PRIVACY POLICY STATEMENT
1. Introduction
Defentrix (“we,” “us,” or “our”) is a cybersecurity company committed to protecting the digital assets, data, and privacy of our clients, partners, and all individuals who interact with our services. As a company whose core mission is security, we hold ourselves to the highest standards of data protection and transparency.
This Privacy Policy Statement explains how Defentrix collects, uses, stores, discloses, and protects personal information in connection with our cybersecurity services, products, website, and operations. By engaging our services or using our platforms, you acknowledge and agree to the practices described in this Policy.
2. Scope of This Policy
This Policy applies to:
- All clients and prospective clients who engage or inquire about Defentrix services
- Visitors to our website and digital platforms
- Business partners, vendors, and third-party collaborators
- Employees, contractors, and personnel of Defentrix
- Any individual whose personal data is processed in the course of our service delivery
3. Information We Collect
3.1 Information You Provide Directly
We collect information you voluntarily provide when you:
- Register for our services or request a consultation.
- Complete forms, surveys, or assessments on our platforms.
- Communicate with us via email, telephone, or other channels.
- Enter into contracts or service agreements with Defentrix.
- Participate in training programmes, webinars, or events we host.
This may include your name, job title, organisation name, email address, phone number, billing information, and any data you share in the course of our engagement.
3.2 Information Collected Automatically
When you interact with our digital platforms, we may automatically collect:
- IP addresses and device identifiers
- Browser type, operating system, and device configuration
- Website usage data, including pages visited and time spent
- Log files, cookies, and session data
- Geolocation data (where permitted and applicable)
3.3 Information Collected Through Service Delivery
In the course of providing cybersecurity services such as penetration testing, vulnerability assessments, threat monitoring, and incident response, we may access, process, or analyse data on your systems. This access is strictly limited to the scope defined in our service agreements and is subject to strict confidentiality obligations.
4. How We Use Your Information
Defentrix uses collected information for the following purposes:
- Delivering, managing, and improving our cybersecurity products and services
- Responding to enquiries, support requests, and service communications
- Fulfilling contractual obligations and processing transactions
- Conducting threat intelligence analysis and security research
- Monitoring and improving the security of our own systems and infrastructure
- Complying with applicable laws, regulations, and legal obligations
- Sending service-related notifications, updates, and security advisories
- Marketing our services where you have provided consent or where permitted by law
- Training our personnel and improving internal processes
5. Legal Basis for Processing
We process personal data on the following legal bases:
- Contractual necessity — to fulfil our obligations under agreements with clients and partners
- Legal obligation — to comply with applicable laws, regulations, and regulatory requirements
- Legitimate interests — to operate and improve our business, detect fraud, and ensure security
- Consent — where you have freely given explicit consent for specific processing activities
6. Data Sharing and Disclosure
Defentrix does not sell, rent, or trade personal information to third iWe engage trusted third-party vendors who assist in delivering our services (e.g., cloud infrastructure providers, software tools). These parties are bound by strict confidentiality and data processing agreements.
6.2 Legal and Regulatory Compliance
We may disclose information when required by law, court order, regulatory authority, or to protect the rights, safety, and security of Defentrix, our clients, or the public.
6.3 Business Transfers
In the event of a merger, acquisition, or business restructuring, personal data may be transferred as part of that transaction, subject to equivalent privacy protections.
7. Data Security
As a cybersecurity company, the security of your data is fundamental to who we are. Defentrix employs industry-leading technical and organisational measures to protect personal information from unauthorised access, disclosure, alteration, and destruction.
Our security measures include:
- End-to-end encryption of data in transit and at rest
- Multi-factor authentication and role-based access controls
- Regular penetration testing and vulnerability assessments of our own systems
- 24/7 threat monitoring and incident response capabilities
- Security awareness training for all Defentrix personnel
- Strict data classification and handling policies
While no system can guarantee absolute security, we continuously review and enhance our controls to maintain the highest standard of data protection.
8. Data Retention
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including to satisfy legal, contractual, regulatory, or business requirements. When data is no longer required, it is securely deleted or anonymised in accordance with our data retention procedures.
9. Your Rights
Depending on your jurisdiction, you may have the following rights regarding your personal data:
- Right of Access — to request a copy of the personal data we hold about you
- Right to Rectification — to correct inaccurate or incomplete data
- Right to Erasure — to request deletion of your personal data where applicable
- Right to Restrict Processing — to request that we limit how we use your data
- Right to Data Portability — to receive your data in a structured, machine-readable format
- Right to Object — to object to processing based on legitimate interests or for marketing
- Right to Withdraw Consent — where processing is based on consent, to withdraw it at any time
To exercise any of these rights, please contact us using the details provided in Section 12 of this Policy. We will respond to all verified requests within the timeframe required by applicable law.
10. Cookies and Tracking Technologies
Our website uses cookies and similar tracking technologies to enhance user experience, analyse site traffic, and support security functions. You may manage your cookie preferences through your browser settings or our cookie consent tool. Please note that disabling certain cookies may affect the functionality of our platforms.
11. International Data Transfers
Defentrix operates in multiple jurisdictions. Where personal data is transferred across borders, we ensure that appropriate safeguards are in place — such as standard contractual clauses or adequacy decisions — to maintain the protection of your data in accordance with applicable privacy laws.
12. Children’s Privacy
Our services are not directed at individuals under the age of 18. We do not knowingly collect personal information from minors. If we become aware that we have inadvertently collected data from a minor, we will take prompt steps to delete such information.
13. Changes to This Privacy Policy
Defentrix reserves the right to update this Privacy Policy at any time to reflect changes in our practices, services, or legal obligations. We will notify affected parties of material changes by posting an updated Policy on our website with a revised effective date. Continued use of our services after such changes constitutes acceptance of the updated Policy.
14. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data processing practices, please contact our Data Protection Officer:
Defentrix — Data Protection Officer
Email: privacy@defentrix.com
Website: www.defentrix.com
We are committed to resolving all privacy-related concerns promptly and transparently.