This Privacy Policy describes how ASecurity Global ("we", "us", or "our") collects, uses, and protects your personal information when you visit our website or use our penetration testing and security services.
1. Information We Collect
Information you provide directly: When you submit a contact form, book a penetration test, or sign up for our newsletter, we collect your name, email address, phone number, company name, job title, and the details of your security assessment request.
Information collected automatically: We collect standard web server logs including IP addresses, browser type, pages visited, and referring URLs. We use this data solely for security monitoring and to improve our website.
Engagement data: During security assessments, we collect technical information about your systems strictly within the agreed scope. All such data is handled under a separate Non-Disclosure Agreement (NDA).
2. How We Use Your Information
We use your personal information to:
- Respond to your enquiries and deliver the services you have requested
- Send you security research updates and newsletters (only with your consent)
- Improve our website and services
- Comply with our legal and contractual obligations
- Detect and prevent fraud or security incidents
We do not sell, rent, or share your personal data with third parties for marketing purposes.
3. Legal Basis for Processing (GDPR)
For individuals in the European Economic Area, we process your data on the following legal bases: contractual necessity (to deliver services you request), legitimate interests (to improve our services and prevent fraud), and consent (for marketing communications).
4. Data Retention
We retain your contact and enquiry data for up to 3 years after your last interaction with us. Penetration test findings and reports are retained for the period specified in your service agreement. You may request deletion of your data at any time.
5. Data Security
We implement industry-standard security controls to protect your data, including encryption in transit (TLS 1.3), access controls, and regular security assessments of our own infrastructure. All staff with access to client data are bound by confidentiality obligations.
6. Your Rights
You have the right to access, correct, or delete your personal data. You may also object to processing, request data portability, or withdraw consent for marketing at any time. To exercise any of these rights, contact us at security@asecurity-global.com.
7. Cookies
We use essential cookies to operate our website and optional analytics cookies to understand how visitors use our site. You can control cookie preferences through our Cookie Policy. See our Cookie Policy for full details.
8. Third-Party Services
Our website may use Google Analytics for traffic analysis. Google's privacy policy governs their handling of data. We do not use advertising tracking cookies.
9. International Transfers
We are headquartered in Singapore with offices in the UK, USA, and UAE. Data may be transferred internationally in accordance with applicable data protection laws and subject to appropriate safeguards.
10. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy on this page with an updated date. Continued use of our services constitutes acceptance of the updated policy.
11. Contact Us
If you have questions about this Privacy Policy or wish to exercise your data rights, please contact: