During service delivery, it may be necessary to collect certain types of information automatically. This also helps ensure that our delivery is efficient and the data we collect is being stored securely.

• Network Data
• User and system behavior
• application logs
• organizational information
• other relevant machine data

We can deliver our services to protect your critical data by using the information we collect about you. We may collect the information mentioned above; we do not access information collected unless our clients have requested otherwise.

Some third parties may provide services on our behalf and may require your information to provide service. These service providers have only authorized information that is in the scope of work. We enforce strict contractual controls to protect your confidentiality.

When your engagement ends, we provide an opportunity to gather and transfer any data that is possible to deliver. You can request us to delete your data, we will respond to this request within 14 days.

As a Cybersecurity consulting firm, we naturally take the paranoid approach to security. We employ both technical and organizational controls that are appropriate to store sensitive information while preventing unauthorized access. We utilize zero trust systems, and automatic data deletion policies to ensure your data is only available to cleared associates.

If you are a client, we may retain your data for as long as our contract is active, or needed to provide you with service. Alternative cases, we may retain information necessary for legitimate business reasons, including legal obligations. When there is no longer a legitimate reason to store your data, the data is deleted or anonymized.