Privacy policy

1. Introduction

We are committed to protecting your privacy and handling your data in an open and transparent manner. As a cybersecurity company, we understand the importance of security and the trust you place in us.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our services, or interact with us in any other way. Please read this policy carefully. If you do not agree with the terms of this privacy policy, please do not access our site or use our services.

We reserve the right to make changes to this Privacy Policy at any time and for any reason. We will alert you about any changes by updating the "Last Updated" date of this Privacy Policy.

2. Information We Collect

We may collect information about you in a variety of ways. The information we may collect includes:

Personal Data

This is personally identifiable information that you voluntarily provide to us when you register for our services, fill out a contact form, request support, or otherwise contact us.

  • Full Name

  • Email Address

  • Phone Number

  • Company Name & Job Title

  • Billing and Payment Information

Usage and Device Data

Information our servers automatically collect when you access our website or services, such as your IP address, browser type, operating system, access times, and the pages you have viewed directly before and after accessing the site. If you use our services, we may also collect device information (such as device ID, model, and manufacturer) and location information.

Client Data

As part of our cybersecurity services, we may process data owned by our clients. This can include log files, network traffic data, and other security-related information necessary for threat detection, analysis, and response. This data is processed strictly on behalf of our clients according to our contractual agreements. We act as a "data processor" for this information, while our client is the "data controller."

Cookies

We use cookies and similar technologies to enhance your browsing experience, performance, security, analytics, advertising, and customization. These cookies are optional, and can be customized with the provided cookie banner upon visiting our website. Opting into these cookies allows us to collect data, and we treat this data with the same security requirements set forth in this privacy policy.

3. How We Use Your Information

Having accurate information permits us to provide you with a smooth, efficient, and customized experience. Specifically, we may use information collected about you to:

  • Provide, operate, and maintain our services. This includes monitoring for security threats, providing analysis, and generating reports for our clients.

  • Improve, personalize, and expand our services.

  • Process transactions and manage your account.

  • Respond to your comments, questions, and requests, and provide customer service and support.

  • Send you technical notices, updates, security alerts, and administrative messages.

  • Communicate with you about products, services, offers, and events offered by [Your Company Name] and others. You may opt out of receiving these communications at any time.

  • Monitor and analyze trends, usage, and activities in connection with our services to improve them.

  • Comply with legal and regulatory obligations.

4. How We Share Your Information

We do not sell your personal information. We may share information we have collected about you in certain situations:

  • With Your Consent: We may share your information with third parties when you have given us your express consent to do so.

  • By Law or to Protect Rights: If we believe the release of information about you is necessary to respond to legal process, to investigate or remedy potential violations of our policies, or to protect the rights, property, and safety of others, we may share your information as permitted or required by any applicable law, rule, or regulation.

  • Third-Party Service Providers: We may share your information with third parties that perform services for us or on our behalf, including payment processing, data analysis, email delivery, hosting services, and customer service.

    • We engage carefully selected third-party partners and service providers who process personal data on our behalf in compliance with GDPR. From time to time, we appoint digital marketing agencies to conduct outreach and marketing activities on our behalf. As part of these activities, personal data may be processed in accordance with applicable data protection laws. Our appointed data processors include:

      • (i)Prospect Global Ltd (trading as Sopro) Reg. UK Co. 09648733. You can contact Sopro and view their privacy policy here: http://sopro.io. Sopro is registered with the ICO Reg: ZA346877. Their Data Protection Officer can be emailed at: dpo@sopro.io

  • Business Transfers: We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.

  • Aggregated or Anonymized Data: We may share aggregated or anonymized information, which cannot reasonably be used to identify you, for various business purposes, including threat intelligence reports.

5. Data Security

We use administrative, technical, and physical security measures to help protect your personal information. These measures include:

  • Encryption: Data is encrypted both in transit (using TLS) and at rest.

  • Access Control: We implement strict access control measures to ensure that only authorized personnel have access to your information.

  • Regular Security Assessments: We conduct regular vulnerability scanning and penetration testing to identify and address potential security risks.

  • Incident Response Plan: We have a formal incident response plan in place to promptly address any potential data breaches.

While we have taken reasonable steps to secure the personal information you provide to us, please be aware that despite our efforts, no security measures are perfect or impenetrable, and no method of data transmission can be guaranteed against any interception or other type of misuse.

6. Your Data Protection Rights

Depending on your location, you may have the following rights regarding your personal data:

  • The right to access: You have the right to request copies of your personal data.

  • The right to rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.

  • The right to erasure: You have the right to request that we erase your personal data, under certain conditions.

  • The right to restrict processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.

  • The right to object to processing: You have the right to object to our processing of your personal data, under certain conditions.

  • The right to data portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.

To exercise any of these rights, please contact us at privacy@longswordsecurity.com.

For Residents of California (CCPA Rights)

If you are a California resident, you have specific rights regarding your personal information, including the right to know what personal information we have collected about you and the right to request its deletion. We do not "sell" personal information as defined by the CCPA. You have the right to not be discriminated against for exercising your CCPA rights.

For Residents of the EEA, UK, and Switzerland (GDPR Rights)

If you are a resident of the European Economic Area, United Kingdom, or Switzerland, you have the right to lodge a complaint with a supervisory authority.

7. Children's Privacy

Our services are not directed to individuals under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that a child under 13 has provided us with personal information, we will take steps to delete such information.

8. International Data Transfers

Your information may be transferred to — and maintained on — computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy.