Features How It Works Dashboard Pricing Contact Log In to CISO AI
Legal

Privacy Policy

How CISO AI collects, uses, and protects information across our cybersecurity governance platform.

Effective date: February 7, 2026

1. Overview

CISO AI provides a cybersecurity governance and intelligence platform that helps security leaders manage risk, compliance, and reporting. This Privacy Policy describes how we handle information when you visit our website, use our platform, or contact us.

2. Information We Collect

We collect information in three main ways:

  • Information you provide: name, work email, phone, company, role, account credentials, and support requests.
  • Customer data: security program data you upload or connect, including policies, controls, evidence, risk registers, asset inventories, and compliance mappings.
  • Usage and device data: log data, IP address, browser type, device identifiers, and interactions with the website or platform.

Please avoid submitting sensitive personal information unless explicitly required for your use of the service.

3. How We Use Information

  • Provide, operate, and improve the CISO AI platform.
  • Generate dashboards, reports, and compliance insights.
  • Communicate about onboarding, updates, and support.
  • Process billing and account administration.
  • Detect and prevent fraud, abuse, or security incidents.

4. Legal Basis (where applicable)

We process information based on contract necessity (to provide the service), legitimate interests (to secure and improve the platform), and consent (for marketing communications).

5. Sharing and Disclosure

We may share information with:

  • Service providers that help us host, operate, and support the platform.
  • Payment processors and billing partners.
  • Authorities or regulators when legally required.
  • Successor entities in the event of a merger, acquisition, or asset transfer.

6. Data Retention

We retain information for as long as needed to provide the service, comply with legal obligations, resolve disputes, and enforce agreements. You may request deletion where applicable.

7. Security

We implement administrative, technical, and physical safeguards to protect information. No system can be guaranteed 100% secure; we continuously improve our security controls.

8. International Transfers

Your information may be processed in countries where our providers operate. We use appropriate contractual and technical safeguards for cross-border transfers.

9. Your Choices and Rights

Depending on your location, you may have rights to access, correct, delete, or restrict processing of your information, and to opt out of marketing communications.

10. Contact Us

If you have questions or requests about this policy, contact us at admin@cisoai.au.