Privacy Policy

Effective Date: May 1, 2025

Com‑Sec LLC ("Com‑Sec," "we," "us," or "our") is a cybersecurity consulting firm that offers security and compliance services to startups and growth-stage companies. This Privacy Policy describes how we collect, use, and protect your personal information when you:

●     Visit our website at https://com-sec.io

●     Submit inquiries or engage with us through our contact form

●     Interact with us as part of receiving our consulting services

We encourage you to read this policy to understand how your data is handled. If you have any questions or concerns, feel free to contact us at privacy@com-sec.io.

1. What Information Do We Collect?

Com‑Sec collects limited personal information to provide and improve our services, maintain security, and respond to your inquiries. Below is an overview of the types of information we may collect.

1.1 Information You Provide to Us

When you contact us through our website or communicate directly with our team, you may choose to provide certain personal information, including:

●     Name

●     Email address

●     Phone number

●     Job title

●     Company name

We do not store this information in a formal internal database. When you fill out a contact form on our site, your message is securely converted into an email and delivered to our team’s inbox. We use this information solely to respond to your inquiry or to follow up as necessary.

Note: We do not collect or process sensitive personal information (such as financial, health, or government ID data).

We ask that all information you provide be accurate and up to date.

1.2 Information Collected Automatically

When you visit https://com-sec.io, we may automatically collect limited technical data through standard website analytics tools. This information helps us maintain and improve our website’s security and performance. Data collected may include:

●     IP address

●     Browser type and version

●     Device type and operating system

●     Pages visited and time spent

●     Referring or exit URLs

This data does not reveal your identity and is used in aggregate for system diagnostics, usage analysis, and service improvement.

1.3 Cookies and Tracking Technologies

Com‑Sec uses essential cookies and basic analytics tools to understand how visitors interact with our website and ensure core functionality.

We do not use marketing, targeting, or advertising cookies.

Where required by law, we display a cookie banner allowing you to manage your preferences.

To manage your cookie preferences, please use the settings panel shown in the banner upon your first visit. You can also adjust your browser settings to block or delete cookies at any time.

2. How We Process Your Information?

We use the personal and technical information we collect for limited and specific purposes that support your interaction with Com‑Sec, including:

●     To respond to your inquiries. We use the information you provide via our contact form to address your questions or requests.

●     To assess service interest. We may analyze submitted inquiries to understand interest in our security and compliance offerings.

●     To improve website experience. Technical data helps us maintain, secure, and enhance the performance of our website.

●     To maintain internal records. We retain limited correspondence for audit, tracking, or operational purposes where appropriate.

We do not use your information for marketing without your express consent, and we do not engage in automated decision-making or profiling based on the data we collect.

In jurisdictions like EEA or UK where a legal basis is required to process personal data, we rely on the following:

●     Consent – when you contact us or request information

●     Legitimate interests – to operate and improve our website and services

●     Legal obligation – when required to comply with applicable laws

3. How We Share Your Information?

We do not sell, rent, or trade your personal information.

We may share your information only under the following limited circumstances:

●     Legal requirements: We may disclose your information when required to comply with applicable laws, regulations, legal processes, or government requests.

●     Business transactions: In the event of a merger, acquisition, or sale of all or a portion of Com‑Sec’s assets, your information may be transferred as part of the transaction.

We do not engage third-party vendors to process, host, or manage personal data submitted through our website.

4. How Do We Keep Your Information Safe?

We implement appropriate technical and organizational security measures to help safeguard the personal information we collect and process.

These measures include:

●     Encryption of data in transit (such as TLS)

●     Access controls and user authentication

●     Internal security procedures and periodic policy reviews

While we take steps to protect your information, no method of transmission over the internet or method of electronic storage is fully secure. Therefore, we cannot guarantee that unauthorized third parties will never gain access to your data.

Transmission of information to and from our website is at your own risk. We recommend accessing our services only from secure environments.

5. How Long We Keep Your Information?

We retain personal data only for as long as necessary to fulfill the purposes described in this Privacy Policy or to meet applicable legal, regulatory, or contractual obligations.

If you contact us through our website but do not engage our services, we typically retain your information within our email system for no longer than 12 months—unless retention is required for business, legal, or compliance reasons.

When data is no longer needed, we take steps to securely delete or archive it in accordance with our internal data retention guidelines.

6. What Are Your Privacy Rights?

You have certain rights regarding your personal information, depending on your location and the nature of your interaction with Com‑Sec.

6.1 Access and Correction

You may request access to the personal information we hold about you, or request corrections to keep your data accurate and up to date. To do so, contact us at privacy@com-sec.io.

6.2 Opt-Out of Communications

You may opt out of receiving marketing communications at any time by:

●     Clicking the unsubscribe link in our emails, or

●     Contacting us directly at privacy@com-sec.io

Please note, we may still send you essential service-related messages, such as updates related to a service engagement.

6.3 Region-Specific Rights

If you are located in the European Economic Area (EEA), United Kingdom (UK), Switzerland, or Canada, you may have additional rights under applicable data protection laws. These may include the right to:

●     Request deletion of your personal data

●     Restrict or object to how we process your data

●     Request data portability (where technically feasible)

●     Withdraw consent where processing is based on consent

●     File a complaint with your local data protection authority

We will respond to your request in accordance with the privacy laws applicable to your jurisdiction.

7. Do United States Residents Have Specific Privacy Rights?

If you are a resident of California, you have specific rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA). This section explains those rights and how you can exercise them.

7.1 What Personal Information We Collect

We collect limited personal information to operate our website and respond to service inquiries. The table below outlines the categories of personal data defined by California law and whether we’ve collected them in the past 12 months:

Category Examples Collected

A. Identifiers Name, email address, IP address Yes

B. Customer Records Job title, company name, phone number Yes

C. Protected Characteristics Age, gender, ethnicity No

D. Commercial Information Purchase history, transaction records No

E. Biometric Information Fingerprints, face scans No

F. Internet/Network Activity Browser type, device info, pages visited Yes

G. Geolocation Data Approximate location via IP Yes

H. Sensory Data Audio/video recordings No

I. Professional/Employment Info Job title, company info (as submitted by users) Yes

J. Education Info Student records No

K. Inferences User profiles or behavioral predictions No

L. Sensitive Personal Information Government ID, financial info, precise location No

M. Other Personal Info Contact form messages or support requests Yes

We do not sell or share your personal information for advertising or marketing purposes.

7.2 Your Rights Under California Law

You have the right to:

●     Know the categories and specific pieces of personal information we collect

●     Access a copy of your personal data

●     Delete your personal information, with some legal exceptions

●     Correct inaccurate personal data

●     Opt out of the sale or sharing of personal information (Note: we do not sell or share your data)

●     Limit use of sensitive personal information (Note: we do not collect this data)

●     Not be discriminated against for exercising your rights

7.3 How to Exercise Your Rights

You can submit a request by contacting us at privacy@com-sec.io

7.4 Request Verification

We may verify your identity before processing any request. If an authorized agent acts on your behalf, we may request written authorization.

7.5 Appeals

If your state allows for privacy appeals, you may appeal our decision by emailing privacy@com-sec.io.

7.6 California “Shine the Light” Disclosure

Under California Civil Code §1798.83, you may request information once per year about personal data shared for third-party marketing purposes.
 Com‑Sec does not share your data for such purposes. If this changes, we will update this policy and provide an opt-out option.

8. Do We Collect Information From Minors?

We do not knowingly collect, solicit, or process personal information from individuals under the age of 18. Our website and services are intended for business and professional use only.

By using our services, you confirm that you are at least 18 years old or that you are the parent or legal guardian of a minor and consent to their use of our services. If we learn that we have inadvertently collected data from anyone under 18 without proper authorization, we will take appropriate steps to delete that information.

If you believe we may have collected personal information from a child under the age of 18, please contact us at privacy@com-sec.io.

9. Do We Make Updates To This Policy?

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or business operations. When we do, we will revise the “Effective Date” at the top of this page.

If we make material changes to how we handle your personal information, we may notify you by posting a notice on our website or contacting you directly. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

10. How Do You Contact Us?

If you have any questions or comments about this Privacy Policy or our privacy practices, you may contact us at:

Com‑Sec LLC
Email: privacy@com-sec.io
Website: https://com-sec.io