← Back to Home

Privacy Policy

Effective Date: June 1, 2025 Last Updated: June 21, 2026

1. Introduction

Welcome to Cipher PRO LLC ("Company," "we," "us," or "our"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website ciphrr.com (the "Site") and use our cybersecurity services, including KaliForge and CipherHub (collectively, the "Services").

By accessing the Site or using our Services, you agree to the collection and use of information in accordance with this policy. If you do not agree with the terms of this Privacy Policy, please do not access the Site or use our Services.

Important: As a cybersecurity company, we maintain the highest standards of data protection. All personal data is encrypted at rest and in transit using industry-standard AES-256 encryption and TLS 1.3 protocols.

2. Information We Collect

2.1 Personal Information You Provide

We may collect personal information that you voluntarily provide to us when you:

  • Fill out our contact form (name, email address, subject, and message content)
  • Register for an account to access our Services
  • Subscribe to our newsletter or marketing communications
  • Purchase a subscription or service plan
  • Communicate with us via email, WhatsApp, or other channels
  • Request a security assessment or consultation

This information may include:

  • Identity Data: Full name, job title, company name
  • Contact Data: Email address, phone number, mailing address
  • Financial Data: Payment card details, billing address (processed securely through Stripe)
  • Technical Data: IP address, browser type, operating system, device information
  • Usage Data: Information about how you use our Site and Services

2.2 Information Collected Automatically

When you visit our Site, we automatically collect certain information, including:

  • IP address and geolocation data
  • Browser type and version
  • Operating system and platform
  • Pages visited, time spent on pages, and navigation paths
  • Referring website or source
  • Device identifiers and characteristics

2.3 Information from Third Parties

We may receive information about you from third parties, including:

  • Payment Processors: Stripe provides us with transaction confirmation details (but never your full card number)
  • Analytics Providers: Aggregated usage data about Site visitors
  • Security Partners: Threat intelligence data relevant to our Services

3. How We Use Your Information

We use the information we collect for the following purposes:

Purpose Legal Basis
To provide and maintain our Services Performance of contract
To process payments and subscriptions Performance of contract
To respond to your inquiries and contact form submissions Legitimate interest
To send security alerts and service notifications Legitimate interest
To improve our Site and Services Legitimate interest
To detect and prevent fraud or unauthorized access Legal obligation / Legitimate interest
To comply with legal obligations Legal obligation
To send marketing communications (with consent) Consent

4. Payment Processing

We use Stripe, Inc. as our third-party payment processor. When you make a purchase:

  • Your payment information is transmitted directly to Stripe over an encrypted connection
  • We never store, process, or have access to your full credit card number, CVV, or bank account details
  • Stripe is PCI-DSS Level 1 certified — the highest level of certification available
  • We receive only a transaction confirmation, last four digits of your card, and billing information necessary for our records

For more information, please review Stripe's Privacy Policy.

5. Data Sharing and Disclosure

We do not sell, rent, or trade your personal information. We may share your data only in the following circumstances:

  • Service Providers: Trusted third parties who assist us in operating our Services (e.g., Stripe for payments, email service providers, cloud hosting)
  • Legal Compliance: When required by law, subpoena, court order, or government regulation
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred
  • Protection of Rights: To protect our rights, property, safety, or the rights of our users and the public
  • With Your Consent: When you explicitly authorize us to share your data

6. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience:

  • Essential Cookies: Required for the Site to function properly (session management, security tokens)
  • Preference Cookies: Remember your settings like theme preference (dark/light mode)
  • Analytics Cookies: Help us understand how visitors interact with our Site

You can control cookie preferences through your browser settings. Disabling certain cookies may limit Site functionality.

7. Data Security

As a cybersecurity company, security is at the core of everything we do. We implement industry-leading measures to protect your data:

  • Encryption: All data is encrypted in transit (TLS 1.3) and at rest (AES-256)
  • Access Controls: Strict role-based access controls and multi-factor authentication for all internal systems
  • Infrastructure: Hosted on AWS with enterprise-grade security, DDoS protection, and automated threat detection
  • Monitoring: 24/7 security monitoring and intrusion detection systems
  • Audits: Regular security assessments and penetration testing of our own infrastructure
  • Incident Response: Comprehensive incident response plan with 24-hour breach notification commitment

8. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy:

  • Account Data: Retained for the duration of your account plus 30 days after deletion
  • Transaction Data: Retained for 7 years as required by tax and financial regulations
  • Contact Form Submissions: Retained for 2 years unless a business relationship is established
  • Analytics Data: Aggregated and anonymized after 26 months
  • Security Logs: Retained for 1 year for forensic analysis capabilities

9. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Right of Access: Request a copy of the personal data we hold about you
  • Right to Rectification: Request correction of inaccurate or incomplete data
  • Right to Erasure: Request deletion of your personal data ("right to be forgotten")
  • Right to Restriction: Request limitation of processing of your data
  • Right to Portability: Request transfer of your data in a machine-readable format
  • Right to Object: Object to processing based on legitimate interests or direct marketing
  • Right to Withdraw Consent: Withdraw previously given consent at any time

To exercise any of these rights, contact us at info@ciphrr.com. We will respond to your request within 30 days.

10. International Data Transfers

Our servers are located in the United States. If you are accessing our Site from outside the United States, please be aware that your data may be transferred to, stored, and processed in the United States where our servers are hosted. We ensure appropriate safeguards are in place, including standard contractual clauses, to protect your data during international transfers.

11. Children's Privacy

Our Services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we discover that we have collected data from a child under 18, we will promptly delete that information. If you believe a child has provided us with personal data, please contact us immediately.

12. Third-Party Links

Our Site may contain links to third-party websites, including our product CipherHub at cipherhub.pro. We are not responsible for the privacy practices of these external sites. We encourage you to review the privacy policies of any third-party sites you visit.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by posting the updated policy on our Site with a new "Last Updated" date. Your continued use of our Site after changes are posted constitutes acceptance of the updated policy.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: