Skip to main content

*

Last updated: October 15, 2025

Our Commitment

At Duckurity, privacy and security are fundamental to everything we do. This policy explains how we collect, use, and protect your personal information. As a cybersecurity company, we hold ourselves to the highest standards of data protection.

Information We Collect

Information You Provide

  • Contact details (name, email, phone number)
  • Company information and job title
  • Account credentials and authentication data
  • Communication preferences
  • Support inquiries and correspondence

Information Collected Automatically

  • IP addresses and device information
  • Browser type and operating system
  • Usage data and interaction patterns
  • Security logs and access records
  • Performance metrics and analytics

Service-Specific Data

  • Network traffic patterns and anomalies
  • System logs and security events
  • Vulnerability scan results
  • Threat intelligence indicators
  • Incident response data

How We Use Your Information

We use collected information for the following purposes:

  • Service Delivery: Provide and maintain our cybersecurity services, monitoring, and threat detection
  • Security Operations: Identify and respond to security threats, vulnerabilities, and incidents
  • Communication: Send service updates, security alerts, and support responses
  • Improvement: Analyze usage patterns to enhance our services and develop new features
  • Compliance: Meet legal obligations and industry security standards
  • Research: Conduct anonymized security research and threat analysis

Data Sharing and Disclosure

We do not sell your personal information. We may share data only in these limited circumstances:

  • Service Providers: Trusted third-party vendors who assist in service delivery (under strict confidentiality agreements)
  • Legal Requirements: When required by law, court order, or government request
  • Security Threats: To protect against fraud, abuse, or security threats affecting our users or services
  • Business Transfers: In connection with mergers, acquisitions, or asset sales
  • With Consent: When you explicitly authorize data sharing

Data Security

We implement industry-leading security measures to protect your data:

  • End-to-end encryption for data in transit and at rest
  • Zero-trust architecture with least-privilege access controls
  • Regular security audits and penetration testing
  • Multi-factor authentication for all accounts
  • Continuous monitoring and threat detection
  • Secure data centers with SOC 2 Type II certification
  • Encrypted backups with geographic redundancy

While we employ comprehensive security measures, no system is entirely immune to risks. We continuously improve our defenses to stay ahead of emerging threats.

Data Retention

We retain personal data only as long as necessary to fulfill the purposes outlined in this policy or as required by law. Security logs and incident data may be retained longer for compliance and forensic analysis. Upon account termination, personal data is deleted within 90 days unless retention is legally required.

Your Rights

Depending on your jurisdiction, you may have the following rights:

  • Access: Request a copy of your personal data
  • Correction: Update or correct inaccurate information
  • Deletion: Request deletion of your personal data
  • Portability: Receive your data in a machine-readable format
  • Restriction: Limit how we process your data
  • Objection: Object to certain data processing activities
  • Opt-out: Unsubscribe from marketing communications

To exercise these rights, contact privacy@duckurity.com.

Cookies and Tracking

We use cookies and similar technologies for:

  • Essential: Authentication and security features
  • Functional: User preferences and settings
  • Analytics: Usage patterns and performance metrics
  • Security: Fraud detection and threat prevention

You can control cookie preferences through your browser settings. Disabling cookies may limit functionality.

International Data Transfers

Your data may be processed in countries outside your residence. We ensure adequate protections through standard contractual clauses, adequacy decisions, or other approved mechanisms. All international transfers comply with applicable data protection laws.

Children's Privacy

Our Services are not directed to individuals under 18. We do not knowingly collect personal information from children. If we discover we have inadvertently collected such data, we will delete it promptly.

Changes to This Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. Material changes will be communicated via email or prominent website notices at least 30 days before taking effect. Your continued use of our Services after changes indicates acceptance.

Contact Us

For privacy-related questions, concerns, or requests:

See also: Terms & Conditions Security Policy