Privacy Policy

Last Updated: October 1, 2025

At Unseen Security, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI security services.

1. Information We Collect

1.1 Information You Provide

• Account Information: Name, email address, company name, and billing information when you create an account
• Communication Data: Information you provide when you contact us for support or inquiries
• Organization Data: Configuration settings and organizational preferences

1.2 Automatically Collected Information

• Usage Data: API requests, feature usage, and service interactions
• Log Data: IP addresses, browser type, device information, and timestamps
• Security Monitoring Data: Threat detection logs and security events

1.3 AI Processing Data

• Protected Content: Data sent through our proxy for AI security analysis
• Detection Results: PII, sensitive data patterns, and security alerts generated by our service

2. How We Use Your Information

We use the collected information for:

• Providing and maintaining our AI security services
• Detecting and preventing security threats and data leaks
• Analyzing and improving our security algorithms and services
• Communicating with you about your account and service updates
• Complying with legal obligations and enforcing our terms
• Processing payments and managing subscriptions

3. Data Processing and Security

3.1 Content Processing

All prompts and content processed through our service are stored and analyzed for security threats and sensitive data. This storage is a fundamental part of our security system and enables comprehensive threat detection, audit logging, compliance reporting, and continuous improvement of our security algorithms. Detected PII and sensitive patterns are flagged and logged alongside the prompts for security monitoring and analysis purposes.

3.2 Security Measures

We are committed to maintaining the highest security standards and strive to implement industry-leading practices including:

• End-to-end encryption for data in transit
• Encryption at rest for stored data
• Regular security audits and penetration testing
• Access controls and authentication mechanisms
• Ongoing pursuit of security certifications and compliance frameworks

4. Data Sharing and Disclosure

We do not sell your personal information. We may share information in the following circumstances:

• Service Providers: Third-party vendors who assist in providing our services (e.g., cloud hosting, payment processing)
• Legal Requirements: When required by law, subpoena, or legal process
• Business Transfers: In connection with a merger, acquisition, or sale of assets
• With Your Consent: When you explicitly authorize us to share information

5. Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations:

• Account Data: Retained while your account is active and for a reasonable period after closure
• Security Logs: Retained for 90 days unless required for ongoing security investigations
• Billing Records: Retained for 7 years to comply with financial regulations

6. Your Rights and Choices

You have the following rights regarding your personal information:

• Access: Request a copy of your personal information
• Correction: Request correction of inaccurate information
• Deletion: Request deletion of your personal information
• Data Portability: Request your data in a machine-readable format
• Opt-Out: Opt-out of marketing communications

To exercise these rights, contact us at privacy@unseensecurity.ai

7. Cookies and Tracking

We use cookies and similar tracking technologies to:

• Maintain your session and preferences
• Analyze service usage and performance
• Provide security features and fraud detection

You can control cookies through your browser settings, though some features may not function properly if cookies are disabled.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy and applicable laws.

9. Children's Privacy

Our services may be used by educational institutions to protect students using AI tools. When deployed in educational settings, we strive to align with privacy regulations and best practices:

• We work to align with COPPA (Children's Online Privacy Protection Act) and FERPA (Family Educational Rights and Privacy Act) requirements
• Educational institutions are responsible for obtaining necessary parental consents
• Student data is processed solely for security and educational purposes
• We do not use student data for marketing or advertising
• Parents and guardians have the right to review and request deletion of their child's data through the educational institution

For non-educational use, our services are intended for individuals 18 years of age or older. If we learn we have collected personal information from a child under 13 outside of an educational context without parental consent, we will delete that information promptly.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through our service. Your continued use of our services after changes become effective constitutes acceptance of the updated policy.

11. International Privacy Standards

For users in the European Economic Area (EEA), we strive to align with the General Data Protection Regulation (GDPR) principles. Our processing is based on:

• Contract performance
• Legitimate interests in providing secure AI services
• Legal obligations
• Your consent where required

We are committed to meeting international privacy standards and continuously work toward full compliance with applicable regulations.

12. U.S. State Privacy Rights

We recognize the privacy rights granted to residents of California and other U.S. states under laws such as the California Consumer Privacy Act (CCPA). We strive to honor these rights for all users, including the right to know what personal information is collected, the right to delete, and the right to opt-out of sales. We do not sell personal information.