GKavach - DWM Privacy Policy

Welcome to GKavach-DWM! These are the Privacy Policy of our services. Please read them carefully.

1. Introduction

GKavach-DWM (collectively referred to as “We”, or “Us”, or “Our”) is a leading provider of digital security products for users. This General Privacy Policy describes how we collect, and process personal data provided to GKavach-DWM in connection with your use of our products, services, and websites (including when you are a prospective customer, customer, or former customer (“Customer”)) that link to this policy (collectively as our “Services”). The term “personal data” refers to information that is related to an identified or identifiable natural person (aka ‘personal information’ or ‘personally identifiable information’).

At GKavach-DWM, we prioritize the privacy and security of our users. You agree to the practices described in this policy. If you do not agree, please discontinue use immediately.

"Personal data" refers to any information related to an identifiable individual, such as name, email address, IP address, and device details.
This policy also covers data collected through:

  1. GKavach-DWM SAAS.

2. Information We Collect

2.1 Personal Data You Provide

We collect personal data directly from you during interactions such as:

  1. Account Information: Name, email address, phone number, and payment details during registration.
  2. Designated Information: Data submitted for monitoring, such as email addresses, domain name or any other personal information.
  3. Verification Information: Two-Factor Authentication (2FA) codes for individual email verification and domain ownership confirmation.

2.2 Automatically Collected Data

When you use our services, we automatically collect:

  1. Usage Data: IP addresses, browser types, device models, and interaction logs.
  2. Cookies and Tracking: Data from session cookies to manage user sessions, preferences, and security.
  3. Backend Scanning Data: Our services utilize backend crawlers and proxies to monitor dark web platforms for Designated Information. This process does not involve storing or replicating entire datasets from the dark web but focuses on user-specified information.

3. How We Use Your Data?

We use the information collected for the following purposes:

3.1 Service Delivery and Maintenance

We use your data to:

  1. Monitor dark web activity for submitted Designated Information.
  2. Notify you if your data is detected in compromised datasets or black-market listings
  3. Provide account management features, such as dashboards, reports, and tickets.

3.2 Security and Compliance

We process data to:

  1. Verify ownership of Designated Information via 2FA and domain email checks.
  2. Detect, prevent, and respond to fraudulent or unauthorized activity.

3.3 Analytics and Improvements

  1. Analyze usage patterns to enhance service performance.
  2. Use aggregated, anonymized data to improve our backend crawler algorithms.

3.4 Communication

  1. Send important service updates, threat notifications, and newsletters.
  2. Users can opt out of non-essential communications at any time.

4. Sharing Your Information

We share your information only when necessary and in accordance with this Privacy Policy.

4.1 With Trusted Service Providers

We work with third-party vendors for:

  1. Hosting and managing data.
  2. Backend proxy services (e.g., Tor-based crawling).
  3. Threat intelligence integration.

4.2 For Legal or Regulatory Compliance

We may share your information:

  1. To comply with applicable laws, regulations, or legal processes.
  2. To protect the rights, safety, and security of our users or third parties.

4.3 Business Transfers

In the event of mergers, acquisitions, or sales, your personal data may be transferred to the new entity, subject to the terms of this policy.

5. Data Retention

We retain personal data only as long as necessary for:

  1. Service delivery and operational needs.
  2. Legal compliance or dispute resolution.

After the retention period, personal data is securely deleted.

6. Data Security

We employ industry-standard measures to protect your data, including:

  1. Encryption: All data in transit and at rest is encrypted.
  2. Access Controls: Access is restricted to authorized personnel only.
  3. Monitoring: Regular audits and monitoring are performed to detect potential security threats.

In case of a data breach, we will notify affected users and regulatory authorities as required by law.

7. Your Rights

Depending on your jurisdiction, you may have the following rights under data protection laws:

7.1 Right to Access

Request access to the personal data we hold about you.

7.2 Right to Rectification

Request corrections if your data is inaccurate or incomplete.

7.3 Right to Deletion

Request the deletion of your data, subject to legal and operational requirements.

7.4 Right to Restrict Processing

Limit the use of your data in certain circumstances.

7.5 Data Portability

Request a copy of your data in a structured, machine-readable format. To exercise your rights, contact us at [email protected].

8. Cookies and Tracking Technologies

GKavach-DWM uses cookies for:

  1. Session Management: Ensuring smooth service access.
  2. Security: Protecting user accounts against unauthorized access.
  3. Preferences: Saving user settings for future visits.

You can manage cookies through your browser settings, but disabling cookies may limit service functionality.

9. Children’s Privacy

GKavach-DWM services are not intended for users under 18. If we discover personal data of minors has been collected without consent, it will be deleted promptly.

10. Updates to This Privacy Policy

GKavach-DWM reserves the right to update this Privacy Policy periodically. Significant updates will be communicated via email or service notifications.

11. Contact Us

If you have questions or concerns about this Privacy Policy, please contact us:

Enforcement

GKavach enforces its Privacy Policy by adhering to strict data protection practices and maintaining compliance with legal and regulatory standards, such as GDPR and CCPA. Any breach of the policy, whether by internal personnel or third-party partners, is subject to investigation and appropriate remedial actions, including legal recourse if necessary. Users are encouraged to report privacy concerns or potential violations, and GKavach ensures timely resolution and necessary notifications in the event of a data breach. Through regular audits, security updates, and staff training, GKavach maintains robust enforcement of its Privacy Policy to safeguard user data and uphold transparency.