Privacy Policy

Last updated: [22/06/2025]

At CraveCraft, we are committed to protecting your privacy and ensuring the security of your data. This Privacy Policy describes how we collect, use, disclose and protect your information when you use our AI-powered cybersecurity services, including CraveCraft Sentinel.

By using our Services, you agree to the terms set forth in this Policy. If you do not agree, please refrain from accessing or using our Platform.

  1. Information We Collect.
  2. Data You Provide.
  • Account Information: Name, email, company details, and contact information when you register.
  • Payment Details: Billing information (securely processed by third-party payment processors).
  • Support and Communication: Records of inquiries, feedback, or support requests.
  1. Data We Collect Automatically.
  • Device and Usage Data: IP address, browser type, operating system, timestamp, and interactions with our Services.
  • Security Telemetry: Behavioral analytics data from endpoints (eg process activity, file changes, network connections) to detect threats.
  • Cookies and Tracking: We use cookies and similar technologies to improve the functionality and security of the Service.
  1. Third Party Data
  • Threat Intelligence Feeds: Anonymized data from global cybersecurity sources to enhance protection.
  • Integrated Services: If you connect third-party tools (e.g., SIEMs), we may receive related security logs.
  1. How we use your information.
  • To deliver and improve services: detect threats, respond to incidents, and improve AI models.
  • For Security: Monitor and prevent cyber threats, fraud, or unauthorized access.
  • For communications: send service alerts, updates, and support responses (opt-out available).
  • For legal compliance: fulfill regulatory obligations and enforce our terms.
  1. Sharing and Disclosure of Data

We do not sell your personal data. Information may be shared only in the following cases:

  • With your consent: For integration or certain security contributions.
  • Service Providers: Trusted vendors that support operations (eg, cloud hosting, payment processing).
  • Legal Requirements: If required by law (eg, subpoenas, regulatory requests).
  • Business Transfers: In mergers or acquisitions, with privacy protections.
  1. Data Security
  • Encryption: Data in transit and at rest using industry standard protocols (TLS, AES-256).
  • Access Controls: Strict role-based permissions for employees.
  • Anonymity: Behavioral analytics use aggregated, non-personally identifiable data where possible.
  1. Your Rights and Choices

Depending on your location (eg, GDPR, CCPA), you may:

  • Access/Delete Data: Request a copy or deletion of your personal information.
  • Opt-out: Unsubscribe from marketing emails or disable cookies (browser settings).
  • Restricted Processing: Object to the use of certain data (eg, profiling).

Contact us info@cravecraft.com To exercise these rights.

  1. International Data Transfers

Data may be processed globally but protected by safeguards such as Standard Contractual Clauses (SCCs).

  1. Retention Period

We retain data only for as long as necessary:

  • Service Delivery: Active accounts and risk history.
  • Legal Obligations: Compliance with tax, security, or audit requirements.
  1. Children’s Privacy

Our Services are not intended for users under the age of 16. We do not knowingly collect their data.

  1. Policy Updates

We may revise this policy and will notify users via email or platform alerts. Continued use constitutes acceptance.

  1. Contact Us.

For questions or requests:
 Email: [info@cravecraft.com]

CraveCraft: Defending your business with AI, transparency and trust.