1. Introduction

Cluster AI, Inc. ("Titan Security," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our security testing platform and related services (collectively, the "Services").

Please read this Privacy Policy carefully. By accessing or using our Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.

2. Information We Collect

2.1 Information You Provide

We collect information you provide directly to us, including:

• Account Information: Name, email address, company name, job title, and password when you create an account.
• Payment Information: Billing address, payment card details (processed securely through our payment processors).
• Communication Data: Information you provide when contacting our support team or participating in surveys.
• Code and Infrastructure Data: Source code, configuration files, infrastructure details, and other technical information you submit for security analysis.

2.2 Information Collected Automatically

When you use our Services, we automatically collect:

• Usage Data: Information about how you interact with our Services, including features used, scan configurations, and security findings.
• Device Information: IP address, browser type, operating system, device identifiers, and other technical information.
• Log Data: Server logs, error reports, and performance metrics.
• Cookies and Tracking: We use cookies and similar technologies to enhance your experience and analyze usage patterns.

3. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve our security testing Services.
• Process and complete transactions, including security scans and vulnerability assessments.
• Send transactional communications, including confirmations, security alerts, and technical notices.
• Respond to your comments, questions, and support requests.
• Analyze usage patterns to improve our AI-powered security analysis.
• Detect, prevent, and address technical issues, fraud, and security threats.
• Comply with legal obligations and enforce our terms of service.
• Send marketing communications (with your consent, where required).

4. Data Security

We implement industry-standard security measures to protect your data, including:

• Encryption of data in transit (TLS 1.3) and at rest (AES-256).
• Regular security audits and penetration testing of our own systems.
• Access controls and authentication mechanisms.
• Employee security training and background checks.
• Secure code review practices for our own development.

Your source code and infrastructure data submitted for security analysis are processed in isolated, ephemeral environments and are automatically deleted after analysis is complete, unless you explicitly choose to retain results.

5. Data Sharing and Disclosure

We may share your information in the following circumstances:

• Service Providers: With third-party vendors who perform services on our behalf (e.g., cloud hosting, payment processing, analytics).
• Legal Requirements: When required by law, court order, or governmental authority.
• Business Transfers: In connection with a merger, acquisition, or sale of assets.
• With Your Consent: When you explicitly authorize us to share your information.

We do not sell your personal information or share your source code with third parties for their own purposes.

6. Data Retention

We retain your information for as long as your account is active or as needed to provide Services. Scan results and security findings are retained according to your account settings. You may request deletion of your data at any time, subject to legal retention requirements. Upon account deletion, we will delete or anonymize your data within 30 days, except where retention is required by law.

7. Your Rights and Choices

Depending on your location, you may have the following rights:

• Access: Request a copy of your personal data.
• Correction: Request correction of inaccurate data.
• Deletion: Request deletion of your personal data.
• Portability: Request a portable copy of your data.
• Opt-Out: Unsubscribe from marketing communications.
• Restriction: Request restriction of processing in certain circumstances.

To exercise these rights, contact us at [email protected].

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place, including Standard Contractual Clauses where required, to protect your data in accordance with applicable laws.

9. Children's Privacy

Our Services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal information, please contact us.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date. Your continued use of our Services after such modifications constitutes your acknowledgment and acceptance of the updated Privacy Policy.

11. Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us at: