Legal

Privacy Policy

How we collect, use, and protect your personal information — written to be read, not just filed away.

Last updated: June 1, 2026. Effective date: June 1, 2026.

S-Security, Inc. ("S-Security," "we," "us," or "our") respects your privacy. This Privacy Policy explains what personal information we collect, why we collect it, how we use and share it, and the choices and rights you have. It applies to our website, products, and services (collectively, the "Services"). By using the Services, you agree to this Policy.

1. Information we collect

We collect information in three ways: information you provide, information collected automatically, and information from third parties.

  • Information you provide: name, business email, phone number, company, job title, billing details, and any content you submit through forms, support tickets, or demos.
  • Information collected automatically: IP address, device and browser type, pages viewed, referring URLs, and similar usage data gathered through cookies and similar technologies.
  • Security telemetry: when you use our protection services, we process logs, events, and metadata from your environment strictly to deliver detection and response. This data is governed by your customer agreement and our Data Processing Addendum.
  • Information from third parties: data from partners, resellers, and publicly available sources used to verify accounts and prevent fraud.

2. How we use information

We use personal information to:

  • Provide, operate, secure, and improve the Services;
  • Detect, investigate, and respond to security threats on behalf of customers;
  • Process transactions and send billing and account communications;
  • Respond to inquiries and provide support;
  • Send product updates and marketing (where permitted, and always with an opt-out); and
  • Comply with legal obligations and enforce our agreements.

3. Legal bases for processing

Where the GDPR or similar laws apply, we rely on the following legal bases: performance of a contract (to deliver the Services you request), legitimate interests (to secure, improve, and market our Services in a balanced way), consent (for certain marketing and cookies), and legal obligation (to meet regulatory and tax requirements). You may withdraw consent at any time without affecting prior processing.

4. How we share information

We do not sell your personal information. We share it only as described here:

  • Service providers / subprocessors: vendors who help us operate the Services, bound by contract. See our Trust Center for the current subprocessor list.
  • Within your organization: with authorized users and administrators of your account.
  • Legal and safety: when required by law, subpoena, or to protect rights, property, or safety.
  • Business transfers: in connection with a merger, acquisition, or asset sale, subject to this Policy.

5. Data retention

We keep personal information only as long as needed for the purposes described, to comply with legal obligations, resolve disputes, and enforce agreements. Customer security telemetry is retained according to the retention period configured in your contract and is cryptographically erased on termination. Marketing data is retained until you opt out or after a defined period of inactivity.

6. Your rights and choices

Depending on where you live, you may have the right to access, correct, delete, or port your personal information; to object to or restrict processing; and to opt out of marketing or "sales/sharing" as defined under laws like the CCPA/CPRA. To exercise these rights, email privacy@s-security.io. We will verify your request and respond within the timeframe required by applicable law. You will not be discriminated against for exercising your rights.

7. Cookies and tracking

We use cookies and similar technologies for essential functionality, analytics, and marketing. You can manage your preferences through our cookie banner or browser settings. For details, see our Cookie Policy.

8. International data transfers

We operate globally and may transfer personal information to countries other than your own. Where we transfer data out of the EEA, UK, or Switzerland, we rely on appropriate safeguards such as Standard Contractual Clauses and supplementary measures. You can request a copy of the relevant safeguards by contacting us.

9. Security

We protect personal information with administrative, technical, and physical safeguards, including encryption in transit and at rest, least-privilege access, and continuous monitoring. No method of transmission or storage is perfectly secure, but security is our core business and we hold ourselves to the standards described in our Trust Center.

10. Children's privacy

The Services are intended for businesses and are not directed to children under 16. We do not knowingly collect personal information from children. If you believe a child has provided us information, contact us and we will delete it.

11. Changes to this Policy

We may update this Policy from time to time. When we make material changes, we will update the "Last updated" date and, where appropriate, provide additional notice. Your continued use of the Services after changes take effect constitutes acceptance.

12. Contact us

Questions, requests, or complaints? Reach our privacy team at privacy@s-security.io or write to S-Security, Inc., Attn: Privacy, 500 Congress Avenue, Austin, TX 78701, USA. If you are in the EU/UK, you also have the right to lodge a complaint with your local data protection authority.

Related policies. See our Terms of Service and Cookie Policy for the full picture of how we work together.