Skip to content

Privacy Policy

Last updated: January 1, 2025

Our Commitment

At CyberShield, we understand that privacy and security are fundamental to trust. This policy explains how we handle your data with the same rigor we apply to protecting your organization from cyber threats.

1. Information We Collect

Account Information

When you create an account, we collect:

  • Name and email address
  • Company name and size
  • Job title and department
  • Phone number (optional)
  • Billing information

Security Data

To provide our services, we process:

  • Network traffic metadata
  • Endpoint telemetry
  • Security event logs
  • Threat indicators
  • User activity patterns (anonymized)

Usage Data

We automatically collect:

  • Browser type and version
  • Device information
  • IP address
  • Pages visited and features used
  • Time and date of access

2. How We Use Your Information

We use collected information to:

  • Provide and improve our security services
  • Detect and respond to security threats
  • Generate threat intelligence reports
  • Communicate about your account and services
  • Process payments and billing
  • Comply with legal obligations
  • Conduct security research (with anonymized data)

3. Data Security

We implement industry-leading security measures:

Encryption

AES-256 encryption at rest, TLS 1.3 in transit

Access Control

Role-based access with MFA enforcement

Monitoring

24/7 SOC surveillance of all systems

Audits

Annual third-party penetration testing

4. Data Sharing

We may share data with:

  • Service providers: Cloud infrastructure, payment processors, support tools
  • Threat intelligence partners: Anonymized indicators only
  • Legal authorities: When required by law or to protect rights
  • Business transfers: In case of merger or acquisition

We never sell your personal information to third parties.

5. Data Retention

We retain data according to these guidelines:

  • Account data: Duration of account plus 30 days
  • Security logs: 90 days (configurable up to 1 year)
  • Threat intelligence: Indefinitely (anonymized)
  • Billing records: 7 years (legal requirement)

6. Your Rights

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request data deletion
  • Export your data (portability)
  • Opt out of marketing communications
  • Lodge a complaint with supervisory authorities

To exercise these rights, contact privacy@cybershield.com

7. International Transfers

We process data in the United States and other countries. For transfers from the EEA, UK, or Switzerland, we use Standard Contractual Clauses approved by the European Commission. We are also certified under the EU-U.S. Data Privacy Framework.

8. Cookies

We use cookies for:

  • Essential: Authentication, security, preferences
  • Analytics: Understanding usage patterns
  • Marketing: Relevant advertising (with consent)

Manage cookie preferences in your browser settings or through our cookie banner.

9. Children's Privacy

Our services are not intended for individuals under 18. We do not knowingly collect data from children. If we discover such data, we will delete it promptly.

10. Changes to This Policy

We may update this policy periodically. We will notify you of material changes via email or dashboard notification at least 30 days before they take effect.

Contact Us

For privacy questions or concerns:

Email: privacy@cybershield.com

Data Protection Officer: dpo@cybershield.com

Address: CyberShield Inc., 100 Security Way, San Francisco, CA 94105