Privacy Policy

Your privacy matters to us. We use no cookies or tracking — only the details you choose to share. Here's how we handle them.

Last Updated: January 1, 2025

At PentSec Pvt Ltd ("PentSec," "we," "us," or "our"), we are committed to protecting your privacy and handling your personal data with transparency and care. This Privacy Policy explains how we collect, use, disclose, and protect your information when you visit our website or engage our cybersecurity and penetration testing services. By using our website and services, you consent to the practices described in this policy.

1. Information We Collect

We only collect the information that you choose to provide directly to us. We do not use cookies, tracking technologies, or analytics that profile visitors, and we do not collect personal data automatically in the background.

Information You Provide

  • Contact details such as your full name, email address, company name, and phone number when you fill out our forms or request a quote.
  • Project details and messages you submit through our contact or consultation forms.
  • Any information shared during a security assessment engagement, subject to a separate confidentiality and engagement agreement.

2. How We Use Your Information

We use the information we collect for the following purposes:

  • To respond to your inquiries and provide requested quotes.
  • To deliver, maintain, and improve our cybersecurity and penetration testing services.
  • To communicate with you about your projects, appointments, and service updates.
  • To send relevant information, including security advisories, where you have opted in.
  • To comply with legal obligations and protect against fraudulent or unauthorized activity.

3. How We Share Your Information

PentSec does not sell, rent, or trade your personal information. We may share your data only in the following limited circumstances:

  • With trusted service providers who assist us in operating our website and delivering services, bound by confidentiality obligations.
  • When required by law, regulation, legal process, or enforceable governmental request.
  • To protect the rights, property, or safety of PentSec, our clients, or others.
  • In connection with a business transfer, such as a merger or acquisition, with appropriate safeguards.

4. Data Security

As a cybersecurity firm, data protection is at the core of what we do. We implement industry-standard technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction. These measures include encryption, access controls, secure infrastructure, and regular security assessments. However, no method of transmission over the internet is completely secure, and we cannot guarantee absolute security.

5. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this policy, comply with our legal obligations, resolve disputes, and enforce our agreements. When data is no longer required, we securely delete or anonymize it.

6. Cookies and Tracking

We do not use cookies, web beacons, fingerprinting, advertising pixels, or third-party analytics that track or profile visitors. You can browse our website without being tracked. The only information we receive is what you voluntarily submit through our forms.

7. Your Rights and Choices

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • The right to access the personal data we hold about you.
  • The right to request correction of inaccurate data.
  • The right to request deletion of your personal data.
  • The right to object to or restrict certain processing activities.
  • The right to withdraw consent at any time.
  • The right to data portability.

To exercise any of these rights, please contact us using the details provided in Section 11.

8. Third-Party Links

Our website may contain links to third-party websites or services that are not operated by us, including booking platforms and social media. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any external sites you visit.

9. Children's Privacy

Our services are intended for businesses and individuals aged 18 and over. We do not knowingly collect personal information from children under the age of 18. If you believe we have inadvertently collected such information, please contact us so we can promptly remove it.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. The updated version will be indicated by a revised "Last Updated" date at the top of this page. We encourage you to review this policy periodically.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please reach out to us:

contact@pentsec.com
DHA-2 Islamabad, Pakistan
Monday - Friday: 9:00 AM - 6:00 PM | 24/7 Emergency Response Available