1. Introduction
TargetHunt ("TargetHunt," "we," "our," or "us") is committed to protecting your privacy and safeguarding the information entrusted to us.
This Privacy Policy explains how we collect, use, store, disclose, and protect information when you access our website, platform, applications, APIs, and cybersecurity assessment services (collectively, the "Services").
By using our Services, you agree to the practices described in this Privacy Policy.
2. Information We Collect
Account Information
We may collect:
- Name
- Email address
- Company name
- Job title
- Password (encrypted)
- Contact information
Customer-Provided Data
When using TargetHunt, you may provide:
- Domains and subdomains
- IP addresses
- Cloud assets
- Application URLs
- Testing scope information
- Rules of Engagement submissions
- Authorization documentation
Security Assessment Data
During assessments, we may collect:
- Asset discovery results
- DNS records
- Vulnerability findings
- Attack surface intelligence
- Risk scores
- Security reports
- Remediation status
Automatically Collected Information
We may automatically collect:
- IP address
- Device information
- Browser information
- Operating system
- Usage analytics
- Session identifiers
- Authentication logs
3. How We Use Information
We use information to:
- Provide cybersecurity services
- Verify authorization for testing
- Deliver vulnerability reports
- Improve platform functionality
- Monitor service performance
- Prevent fraud and abuse
- Comply with legal obligations
- Respond to support requests
- Maintain platform security
4. Lawful Basis for Processing
Where applicable, we process information based on:
- Contract performance
- Legitimate business interests
- Legal obligations
- User consent
6. Security of Information
TargetHunt implements industry-standard safeguards including:
While we strive to protect information, no system can guarantee absolute security.
- Encryption in transit (TLS)
- Encryption at rest
- Access controls
- Role-based permissions
- Continuous monitoring
- Security logging
- Vulnerability management
7. Data Retention
We retain information only as long as necessary.
Typical retention periods include:
| Data Type | Retention |
|---|---|
| Account Data | Account lifetime + 30 days |
| Security Reports | Up to 2 years |
| Authorization Records | Up to 5 years |
| System Logs | Up to 90 days |
| Billing Records | As required by law |
8. International Data Transfers
Information may be processed and stored in jurisdictions different from your own.
Where required, we implement appropriate safeguards for international transfers.
9. Your Rights
Depending on applicable laws, you may have the right to:
Requests may be submitted to our privacy contact address.
- Access your information
- Correct inaccurate information
- Delete personal information
- Restrict processing
- Object to processing
- Receive data portability
- Withdraw consent
11. Children's Privacy
TargetHunt is not intended for individuals under 18 years of age.
We do not knowingly collect information from children.
12. Changes to This Policy
We may update this Privacy Policy periodically.
Updated versions will be posted on this page with a revised effective date.
13. Contact Information
TargetHunt Privacy Team
Email: privacy@targethunt.io
For privacy-related inquiries, requests, or complaints, please contact us using the information above.