Your privacy is our priority. Learn how DataSecure protects and handles your information.
Last updated: September 15, 2025
Cortex Security S.A. ("DataSecure") operates the DataSecure RDR platform for ransomware detection and response. This Privacy Policy explains how we handle your information when you use our services.
We collect information you provide directly, including account details (name, email, company), payment information, and communications with our team. Our platform automatically collects security telemetry for ransomware detection, system performance metrics, usage patterns, and technical information like IP addresses and device identifiers.
Your information enables us to deliver our security services, detect and respond to ransomware threats, provide customer support, send critical security alerts, improve our detection algorithms, and comply with legal requirements.
We protect your data using AES-256 encryption at rest and TLS 1.3 in transit, enforce multi-factor authentication and role-based access controls, maintain 24/7 security monitoring, and host exclusively in SOC 2 Type II certified EU data centers in Luxembourg and Germany.
Account data is retained during your subscription plus 30 days after termination. Security telemetry is kept for 90 days for threat analysis. All data is securely deleted after retention periods expire, except where legally required.
We never sell your personal information. We share data only with essential service providers under strict confidentiality agreements, when legally required, to prevent imminent security threats, or during business transfers with prior notice.
Under GDPR, you have the right to:
All data processing and storage occurs within the European Union. We do not transfer personal data outside the EU without appropriate safeguards.
We use only essential cookies for authentication, security, and preferences. No third-party tracking or advertising cookies are used.
We may update this policy to reflect changes in our practices or legal requirements. Material changes will be communicated via email or platform notifications.
For privacy inquiries or to exercise your rights:
Data Protection OfficerYou may also contact the Luxembourg National Commission for Data Protection (CNPD) at cnpd.public.lu.