Privacy Policy

1. Information We Collect

We may collect personal and non-personal information in several ways, including:

1.1 Personal Information

When you use our services, request information, or contact us, we may collect personal information such as:

• Name
• Email address
• Phone number
• Job title and company information
• Billing and payment details (when applicable)
• Information you provide during consultations or inquiries

1.2 Non-Personal Information

We may automatically collect non-personal information when you interact with our website, including:

• Browser type and version
• Device information
• IP address
• Geographical location
• Pages visited and time spent on the website
• Cookies and tracking technologies

2. How We Use Your Information

We use the information we collect for various purposes, including:

• Providing Services: To deliver and manage our cybersecurity, advisory, assessment, education, Virtual CTO, Virtual CISO, and AI advisory services.
• Improving User Experience: To understand how you use our website and services, allowing us to enhance your user experience.
• Communications: To respond to inquiries, provide information, and send service-related communications.
• Marketing: To send you promotional materials, newsletters, and other information about our services if you have opted in to receive such communications.
• Compliance: To comply with legal obligations, protect our rights, and enforce our policies.
• Payment Processing: To manage billing, payments, and transactions related to our services.

Legal Basis for Processing (GDPR)

We process your personal information based on the following legal grounds:

• Consent: When you have given us explicit consent to use your personal information.
• Contract: When processing is necessary for the performance of a contract with you.
• Legal Obligation: When we are legally required to process your information.
• Legitimate Interest: When processing is necessary for our legitimate interests, such as improving our services, provided that this interest is not overridden by your rights and interests.

3. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect information about your interactions with our website. This helps us analyze website traffic, improve our website, and enhance your experience. You can control cookie settings through your browser preferences. Please note that disabling cookies may affect the functionality of our website.

4. Disclosure of Your Information

We do not sell, trade, or rent your personal information to third parties. We may share your information under the following circumstances:

• Service Providers: We may share information with third-party service providers who assist us in operating our business, such as payment processors, marketing platforms, and IT service providers.
• Legal Requirements: We may disclose your information if required by law, regulation, or legal process, or to protect our rights, property, or the safety of our users and the public.
• Business Transfers: In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred to the acquiring party.

5. Your Rights

5.1 GDPR Data Subject Rights

If you are located in the European Economic Area (EEA), you have the following rights regarding your personal information:

• Access, Correction, and Deletion of your data
• Restriction and Objection to data processing
• Data portability and withdrawal of consent

5.2 CCPA Consumer Rights

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA):

• Right to Know, Right to Delete, and Right to Opt-Out
• Right to Non-Discrimination for exercising CCPA rights

To exercise any of these rights, please contact us using the information provided in the "Contact Us" section.

6. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

When we no longer need your personal information, we will securely delete or anonymize it. The retention period depends on the type of information and the purpose for which it was collected.

7. Data Security

We implement appropriate technical and organizational security measures to protect your personal information from unauthorized access, disclosure, alteration, or destruction. These measures include:

• Encryption of data in transit and at rest
• Regular security assessments and audits
• Access controls and authentication mechanisms
• Employee training on data protection and security
• Incident response procedures

While we strive to protect your personal information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security but are committed to protecting your data to the best of our ability.

8. International Data Transfers

Your personal information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your jurisdiction.

When we transfer your personal information internationally, we ensure appropriate safeguards are in place to protect your data in accordance with this Privacy Policy and applicable data protection laws, including the use of standard contractual clauses approved by the European Commission where applicable.

9. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children under 18 years of age.

If we become aware that we have inadvertently collected personal information from a child under 18, we will take steps to delete such information as soon as possible. If you believe we have collected information from a child under 18, please contact us immediately.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes, we will update the "Last Updated" date at the top of this policy.

We encourage you to review this Privacy Policy periodically. If we make material changes, we may provide additional notice, such as by email or through a prominent notice on our website.

Your continued use of our services after any changes to this Privacy Policy constitutes your acceptance of the updated policy.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

For privacy-specific inquiries or to exercise your data protection rights, please include "Privacy Request" in the subject line of your email.