Privacy Policy

ThreatMon (“ThreatMon,” “we,” “us,” or “our”) is dedicated to safeguarding the privacy of individuals whose personal information (as defined below) we collect and process in the course of delivering our cybersecurity and threat intelligence services. This Privacy Policy applies to the ThreatMon websites located at www.threatmon.io and  (the “Site”) and to all ThreatMon products and services (collectively, the “Services”) available through our platform located at dashboard.threatmonit.io.

This Privacy Policy (“Policy”) explains how we collect, use, share, disclose, and retain personal information, as well as your rights regarding your privacy. ThreatMon is committed to complying with all relevant privacy regulations, including but not limited to the General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act (“CCPA”), to ensure the highest standards of data protection.

We encourage you to read this Policy in full to understand our privacy practices. Periodically, we may update this Policy to reflect changes in our services or regulatory requirements. If material changes are made, we will notify you via email (using the email address specified in your account) or through a notice on the Site before any updates take effect.

If you have questions or concerns about this Policy or our data practices, please contact us at [email protected].

What Information Does We Collect?

The categories of Personal Information we may collect depend on your relationship with us, such as whether you are a customer, vendor or other user of our Platform, business partner, supplier, job applicant, or visitor to our Site. ThreatMon collects various types of information, including information that identifies or may identify you as an individual (“Personal Information”), as outlined below:

From Customer

For customers, the types of Personal Information that we may collect include:

Business Contact Information: This includes the name, job title or position, business address, business email address, and business phone number of employees and representatives authorized to use our Services.

Billing and Payment Information: We collect invoicing and payment details, including credit card information and billing details, through our secure, third-party PCI-compliant payment processor.

Service Usage Records: We maintain records of customers’ interactions with and use of our Services, including configuration and performance metric including User Identification and Contact Information, Access and Activity Records, Communication Records.

Log Data: We may collect log data when you access our Services, which can include IP addresses, browser type, internet service provider, URLs of referring/exit pages, operating system, date/time stamps, search queries, language preferences, device identifiers, mobile carrier information, and system configuration details.

These categories of Personal Information apply if you are a current customer, a prospective customer, or if you have requested a demonstration of our Services.

From Non-Customer Platform Users

For individuals who access or use the ThreatMon Platform but are not direct customers (such as business partners, contractors, or other authorized users), we may collect the following types of Personal Information:

User Identification and Contact Information: This may include your name, job title, email address, phone number, and any organization details necessary to verify your authorization to access the Platform.

Access and Activity Records: We track and log user actions within the Platform, including login times, access permissions, and any specific actions taken to ensure system security and maintain a record of Platform usage.

Communication Records: If you contact ThreatMon for support, feedback, or any inquiries, we may retain a record of the correspondence along with any additional information you provide during these communications.

Log Data:  To improve functionality and security, we collect log data, which may include IP addresses, browser type, device type, operating system, referral URLs, date and time stamps, and other technical identifiers related to your access and interaction with the Platform.

From Visitors to the Site

You are free to explore the Site without registering for an account. For individuals who visit our Site, the types of Personal Information we may collect include:

Information You Submit: If you choose to contact us through the Site—such as by completing a “Request a Demo” form, signing up for a ThreatMon webinar, or submitting a general inquiry—this may include your name, email address, phone number, and any additional information you provide in messages or attachments.

Technical Information: We automatically collect certain technical details when you visit our Site, including your Internet Protocol (IP) address, browser type and version, operating system, and platform information. This information helps us understand how visitors use our Site and improve its performance.

Visit Information: We gather information about your interaction with the Site, including your navigation path (URLs clicked to, through, and from our Site), geolocation data (if enabled), the duration of your visit, pages viewed, and page interaction details like scrolling, clicks, and mouse-overs.

If you contact us directly, we may retain any Personal Information you provide, including your name, email, phone number, and the contents of your messages. We may also receive confirmation when you open emails sent by us to improve our communications and customer support.

From Business Partners

For business partners (e.g. MSSP, resellers) and suppliers who provide products or services to ThreatMon, the types of Personal Information we may collect include:

Business Contact Information: This may include your name, business email address, business physical address, and business phone number necessary for maintaining our partnership or supplier relationship.

Invoicing and Payment Details: We collect invoicing and payment information to process transactions and facilitate payment for products or services provided to ThreatMon.

From Job Applicants

When applying for a position at ThreatMon, we may collect application details such as your resume, contact information, employment history, and any additional information you provide during the hiring process.

Why We Collect and Use Information

We collect and use Personal Information to provide high-quality services and maintain essential operations. The use of this data is necessary to fulfill our contractual obligations, support our legitimate business interests, and comply with legal requirements. Specifically, we use Personal Information for the following purposes:

  • Providing Services and Products
  • Demo, Trial, and Proof of Concept (PoC) Requests
  • Account Management and Customer Support
  • Service Updates and Marketing
  • Billing and Payment Processing
  • Communication with Customers and Partners
  • Research and Archiving
  • Recruitment and Employment Decisions
  • Compliance with Legal Requirements
  • Website and Platform Security
  • Improving Services and Platform Performance

How Do We Collect Personal Information?

Information You Provide Directly:

From the Website or Events

We may collect Personal Information you choose to share via the Site, such as through a “Request a Demo” or “Free Trial” form, webinar registration, or query submission. If you contact us, we keep a record of our correspondence for support purposes. Direct contact with us may also involve collecting your name, email, phone number, and any message content or attachments. We may receive confirmation when you open our emails to help optimize communication.

From the Services

When using our Services, we collect information you provide, such as your name, email, phone number, and job title, along with other contact details necessary for Service delivery, including usernames, addresses, and transaction information. If you’ve previously interacted with our Services or requested demos, we may use your information for updates or offers. You can opt-out of marketing communications anytime, although essential account-related messages may still be sent.

Forum Use

If you participate in forums, blogs, or boards on our Site, be aware that information you post may be visible to others. We use industry-standard measures to safeguard personal data, though internet transmission security cannot be fully guaranteed, so sharing is at your own risk.

Customer Feedback and Surveys

Occasionally, we may ask for feedback to improve our Services. Participation is voluntary, and responses may include contact details or general opinions on our services.

Information We Receive from Other Sources:

We may receive Personal Information from other users of our Platform and Services, business partners, third-party providers (such as recruitment agencies or lead generation services), and event participation. Additionally, we may collect publicly available information from sources like your website, social media profiles (e.g., LinkedIn), recruitment platforms, public databases, and other open-access sources.

Information We Automatically Collect:

Technical Information

Details about your device and internet connection, such as your Internet Protocol (IP) address, browser type and version, device type, operating system, and screen resolution.

Usage Data

Information about how you interact with our Site and Platform, including pages visited, time spent on each page, links clicked, scroll activity, and any features or functions used.

Log Information

Data recorded by our systems when you access the Site or Platform, including login times, actions performed, and error reports, which help us monitor performance and troubleshoot issues.

Cookies and Similar Technologies

We use cookies, web beacons, and other tracking technologies to collect information about your browsing behavior, preferences, and site interactions. This may include tracking referrer URLs, visit duration, and user navigation paths.

Geolocation Data

General location information derived from your IP address to understand the geographical distribution of our user base and enhance regional service offerings.

Please note that this data is collected to improve user experience, analyze trends, administer the Site and Platform, and ensure security. For more information on cookies and tracking technologies, see our Cookies Policy.

How Do We Share and Disclose Information?

With Suppliers and Service Providers

We may share your information with trusted suppliers and service providers who are essential to the delivery and support of our services. These organizations enhance ThreatMon’s operational efficiency and quality by providing necessary services and products. The types of suppliers and service providers we collaborate with include:

These trusted third parties assist us with functions such as payment processing, data hosting, technical support, mail server, CRM systems, and other operational tools vital to the smooth operation of our platform. For instance, we may rely on payment processors to handle transactions securely and data storage providers to ensure data integrity and accessibility.

With Business Partners

We may share your information with trusted business partners who play a key role in supporting and expanding our services. These partners include authorized resellers and strategic alliances that help ThreatMon deliver our solutions to a broader audience. We share only the information necessary to facilitate these partnerships and improve the user experience, ensuring that data is used solely to support our collaborative efforts and service reach.

With Advisors, Consultants, and Auditors

We may share your information with trusted advisors, consultants, and auditors who provide essential support to our business operations. These professionals assist us in maintaining regulatory compliance, ensuring risk management, and enhancing our service quality.

In cases where Personal Information is transferred to these third parties outside of your region (e.g., the European Economic Area, Switzerland, or the United Kingdom), we ensure a similar level of protection by implementing the following safeguards:

Adequate Protection

Sharing data only with countries recognized by the European Commission as providing an adequate level of data protection, or

Standard Contractual Clauses

Employing Standard Contractual Clauses approved by the European Commission and/or UK Information Commissioner’s Office to maintain consistent data protection standards across borders.

These measures ensure that your Personal Information is handled securely and in line with applicable data protection laws, regardless of its destination.

Data Integrity and Security

ThreatMon employs industry-standard security measures to protect against the loss, misuse, and alteration of data stored within our systems. We implement robust safeguards, such as encryption, to secure the transmission of sensitive information and maintain data integrity. Our security policies are regularly reviewed and updated to respond to evolving threats, ensuring the highest levels of protection and availability across our Site and Services.

If you have any questions regarding the security of our Site or Services, please contact us at [email protected].

Data Retention and Deletion

We retain your Personal Information only as long as needed to fulfill the purposes for which it was collected, as well as to meet any legal, accounting, or reporting obligations. In determining the appropriate retention period, we consider the nature, sensitivity, and purpose of the data, as well as any potential risks of unauthorized use.

In some cases, you may request data deletion by contacting us at [email protected]. For privacy and security, we may verify your identity before processing your request. Certain data may be archived or stored as part of routine backup procedures for disaster recovery purposes. Access and correction requests may be limited in cases where fulfilling them could interfere with legal obligations, ongoing investigations, or proprietary information.

In certain cases, we may anonymize your data for research or statistical purposes, allowing us to use it indefinitely without further notice.

Cookie Policy

A cookie is a small text file placed on your device by a website to remember certain information about your visit. ThreatMon uses “first-party cookies” for our Site’s functionality, and “third-party cookies” from trusted partners for purposes like analytics and advertising.

Why Does ThreatMon Use Cookies?

We use cookies to:

  • Enable Core Functions: Essential for logging in, account management, and secure browsing.
  • Analyze Performance: Track usage patterns to improve our Site’s content and functionality.
  • Customize Experience: Remember preferences like language and timezone settings.
  • Deliver Relevant Ads: Show ads based on your interests across other sites.


How to Disable Cookies

You can manage cookie settings directly in your web browser. Here’s how to manage cookies in some common browsers:

  • Firefox: Adjust settings in “Private Browsing” mode.
  • Chrome: Control cookies in “Incognito” mode.
  • Internet Explorer: Manage settings in “InPrivate” mode.
  • Safari: Use “Private Browsing” to adjust cookie preferences.

For guidance, visit aboutcookies.org or adjust settings in your browser’s privacy options.

Changes to This Cookie Policy

This Cookie Policy may be updated periodically. Please review it regularly to stay informed of any changes.

Third-Party Analytics

We use third-party analytics, such as Google Analytics, to understand how users interact with our Site. These tools collect data on page views, visit frequency, and browsing patterns, helping us improve Site performance. You can opt out of Google Analytics tracking here.

Your Privacy Rights and Choices

Personal Data Requests

Depending on your location and applicable laws, you may have the right to:

  • Access, Correction, or Deletion: Request access to, updates for, or deletion of your Personal Data.
  • Object or Restrict: Object to or request restrictions on our processing of your data or request data portability.
  • Withdraw Consent: Withdraw consent for data processing, without affecting prior lawful processing.

To exercise any of these rights, please contact us at [email protected]. For security, we may verify your identity before fulfilling your request. Where applicable, you may also empower an authorized agent to submit requests on your behalf.

Managing Communications and Opt-Out Options

You can unsubscribe from marketing communications at any time by:

  • Clicking the “unsubscribe” link in our emails, or
  • Contacting us at [email protected] to update your communication preferences.

Transactional or essential service-related emails will still be sent as needed for account management.

Data Protection Concerns

If you believe your data privacy rights have been violated, you may contact your local data protection authority. For EEA residents, contact details are available on the European Data Protection Board’s website.

California Privacy Rights

Applicability

This section applies only to California residents and uses the definition of “Personal Information” as specified in the California Consumer Privacy Act (CCPA). It outlines how ThreatMon collects, uses, and shares the Personal Information of California residents and the rights they hold under the CCPA.

If you need this Privacy Policy in an accessible format due to a disability, please contact us, and we will provide the information in an alternative format.

Collection, Use, and Disclosure of Personal Information

In the past 12 months, we may have collected the following categories of Personal Information:

  • Identifiers: Such as name, email, address, and phone number.
  • Commercial Information: Records of transactions, if applicable.
  • Internet or Network Information: Browsing activity on our Site.
  • Geolocation Data: Based on IP address.
  • Financial Information: Payment information if you purchase a subscription.
  • Professional Information: Job title and company name.

This information is used for business purposes as outlined in this Privacy Policy. We do not “sell” Personal Information under CCPA definitions, and any sharing with third parties is for business purposes only, such as with service providers.

Your California Rights

California residents have the following rights:

  • Access: Request what Personal Information we have collected in the past 12 months.
  • Deletion: Request deletion of your Personal Information, subject to certain legal exceptions.
  • Correction: Request correction of inaccurate Personal Information.
  • Non-Discrimination: You will not face discrimination for exercising your privacy rights.

To exercise these rights, please contact us at [email protected]. We may verify your identity before processing your request and may require proof if an authorized agent makes a request on your behalf.

Right to Opt Out of “Sharing”

ThreatMon does not “sell” Personal Information. However, if you wish to opt-out of any data sharing for targeted advertising, please contact us, or you can manage ad preferences through optout.networkadvertising.org or aboutads.info.

We do not knowingly “sell” or “share” Personal Information of individuals under 16 years of age.

California and Delaware “Do Not Track” Disclosures

California and Delaware law require ThreatMon to indicate whether it honors “Do Not Track” (DNT) settings in your browser. Currently, our Site does not respond to DNT signals. “Do Not Track” is a privacy preference that users can set in certain web browsers to signal websites that they do not wish to be tracked. However, there is no consistent industry standard for interpreting DNT signals, and as a result, ThreatMon does not currently alter its data collection practices in response to DNT browser settings.

Children’s Privacy

ThreatMon does not knowingly collect or solicit personal information from anyone under the age of 13. Our Site and Services are intended for use by individuals 13 years of age or older. If you are under 13, please do not attempt to register or provide any personal information about yourself. If we learn that we have inadvertently collected personal information from a child under 13, we will promptly delete that information from our records.

If you believe that a child under 13 may have provided us with personal information, please contact us at [email protected] so we can take appropriate action.

Linked Websites

For your convenience, our Site may contain links to third-party websites (“Linked Websites”). ThreatMon is not responsible for the privacy practices or content of these Linked Websites. This Privacy Policy does not apply to information collected on Linked Websites, and we encourage you to review the privacy policies of any Linked Websites you visit. Links to these websites do not imply endorsement or responsibility for their content by ThreatMon.

Changes to This Privacy Policy

ThreatMon may update this Policy periodically. Material changes will be posted on this page, and if required, we will notify you via email or a prominent notice on the Site.

Complaints or Concerns

If you have any complaints or concerns about how your Personal Information has been handled, please contact us directly by emailing [email protected]. We take privacy seriously and will promptly investigate your complaint or concern, working to resolve the issue as quickly as possible.

If you are not satisfied with our response, you may contact the appropriate data protection authority in your jurisdiction to address your concern further.

Contact Information

For questions about this Policy or our data practices, contact us at: [email protected]