Privacy Policy

At Eresus Security, we place the highest priority on data privacy and security. This policy explains how your data is collected, processed, and protected while we provide our offensive cybersecurity services.

1. Data Collection and Processing

Within the scope of security tests conducted with our clients, we only collect the minimum required data to perform testing, generate reports, and fulfill our contractual obligations. Personal and corporate data are protected under strict privacy principles.

2. Data Security and Encryption

All operational data, including vulnerability reports, scope details, and client communications, are protected with end-to-end encryption. Data at rest is encrypted via AES-256, and data in transit is secured using TLS 1.3.

3. Data Retention and Destruction

Upon the conclusion of security testing and report delivery, all sensitive technical data, database samples, and testing payloads collected during the engagement are permanently erased using secure data wiping protocols. Personal data processed are destroyed at the end of legally required retention periods.

4. Cookies and Analytics

Eresus Security avoids aggressive tracking or data collection practices that harm the user experience. We exclusively use basic functional and minimal analytic cookies on our website.