SecureHunt
Privacy & Security

PrivacyPolicy

Your privacy and data security are our top priorities. Learn how we protect and handle your information.

Last Updated: January 15, 2025Effective Date: January 15, 2025

Introduction

SecureHunt ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our exclusive bug bounty platform and related services.

By accessing or using SecureHunt, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, do not use our services.

Information We Collect

Personal Information

We may collect the following types of personal information:

  • Identity information: Name, username, email address, phone number
  • Professional information: Company affiliation, job title, expertise areas
  • Verification information: Government-issued ID, professional certifications
  • Financial information: Payment details, tax information, banking details
  • Security information: Background check results, reputation scores

Technical Information

  • Device information: IP address, browser type, operating system
  • Usage information: Pages visited, time spent, click patterns
  • Security logs: Login attempts, access patterns, security events
  • Communication data: Messages, reports, support interactions

How We Use Your Information

We use collected information for the following purposes:

  • Platform access and account management
  • Identity verification and background screening
  • Matching researchers with appropriate programs
  • Processing payments and managing rewards
  • Facilitating secure communication between parties
  • Monitoring platform security and preventing fraud
  • Improving our services and user experience
  • Complying with legal obligations and regulations
  • Sending important updates and notifications

Information Sharing and Disclosure

Limited Sharing

We may share your information in the following circumstances:

  • With participating companies (limited to necessary information for program participation)
  • With third-party service providers who assist in our operations
  • With law enforcement when required by law or to protect rights and safety
  • In connection with business transfers or acquisitions
  • With your explicit consent for specific purposes

What We Don't Share

  • We never sell your personal information to third parties
  • We don't share sensitive security research details without authorization
  • We maintain strict confidentiality of vulnerability information
  • We don't use your data for unauthorized marketing purposes

Data Security

We implement industry-leading security measures to protect your information:

  • End-to-end encryption for sensitive communications
  • Multi-factor authentication for all accounts
  • Regular security audits and penetration testing
  • SOC 2 Type II compliance and ISO 27001 certification
  • Secure data centers with 24/7 monitoring
  • Employee background checks and security training
  • Incident response procedures and breach notification protocols

Data Retention

We retain your information for different periods based on the type of data:

  • Account information: Retained while your account is active plus 7 years
  • Transaction records: Retained for 7 years for tax and legal compliance
  • Security logs: Retained for 2 years for security monitoring
  • Communication data: Retained for 3 years or as required by law
  • Marketing preferences: Retained until you withdraw consent

Your Privacy Rights

Depending on your location, you may have the following rights:

  • Access: Request copies of your personal information
  • Rectification: Request correction of inaccurate information
  • Erasure: Request deletion of your personal information
  • Portability: Request transfer of your data to another service
  • Restriction: Request limitation of processing activities
  • Objection: Object to certain types of processing
  • Withdraw consent: Withdraw previously given consent

To exercise these rights, contact us at privacy@securehunt.io. We will respond within 30 days.

International Data Transfers

SecureHunt operates globally, and your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for international transfers, including:

  • Standard Contractual Clauses approved by regulatory authorities
  • Adequacy decisions by relevant data protection authorities
  • Appropriate technical and organizational security measures
  • Regular assessments of transfer mechanisms and protections

Children's Privacy

SecureHunt is not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18, we will take steps to delete such information promptly.

Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. When we make changes:

  • We will post the updated policy on our website
  • We will update the "Last Updated" date
  • We will notify users of material changes via email or platform notification
  • Continued use of our services constitutes acceptance of the updated policy

Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us:

Email: privacy@securehunt.io

Phone: +1 (555) 123-SECURE

Mail: SecureHunt Privacy Office
123 Security Boulevard
San Francisco, CA 94102

Data Protection Officer: dpo@securehunt.io