Legal

Privacy Policy

Last Updated: January 2024
Effective Date: January 1, 2024

1. Introduction

Darianox Security Corp. ("we," "us," "our," or "Company"), a Canadian cybersecurity firm registered with VAT number 920584716 RT 0001, located at 150 Elgin St, Ottawa, ON K2P 1L4, Canada, is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our services, or interact with us.

Please read this Privacy Policy carefully. If you do not agree with our policies and practices, please do not use our services. By accessing and using Darianox Security Corp. services, you acknowledge that you have read, understood, and agree to be bound by all the provisions of this Privacy Policy.

2. Information We Collect

2.1 Information You Provide Directly

We collect information that you voluntarily provide to us, including:

  • Contact information (name, email address, phone number, mailing address)
  • Business information (company name, industry, organization size)
  • Communication content (messages, inquiries, feedback, support requests)
  • Payment information (processed securely through third-party payment processors)
  • Service-related data (security assessments, audit reports, vulnerability disclosures)

2.2 Information Collected Automatically

When you visit our website, we automatically collect certain information about your device and usage:

  • Log data (IP address, browser type, pages visited, time and date of visits)
  • Device information (device type, operating system, device identifiers)
  • Cookies and similar tracking technologies
  • Clickstream data and analytics information
  • Geographic location (derived from IP address)

2.3 Information from Third Parties

We may receive information about you from third parties, including business partners, marketing platforms, data brokers (where legally permitted), and publicly available sources to enhance our service offerings and verify information you have provided.

3. How We Use Your Information

We use the information we collect for legitimate business purposes, including:

  • Providing, maintaining, and improving our cybersecurity services
  • Processing transactions and sending related information
  • Responding to your inquiries and providing customer support
  • Conducting security assessments and vulnerability analyses
  • Sending promotional and informational communications (with your consent)
  • Analyzing usage patterns and optimizing our website and services
  • Detecting, investigating, and preventing fraudulent or illegal activities
  • Complying with legal obligations and enforcing our agreements
  • Aggregating data for research, statistical analysis, and business intelligence

4. Legal Basis for Processing

We process your personal information based on the following legal grounds:

  • Contractual necessity – to fulfill service agreements and deliver promised services
  • Legitimate interests – to improve our services, prevent fraud, and maintain security
  • Consent – where you have explicitly agreed to specific processing activities
  • Legal compliance – to meet Canadian privacy laws, PIPEDA, and applicable regulations
  • Protection of vital interests – to protect the rights, safety, and security of our organization and individuals

5. Information Sharing and Disclosure

5.1 Service Providers

We share information with trusted third-party service providers who assist us in operating our website, conducting our business, and serving you. These providers are bound by confidentiality agreements and are only permitted to use your information as necessary to provide services to us.

5.2 Business Partners

With your consent, we may share information with business partners for joint marketing initiatives, research projects, or service delivery. Such partners are required to maintain appropriate privacy and security standards.

5.3 Legal Requirements

We may disclose your information when required by law, such as in response to valid legal processes, court orders, subpoenas, or government requests. We will provide notice of such disclosure except where legally prohibited.

5.4 Business Transfers

In the event of a merger, acquisition, bankruptcy, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any change in ownership or control of your information.

5.5 Aggregated and De-identified Data

We may share aggregated, anonymized, or de-identified data with third parties for research, marketing, analytics, and other lawful purposes. This data cannot reasonably be used to identify you.

6. Data Security

We implement comprehensive technical, administrative, and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, and destruction. These measures include:

  • Encryption of data in transit and at rest using industry-standard protocols
  • Secure server infrastructure with firewalls and intrusion detection systems
  • Access controls and authentication mechanisms
  • Regular security audits and vulnerability assessments
  • Employee training on data protection and privacy practices
  • Incident response protocols and breach notification procedures

However, no security system is entirely impenetrable. While we strive to protect your information, we cannot guarantee absolute security. You assume the risk of any data breach by using our services.

7. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required by law. The retention period varies depending on the context of processing and our legal obligations:

  • Contact information – retained for the duration of our business relationship plus 7 years for tax and legal compliance
  • Service records – retained for the contract period plus 7 years
  • Website analytics – retained for up to 24 months
  • Marketing communications – retained until you unsubscribe

When information is no longer needed, we securely delete or anonymize it unless retention is required by applicable law.

8. Your Privacy Rights

Depending on your location and applicable laws, you may have the following rights regarding your personal information:

8.1 Right of Access

You have the right to request access to the personal information we hold about you and to receive a copy of that information in a portable format.

8.2 Right to Correction

You may request that we correct, update, or amend inaccurate, incomplete, or outdated personal information in our possession.

8.3 Right to Deletion

You may request the deletion of your personal information, subject to legal and contractual obligations that may require us to retain certain data.

8.4 Right to Restriction of Processing

You may request that we limit the processing of your personal information while we verify its accuracy or assess the lawfulness of processing.

8.5 Right to Data Portability

You have the right to receive your personal information in a structured, commonly used, machine-readable format and to transmit that data to another organization.

8.6 Right to Object

You may object to the processing of your personal information for marketing, profiling, or other purposes based on legitimate interests.

8.7 Right to Withdraw Consent

Where processing is based on your consent, you may withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing before the withdrawal.

9. Exercising Your Rights

To exercise any of the privacy rights outlined above, please submit a written request to:

Darianox Security Corp.
150 Elgin St
Ottawa, ON K2P 1L4
Canada

Email: tech@darianox.bond
Phone: +1 613 236 7788

We will respond to your request within 30 days (or as required by applicable law). Please note that we may require verification of your identity before processing your request.

10. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our website. These technologies help us understand how you use our services, remember your preferences, and deliver personalized content.

Types of Cookies:

  • Essential cookies – necessary for website functionality
  • Analytical cookies – help us understand how visitors use our website
  • Marketing cookies – used to track your interests and deliver personalized advertising
  • Social media cookies – enable sharing functionality and social media integration

You can manage your cookie preferences through your browser settings or by visiting our Cookie Management Center. Please note that disabling certain cookies may affect website functionality.

11. Third-Party Links and Services

Our website may contain links to third-party websites and services that are not operated by Darianox Security Corp. This Privacy Policy does not apply to those external sites, and we are not responsible for their privacy practices. We encourage you to review the privacy policies of any third-party services before providing your information.

12. Children's Privacy

Our services are not directed to children under the age of 13 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect personal information from children. If we become aware that we have collected information from a child without parental consent, we will take steps to delete such information promptly.

13. International Data Transfers

Your personal information may be transferred to, stored in, and processed in jurisdictions other than Canada. These jurisdictions may have different data protection laws than Canada. By using our services, you consent to the transfer of your information to countries outside Canada, including jurisdictions that may not provide the same level of privacy protection.

Where required by law, we will implement appropriate safeguards, such as standard contractual clauses or adequacy decisions, to protect your information during international transfers.

14. Privacy Practices for Different Jurisdictions

14.1 Canadian Residents (PIPEDA)

If you are a Canadian resident, your information is protected under the Personal Information Protection and Electronic Documents Act (PIPEDA). You have the right to access, request correction of, and challenge the accuracy and completeness of your personal information. You may file a complaint with the Office of the Privacy Commissioner of Canada if you believe we have violated your privacy rights.

14.2 GDPR Compliance (EU/EEA Residents)

If you are located in the European Union or European Economic Area, your information is protected under the General Data Protection Regulation (GDPR). In addition to the rights outlined in this policy, you have the right to lodge a complaint with your local data protection authority. Our Data Protection Officer is available to address GDPR-related inquiries and requests.

15. Data Breach Notification

In the event of a data breach that compromises the security of your personal information, we will notify you promptly. Our notification will include:

  • Description of the breach and types of information affected
  • Steps you should take to protect yourself
  • Contact information for our privacy team
  • Information about monitoring services we may offer

We will comply with all applicable breach notification laws and regulations, including notifying relevant regulatory authorities where required.

16. Policy Updates and Changes

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. The most current version will be posted on our website with the "Last Updated" date clearly indicated at the top of this document.

If we make material changes to how we process your personal information, we will notify you by email (if you have provided an email address) or by prominently posting a notice on our website. Your continued use of our services after such notification constitutes your acceptance of the updated Privacy Policy.

We encourage you to review this Privacy Policy regularly to stay informed about how we protect your information.

17. Data Protection Officer and Privacy Team

To ensure compliance with privacy regulations and best practices, we have designated a privacy team responsible for overseeing our data protection initiatives. You may contact our privacy team with any questions, concerns, or requests related to this Privacy Policy:

Privacy Team
Darianox Security Corp.
150 Elgin St
Ottawa, ON K2P 1L4
Canada

Email: tech@darianox.bond
Phone: +1 613 236 7788

We will respond to privacy-related inquiries within 10 business days.

18. Complaints and Dispute Resolution

If you have concerns about our privacy practices or believe we have violated your privacy rights, please contact us first using the information provided above. We will investigate your complaint and work toward a resolution.

If you are not satisfied with our response, you may file a complaint with:

  • Office of the Privacy Commissioner of Canada
    Phone: 1-800-282-1376
    Website: www.priv.gc.ca
  • Your Provincial/Territorial Privacy Commissioner
    (if applicable in your province)

For EU/EEA residents, you may lodge a complaint with your local data protection authority.

19. Glossary of Terms

Personal Information: Any information relating to an identified or identifiable individual.

Processing: Any operation performed on personal information, including collection, recording, organization, structuring, storage, adaptation, retrieval, consultation, use, disclosure, transmission, or deletion.

Data Subject: The individual to whom personal information relates.

Data Controller: The entity (Darianox Security Corp.) that determines the purposes and means of processing personal information.

Data Processor: A third party that processes personal information on behalf of the data controller.

Consent: Freely given, specific, informed, and unambiguous affirmation of will, typically indicated by a clear statement or action signifying agreement to processing.

Legitimate Interest: A legal basis for processing personal information when the interests, rights, and freedoms of the controller or a third party override those of the data subject.

Anonymization: The irreversible process of removing or altering personal data such that it can no longer be attributed to a specific individual without the use of additional information.

20. Contact Information and Questions

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please do not hesitate to contact us. We are committed to responding to all privacy-related inquiries promptly and professionally.

Darianox Security Corp.
150 Elgin St
Ottawa, ON K2P 1L4
Canada

Email: tech@darianox.bond
Phone: +1 613 236 7788
VAT: 920584716 RT 0001

Business Hours: Monday–Friday, 9:00 AM–5:00 PM EST

Privacy Policy Acknowledgment: By continuing to use Darianox Security Corp. services, you acknowledge that you have read, understood, and agree to the terms of this Privacy Policy. This policy is effective as of January 1, 2024, and supersedes any previous privacy policy.

Disclaimer: The information on this website is for general informational purposes only and does not constitute legal advice. Darianox Security Corp. does not establish a solicitor-client relationship through this website. For legal advice specific to your situation, please consult a qualified solicitor.
We use cookies Darianox Security Corp. uses cookies to enhance your experience. Privacy · Cookies