HelixLock is committed to respecting privacy and protecting personal data. This Privacy Policy explains how we collect, use, and safeguard information in compliance with applicable privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).
Scope
This policy applies to visitors, prospects, clients, and any individual who interacts with HelixLock Security through our website, communications, or services.
Personal Data We Collect
We collect only minimal personal data, and only when voluntarily provided.
This may include:
- Name
- Business name
- Email address
- Phone number
- Information included in messages or service requests
We do not intentionally collect sensitive personal data.
Data We Do Not Collect or Sell
We do not:
- Sell personal data
- Share personal data for advertising or marketing
- Use behavioral profiling
- Engage in automated decision-making
Your data is not monetized. Period.
Automatically Collected Technical Data
Our website may collect limited technical information via standard server logs, including:
- IP address
- Browser and device type
- Access timestamps
- Pages accessed
This data is used solely for:
- Security monitoring
- Fraud prevention
- Performance and reliability
Legal Basis (GDPR): Legitimate interest in maintaining a secure and functional website.
Cookies and Tracking Technologies
We do not use advertising or tracking cookies.
Any cookies used are:
- Strictly necessary for website functionality or security
You may disable cookies via browser settings.
Legal Bases for Processing (GDPR)
We process personal data under the following lawful bases:
- Consent – when you voluntarily contact us
- Contractual necessity – to provide requested services
- Legitimate interests – for security, fraud prevention, and service operation
How We Use Personal Data
We use personal data only to:
- Respond to inquiries
- Provide contracted services
- Communicate regarding business matters
- Maintain security and operational integrity
We do not send unsolicited marketing communications.
Data Sharing and International Transfers
We do not share personal data with third parties except:
- When required by law
- To protect legal rights or prevent harm
If data is transferred outside your jurisdiction, reasonable safeguards are applied in accordance with GDPR requirements.
Data Retention
Personal data is retained only as long as necessary to:
- Fulfill business purposes
- Meet legal obligations
- Resolve disputes
- Enforce agreements
Your Rights Under GDPR (EU/EEA Residents)
You have the right to:
- Access your personal data
- Correct inaccurate data
- Request deletion (“right to be forgotten”)
- Restrict or object to processing
- Request data portability
- Withdraw consent at any time
Requests may be submitted using the contact details below.
Your Rights Under CCPA (California Residents)
You have the right to:
- Know what personal information is collected
- Request deletion of personal information
- Opt out of the sale of personal information
We do not sell personal information.
We will not discriminate against you for exercising your rights.
Security Measures
We implement safeguards aligned with industry standards to protect your data. We use end-to-end encryption (AES-256 at rest, TLS 1.2 in transit) and never share your data with third parties. All data is processed in isolated, single-tenant environments. Please see our Security Policy for more details.
Policy Updates
We may update this Privacy Policy periodically. Updates will be posted with a revised effective date.
Contact Information / Data Requests
Please reach out to us at security@helixlocksecurity.com to request more information or data deletion request.