Privacy Policy

Introduction

Kepler Security, LLC ("we," "us," or "our"), a Texas limited liability company, is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our security platform and website.

Information We Collect

Account Information

When you create an account, we collect:

  • Name and email address
  • Company name and organization details
  • Password (encrypted and never stored in plaintext)
  • Billing and payment information (processed through third-party payment processors)

Platform Usage Data

When you use our platform, we automatically collect:

  • Security findings and vulnerability data from your integrated tools
  • Usage metrics and feature interactions
  • Log data including IP addresses, browser type, and device information
  • Performance and diagnostic data

How We Use Your Information

We use the collected information to:

  • Provide, maintain, and improve our security platform
  • Process and analyze security findings across your tools
  • Send administrative and product updates
  • Respond to your requests and provide customer support
  • Monitor and analyze platform usage and trends
  • Detect, prevent, and address technical issues and security threats
  • Comply with legal obligations

Data Security

We implement industry-standard security measures to protect your data:

  • AES-256 encryption for data at rest
  • TLS 1.3 encryption for data in transit
  • Regular security audits and penetration testing
  • SOC 2 Type II certified infrastructure
  • Role-based access controls (RBAC)
  • Multi-factor authentication (MFA) support

Data Sharing and Disclosure

We do not sell your personal information. We may share your data only in these circumstances:

  • With your consent: When you explicitly authorize us to share specific information
  • Service providers: With third-party vendors who help us operate our platform (e.g., cloud hosting, payment processing)
  • Legal requirements: When required by law, subpoena, or legal process
  • Business transfers: In connection with a merger, acquisition, or sale of assets

Data Retention

We retain your information for as long as your account is active or as needed to provide services. When you close your account, we will delete or anonymize your data within 90 days, except where we must retain it for legal or regulatory compliance.

Your Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your personal data
  • Portability: Request your data in a machine-readable format
  • Opt-out: Unsubscribe from marketing communications

To exercise these rights, contact us at privacy@keplersec.com.

Cookies and Tracking

We use cookies and similar technologies to improve your experience, analyze usage, and deliver relevant content. You can control cookie preferences through your browser settings.

International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place to protect your data in compliance with applicable data protection laws.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through our platform. Continued use of our services after changes constitutes acceptance of the updated policy.

Governing Law

This Privacy Policy is governed by and construed in accordance with the laws of the State of Delaware, without regard to its conflict of law provisions.

No Warranty

Kepler Security, LLC makes no warranty, express or implied, with respect to the operation of the Service or the accuracy, completeness, or reliability of any information provided through the Service.

Contact Us

If you have questions about this Privacy Policy, please contact us at privacy@keplersec.com.