Draft privacy summary
Flagpole Security may collect contact information, company information, website/domain information, report access records, service requests, support messages, billing references, analytics events, and technical information needed to provide security reporting and related services.
Report data may include domain names, affected workflows, safe evidence summaries, risk ratings, remediation notes, service history, ownership status, authorization records, and account activity connected to report access or service delivery.
Information is used to provide reports, verify account ownership, respond to support requests, deliver services, maintain security, prevent misuse, improve the portal, and keep required business records.
Sensitive report materials should be limited to authorized users and internal operators who need the information to provide the service. Public pages should not expose exploit detail or customer-specific evidence.
Users may request correction, outreach opt-out, account deletion, or removal from outreach lists through support. Some records may need to be retained for security, billing, legal, audit, or abuse-prevention reasons.