DeepDefence Technologies
Privacy Policy
Last Updated: May 1, 2026
At DeepDefence Technologies, we prioritize the confidentiality and integrity of the data entrusted to us. This policy explains how we handle information across our marketing website ( www.deepdefence.co ) and our security assessment platform ( app.deepdefence.co )
1. Data We Collect
- Account Information:Your company Name, business email, websites and cloud environments targetted for security assessment.
- Security Data: Application metadata and results generated during security scans.
- Technical Logs: IP addresses and browser metadata used for platform security and performance monitoring.
- Marketing Data: Information provided via contact forms (name, email, company) and website analytics.
- Platform User Data: Encrypted credentials for target systems, cloud configuration metadata, and environment details required for security assessments.
- Assessment Results: Vulnerability data, exploit proofs, and technical reports generated during manual and automated testing.
2. Data Residency & Infrastructure
Regional Data Residency: Platform users select their data residency (US, Europe, or India) during account setup, and static database profiles remain hosted within that selected jurisdiction. We currently support the following storage locations:
- United States: Google Cloud Platform (GCP) servers in US-Central.
- Europe: Google Cloud Platform (GCP) servers in Europe West.
- India: Google Cloud Platform (GCP) servers located in India.
Global Engineering Access & Testing Execution: While primary data assets remain stored in your chosen region at rest, the user acknowledges and agrees that authorized DeepDefence security analysts and engineers operating globally (including our operations in India) may securely retrieve, access, or temporarily process these configuration profiles, API headers, or cloud targets. This access is granted strictly for the operational execution of manual vulnerability testing, system validation, and report verification.
Infrastructure Security: Regardless of the selected storage region or transient validation execution, all sensitive credential fields are heavily encrypted at rest using enterprise AES-256 standards and secured in transit via TLS 1.2+.
Automated Infrastructure Fair Use Policy (FUP) & Guardrails: To maintain optimal engine performance, target system stability, and cluster availability for all clients under our Continuous Plan, automated vulnerability scanning loops operate under a mandatory execution threshold framework.
- 48-Hour Interval Safety Throttle: Once an automated security audit sequence is completed against a verified web domain or cloud infrastructure profile, subsequent on-demand executions for that exact asset envelope will remain queued until a 48-hour cool-down window has elapsed. This prevents automated security payloads from inadvertently compounding system overhead or mimicking distributed denial-of-service (DDoS) traffic patterns against target application firewalls.
3. Cookie & Tracking Policy
We use cookies and similar tracking technologies to analyze traffic and improve your experience on our platform. By using our website, you consent to our use of these cookies.
Types of Cookies We Use:- Essential Cookies: Necessary for secure login and encrypted vault functionality.
- Analytics Cookies: We use Google Analytics to understand visitor behavior. This data is aggregated and does not personally identify you.
- Platform Session Cookies: On app.deepdefence.co, we use essential cookies to maintain secure sessions and protect your encrypted vault access.
- Opt-Out: You may disable cookies in your browser or use the Google Analytics Opt-out Browser Add-on.
4. Data Retention Schedule
To minimize risk and optimize platform performance, we adhere to the following data deletion schedule:
| User Tier | Retention Period |
|---|
| Free Tier | 3 Months |
| Paid Tier | 1 year |
Upon expiration of these periods, data is permanently purged from our active systems. Users are encouraged to download their reports if they require long-term archives.
5. Your Rights & Billing Inquiries
Under applicable data protection laws (including GDPR and India's DPDP Act), you have the right to access, correct, or request the deletion of your personal data.
For all billing-related inquiries, cancellation requests, or refund applications, please contact our support team at the email below. We process all requests in accordance with our Terms of Service.
6. Contact
DeepDefence Support
Security & Privacy: privacy@deepdefence.co
Billing & Refunds: billing@deepdefence.co
View Terms of Service →