
Privacy Policy
SECUSYSTS TECHNOLOGIES Inc. - Your privacy is our priority. Learn how we protect your data.
Last Updated: January 2026
1. Introduction
SECUSYSTS TECHNOLOGIES Inc. ("SECUSYSTS," "we," "us," or "our") is committed to protecting the privacy, confidentiality, and security of personal data and sensitive information entrusted to us.
This Privacy Policy explains how we collect, use, disclose, safeguard, and process personal data when you access our websites, platforms, dashboards, services, or engage with us professionally.
This Policy applies globally and is designed to comply with:
- EU General Data Protection Regulation (GDPR)
- U.S. federal and state privacy laws
- Industry-specific regulatory requirements
2. Categories of Data We Collect
We may collect the following categories of data, depending on the nature of the engagement:
2.1 Personal Data
- Name, job title, company affiliation
- Business email address, phone number
- Account credentials and authentication data
- Billing and contractual contact details
2.2 Technical & Usage Data
- IP addresses, device identifiers
- Browser, operating system, and session metadata
- Log files, audit trails, and access records
2.3 Client & Security Data (as applicable)
- System architecture information
- Security telemetry and alerts
- Incident-related data
- Compliance and audit documentation
Important: SECUSYSTS does not intentionally collect sensitive personal data (e.g., biometric, genetic, or consumer behavioral profiling data) unless explicitly required by contract and legally permitted.
3. Lawful Basis for Processing (GDPR)
For individuals subject to GDPR, we process personal data under one or more of the following lawful bases:
- Contractual necessity - to deliver agreed services
- Legal obligations - regulatory, audit, or compliance requirements
- Legitimate interests - security, fraud prevention, service improvement
- Consent - where explicitly required
You may withdraw consent at any time where consent is the lawful basis.
4. Purpose of Data Processing
We process data solely for legitimate and defined purposes, including:
- Providing cybersecurity and managed security services
- Operating client dashboards, portals, and support systems
- Incident detection, response, and investigation
- Compliance, audit, and regulatory support
- Billing, contract administration, and customer support
- Improving service quality, resilience, and security
We do not sell personal data.
5. Data Minimization & Retention
We adhere to strict data minimization principles:
- Only data necessary for service delivery is collected
- Data is retained only for as long as required by:
- Contractual obligations
- Legal or regulatory requirements
- Legitimate security needs
Upon termination of services, data is securely deleted or returned in accordance with contractual terms.
6. Data Security & Safeguards
SECUSYSTS implements enterprise-grade technical and organizational safeguards, including but not limited to:
- Encryption in transit and at rest
- Role-based access controls (RBAC)
- Multi-factor authentication (MFA)
- Continuous monitoring and logging
- Incident response and breach notification procedures
Security controls are reviewed and updated regularly in line with evolving threats.
7. Data Sharing & Third Parties
We may share data only with:
- Authorized internal personnel
- Trusted third-party service providers (e.g., cloud, security platforms)
- Legal or regulatory authorities when required by law
All third parties are contractually bound to confidentiality, security, and data protection obligations.
8. International Data Transfers
Where data is transferred internationally, SECUSYSTS ensures appropriate safeguards, including:
- Standard Contractual Clauses (SCCs)
- Equivalent legal protections
- Secure processing environments
9. Data Subject Rights (GDPR)
You have the right to:
- Access your personal data
- Correct inaccurate or incomplete data
- Request erasure (where legally permitted)
- Restrict or object to processing
- Data portability
- Lodge a complaint with a supervisory authority
Requests may be submitted to [email protected].
10. U.S. Federal & Regulated Client Addendum
For U.S. federal agencies, contractors, and regulated entities, the following applies:
10.1 No Unauthorized Data Use
Client data is processed solely for contractual purposes and is never used for analytics, training, or secondary purposes without explicit authorization.
10.2 Government Data Handling
Where applicable, SECUSYSTS aligns with:
- FISMA / NIST SP 800-53 principles
- CIS Critical Security Controls
- HIPAA safeguards (administrative, technical, physical)
- PCI-DSS data protection standards
10.3 No Data Monetization
SECUSYSTS does not:
- Sell government or regulated data
- Use such data for marketing
- Combine regulated data across clients
10.4 Incident Notification
Security incidents involving regulated or government data are handled under:
- Contractual incident response timelines
- Regulatory notification obligations
- Coordinated disclosure procedures
11. Children's Data
Our services are not directed to children. We do not knowingly collect personal data from individuals under the age of 16.
12. Changes to This Policy
We may update this Privacy Policy periodically. Material changes will be published on our website with an updated effective date.
13. Contact Information
For privacy, data protection, or regulatory inquiries:
Email: [email protected]
Website: https://www.secusysts.com














