Privacy Policy
1. Who we are
HashiraX (“we”, “us”, “our”) is a cybersecurity and web development firm. This Privacy Policy explains how we collect, use, and protect personal information when you visit our website, request a security scan, or engage us for services.
For privacy questions, contact privacy@hashirax.com.
2. Information we collect
- Contact information you provide via forms (name, email, company name, message contents).
- Scan input — the URL you submit to our free scanner. We do not require an account.
- Usage data — pages visited, referring URL, browser/device type, approximate location (country/region). Collected via privacy-conscious analytics.
- Cookies — strictly-necessary cookies for site function; analytics cookies only with consent (see Cookie section).
3. How we use information
- To respond to inquiries and deliver requested services.
- To run the free security scan and return a report to you.
- To improve our website and content based on aggregate usage trends.
- To comply with legal obligations.
4. Legal basis (GDPR)
If you are in the European Economic Area or the United Kingdom, we process personal data under one of the following bases: your consent, our legitimate interests (improving the site, securing it), the performance of a contract (delivering services you requested), or a legal obligation.
5. Sharing
We do not sell personal information. We share data only with: (a) service providers who process data on our behalf under written contracts (e.g. email hosting, analytics); (b) legal authorities if required by law; (c) successors in a business transfer.
6. Data security
We follow industry standards (OWASP, ISO 27001-aligned controls) to protect information. We encrypt data in transit (TLS) and at rest where applicable. We sign an NDA before any client engagement and destroy testing data on request after delivery.
7. Retention
We keep contact-form messages and engagement records for as long as needed to provide services and meet legal/accounting requirements. Scan inputs are retained for up to 30 days for audit purposes, then deleted.
8. Your rights
Depending on your jurisdiction, you may have rights to access, correct, delete, restrict or port your data, and to object to processing. To exercise these rights, email privacy@hashirax.com. EEA/UK residents can also lodge a complaint with a supervisory authority.
9. International transfers
HashiraX is registered in India. If we transfer your data across borders, we rely on appropriate safeguards (Standard Contractual Clauses or equivalent).
10. Cookies
Our website uses essential cookies for navigation only. We do not currently use third-party analytics or tracking cookies. You can manage cookies at any time via your browser settings.
11. Children
Our services are not directed at individuals under 16, and we do not knowingly collect their data.
12. Changes
We may update this policy. The “Last updated” date above will reflect the latest version. Material changes will be highlighted on the homepage.
13. Contact
HashiraX — hello@hashirax.com