Privacy Policy

1. Information We Collect

BlackGrid Security collects information to provide and improve our enterprise security services:

Account Information

When you create an account, we collect your name, email address, company information, and authentication credentials. This information is necessary to provide you with access to our Service.

Security Data

We collect and process security-related data including threat intelligence, incident logs, alert data, and system activities. This data is essential for providing our security monitoring and threat detection services.

Usage Information

We automatically collect information about how you interact with our Service, including access logs, feature usage, and performance metrics.

2. How We Use Your Information

• Provide, maintain, and improve our security services
• Detect, prevent, and respond to security threats
• Send you service notifications and security alerts
• Provide customer support and respond to inquiries
• Comply with legal obligations and enforce our policies
• Conduct research and development to improve our services

3. Data Security

We implement industry-leading security measures to protect your data:

• AES-256 encryption for data at rest
• TLS 1.3 encryption for data in transit
• Multi-factor authentication (MFA) support
• Regular security audits and penetration testing
• Role-based access control (RBAC)
• 24/7 security monitoring and incident response

4. Data Retention

We retain your data for as long as necessary to provide our services and comply with legal obligations. Security logs and threat data are retained for 90 days by default, with configurable retention periods up to 7 years for compliance purposes.

5. Data Sharing

We do not sell your data. We may share your information only in the following circumstances:

• With your explicit consent
• With service providers who assist in our operations (under strict confidentiality agreements)
• To comply with legal obligations, court orders, or regulatory requirements
• To protect our rights, privacy, safety, or property
• In connection with a merger, acquisition, or sale of assets (with notice)

6. Your Rights

Under GDPR and other privacy laws, you have the following rights:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate or incomplete data
• Erasure:Request deletion of your data (“right to be forgotten”)
• Portability: Receive your data in a machine-readable format
• Restriction: Limit how we process your data
• Objection: Object to certain processing activities
• Withdraw Consent: Revoke previously given consent

7. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission.

8. Cookies and Tracking

We use essential cookies for authentication and session management. We do not use third-party advertising cookies. You can control cookie preferences through your browser settings.

9. Children's Privacy

Our Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by email and by posting a notice on our Service.

11. Contact Us

For privacy-related questions or to exercise your rights, please contact: