Privacy Policy

This Privacy Policy describes how Khalifa Digital Security ("we", "us", or "our") collects, uses, and protects information when you use our website and services (the "Service").

By using the Service, you agree to the collection and use of information in accordance with this Privacy Policy.

1. Information We Collect

We aim to collect the minimum amount of information necessary to operate the Service.

Information you provide

  • Email address (for account access and notifications)
  • Website or domain names submitted for monitoring
  • Optional information provided through support or contact forms
  • Information shared in connection with professional services requests (e.g., business context, system descriptions, access credentials if applicable)

Information collected automatically

  • Basic usage data (pages visited, actions taken)
  • IP address and browser information (for security and abuse prevention)
  • Timestamps and log data related to scans and monitoring activity

2. How We Use Information

We use collected information to:

  • Provide and operate the Service, including automated scanning and monitoring
  • Deliver professional services such as vulnerability remediation, penetration testing, consulting, and training
  • Deliver alerts, reports, and notifications
  • Process payments and manage subscriptions
  • Improve reliability, performance, and usability
  • Prevent abuse, fraud, or unauthorized use

We do not sell your personal data.

3. Security Scanning Data

When you submit a website or domain, the Service performs automated, external checks against publicly accessible information.

Scan results may include technical metadata such as configuration details, response headers, or availability signals. This data is used solely to generate monitoring results for your account.

4. Professional Services Data

When you engage our professional services (such as penetration testing, vulnerability remediation, or consulting), we may collect additional information necessary to deliver those services. This may include system architecture details, access credentials, and technical documentation.

Such information is used exclusively for the agreed-upon engagement and is not retained beyond the service period unless required for follow-up or explicitly agreed otherwise.

5. Payment Information

Payment processing is handled by Stripe. We do not store your credit card details. Stripe may collect and process payment information in accordance with their own privacy policy.

6. Third-Party Services

We may use third-party services and APIs to help operate the Service, including security scanning providers, hosting infrastructure, payment processors, analytics, and email delivery services.

These third parties may process limited data on our behalf and are contractually required to protect it.

7. Data Retention

We retain information only for as long as necessary to provide the Service or comply with legal obligations. Data associated with professional service engagements is retained only for the duration of the engagement plus any agreed follow-up period.

You may request deletion of your account and associated data at any time, subject to reasonable retention requirements.

8. Data Security

We implement reasonable technical and organizational measures to protect information against unauthorized access, alteration, or loss.

However, no system can be guaranteed to be completely secure, and use of the Service is at your own risk.

9. Your Rights

Depending on your location, you may have rights regarding access, correction, or deletion of your personal data.

Requests can be submitted via the contact information below.

10. Children’s Privacy

The Service is not intended for use by individuals under the age of 18. We do not knowingly collect personal data from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated date.

12. Contact

For questions regarding this policy, please contact us through the website.