PRIVACY POLICY

Last updated: March 2026

1. What We Collect

• Account information: email address and hashed password
• API usage data: call counts, timestamps, response times
• Trust scoring inputs: IP addresses, email addresses, behavioral signals submitted via API
• Behavioral data: typing speed, mouse patterns, scroll behavior — collected via JS snippet

2. How We Use It

• To provide and improve the fraud detection Service
• To calculate trust scores for your users
• To enforce rate limits and detect abuse
• To send account and billing notifications

3. Data Retention

Scan logs are retained for 90 days then automatically deleted. Account data is retained while your account is active. You may request deletion at any time by emailing support@gloqsec.com.

4. Data Sharing

We do not sell personal data. We share data only with:

• Paddle.com — for payment processing

5. Security

All behavioral data is encrypted using AES-256-GCM before transmission. API keys are stored as references only. Passwords are hashed using bcrypt. All connections use TLS 1.2+.

6. Your Rights

You have the right to access, correct, or delete your personal data. Contact support@gloqsec.com to exercise these rights. We respond within 30 days.

7. Cookies

We use a single session cookie for authentication. No tracking or advertising cookies are used.

8. Contact

Privacy questions: support@gloqsec.com