This Privacy Policy explains how RiskInnovate Inc. ("RiskInnovate", "we", "us") collects, uses, and shares information in the course of providing cybersecurity audit services and operating riskinnovate.com. A full, signed-off version is being prepared with external counsel ahead of GA.
1. Information we collect
We process information you provide directly (e.g., contact form submissions, scoping calls), telemetry strictly required to deliver audit deliverables, and standard server logs for security and abuse prevention. Audit findings and any sensitive configuration data you submit remain confidential to your engagement.
2. How we use information
To deliver and improve the contracted audit, to communicate about your engagement, and to meet legal or regulatory obligations. We do not sell personal information.
3. Sub-processors and data residency
A current list of sub-processors and the regions in which audit data is stored is available on request. We support EU and US data-residency commitments for enterprise customers.
4. Your rights
If you are located in the EU/UK or California, you have rights under GDPR and CCPA to access, correct, delete, and port personal information we hold about you. Send requests to privacy@riskinnovate.com.
5. Contact
For privacy questions, contact privacy@riskinnovate.com. For general inquiries, contact contact@riskinnovate.com.
This page is a placeholder while the full GDPR/CCPA-aligned policy is finalised. It is not legal advice. The signed version will replace this content prior to general availability.