Skip to main content
Home/Privacy Policy

Privacy Policy

Last updated: March 2026

1. Introduction

Vigil-Cyber (“we”, “us”, “our”) operates the VigilSentinel cybersecurity platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform, website, and related services (collectively, the “Services”).

By accessing or using our Services, you agree to this Privacy Policy. If you do not agree with the terms of this policy, please do not access or use our Services.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Name, email address, organisation name, job title, and password when you create an account.
  • Contact Information: Details you provide when requesting a consultation, submitting a support ticket, or contacting us.
  • Payment Information: Billing details processed through our third-party payment providers. We do not store full payment card numbers on our servers.
  • Communications: Records of correspondence when you contact our support or sales teams.

2.2 Information Collected Automatically

  • Usage Data: Pages visited, features used, scan configurations, and platform interactions.
  • Device & Browser Data: IP address, browser type, operating system, and device identifiers.
  • Log Data: Server logs including access times, error logs, and API request metadata.
  • Cookies & Similar Technologies: Session cookies for authentication and preferences. See Section 7 for details.

2.3 Security Scan Data

When you use our scanning services, the platform may process network addresses, hostnames, vulnerability findings, configuration data, and system metadata from your environment. This data is collected solely to deliver scan results to you and is stored within your dedicated tenant space.

3. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain our Services
  • Process and complete security scans, reports, and assessments
  • Authenticate users and manage account access
  • Communicate with you about your account, support requests, and service updates
  • Improve and develop new features and functionality
  • Monitor and analyse usage trends to enhance platform performance
  • Detect, prevent, and address technical issues and security threats
  • Comply with legal obligations and enforce our Terms of Service

4. Data Sharing & Disclosure

We do not sell your personal information. We may share information in the following circumstances:

  • Service Providers: Trusted third parties who assist in operating our platform (e.g., cloud hosting, email delivery, payment processing), bound by confidentiality agreements.
  • Legal Requirements: When required by law, regulation, legal process, or enforceable governmental request.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, with notice to affected users.
  • With Your Consent: When you explicitly authorise us to share information with a designated third party.

5. Data Security

We implement industry-standard security measures to protect your information, including:

  • Encryption of data in transit (TLS 1.2+) and at rest (AES-256)
  • Bcrypt password hashing with per-user salts
  • Role-based access control (RBAC) and session management
  • Regular security audits, vulnerability scanning, and penetration testing
  • Encrypted credential vault for stored secrets
  • Comprehensive audit logging of all administrative actions

While we strive to protect your data, no method of transmission or storage is 100% secure. We cannot guarantee absolute security but are committed to promptly addressing any breach in accordance with applicable laws.

6. Data Retention

We retain your personal information for as long as your account is active or as needed to provide our Services. Scan data and reports are retained according to your subscription tier and organisational retention policies. You may request deletion of your account and associated data at any time by contacting us.

7. Cookies

We use essential cookies to maintain your authenticated session and remember your preferences (e.g., theme selection). We do not use third-party advertising or tracking cookies. Our cookies are:

  • Session Cookie (VigilSentinel_session): Maintains your login session. HttpOnly, SameSite=Lax. Expires when you close your browser or after 8 hours of inactivity.
  • Theme Preference: Stored in localStorage (not a cookie) to remember your dark/light mode selection.

8. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate or incomplete data
  • Request deletion of your personal data
  • Object to or restrict processing of your data
  • Request portability of your data in a machine-readable format
  • Withdraw consent where processing is based on consent

To exercise any of these rights, contact us at [email protected].

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. Where we transfer data internationally, we ensure appropriate safeguards are in place, including standard contractual clauses approved by relevant authorities.

10. Children’s Privacy

Our Services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child, we will take steps to delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the “Last updated” date. Your continued use of the Services after any changes constitutes acceptance of the updated policy.

12. Contact Us

If you have questions or concerns about this Privacy Policy, contact us at:

Vigil-Cyber
Email: [email protected]
Phone: +44 7928 223562
Address: London, United Kingdom

Home  ·  Terms of Service  ·  Security