edge/Chrome extension that operates entirely within your browser environment:
  • No Backend Servers: We don’t have servers processing your configuration
  • No Data Storage: Your policies and settings are never saved on our systems
  • No Cloud Processing: All analysis happens locally on your machine
  • No External API Calls: Only communicates with your Zscaler tenant directly
  • Browser Sandbox: Chrome’s security model isolates the extension

Data Transmission Policy

What We NEVER Transmit
 
ZHERO NEVER sends to our servers:
  • Configuration data
  • Policy details
  • URL lists or categories
  • User information
  • IP addresses or locations
  • Traffic data or logs
  • Security settings
  • Any Zscaler configuration content

Data Transmission Policy

What We DO Transmit

 

The ONLY data sent to ZHERO servers for license validation:
  • Customer name
  • Cloud name (e.g., “zscaler.net”)
  • Primari domain (e.g., “acme.org”)
  • User count (for license sizing)
  • License expiration date
  • Administrator name and email 
This minimal data is transmitted:
  • Over HTTPS encrypted connection
  • Only during license checks (on page load)
  • Stored securely with encryption at rest
  • Never shared with third parties
  • Deletable upon request (GDPR compliant)

Third-Party Services We Use

ZHERO utilizes a minimal set of well known third-party services to ensure reliability and maintain quality:

  • LaunchDarkly: Used for feature flag management and controlled rollouts. Receives only limited context: administrator email and customer name for user segmentation. No configuration data is ever transmitted.
  • Sentry.io: Collects error logs and crash reports to help us improve ZHERO’s stability. Error reports contain stack traces and browser information but explicitly exclude any sensitive Zscaler configuration data which is [REDACTED].
These services receive only the minimal information necessary for their function. All sensitive configuration data remains excluded from any error reports or service communications.

Future Features with Optional Server Communication

As ZHERO evolves, certain upcoming features such as team collaboration tools and Agentic AI chat capabilities may involve communication with our servers to enable their functionality. However, these features will always be:
  • Opt-in by default: You must explicitly enable them
  • Completely blockable: Can be disabled at any time
  • Transparently documented: Clear disclosure of any data transmission
  • Privacy-preserving: Minimal data sharing 
Each new feature requiring server communication will be clearly marked, and you’ll maintain complete control over your data privacy preferences.
Want an Independent Verification? You’re in Control.
We believe in complete transparency. As a Chrome extension, ZHERO’s network activity can be fully audited using browser developer tools, allowing you to independently verify our zero-transmission promise.

Trust, but verify:
  • Monitor all network requests made by ZHERO
  • Inspect request payloads and responses in real-time
  • Confirm that your Zscaler configuration stays local
  • Validate that only minimal license data is transmitted
Ready to see for yourself?

Our security team will personally walk you through the verification process, showing you exactly how to audit ZHERO’s network activity and confirm our security claims.
Book an Appointment

Frequently Asked Questions

Questions

Security & Privacy

Technical Implementation

Licensing & Data

Enterprise Concerns

Ready to Transform Your Zscaler Experience?

Talk to Our Team!

Schedule a Call
Install FREE Version