Back to Home

Privacy Policy

Last Updated: December 25, 2025

1. Introduction

Web Risk Audit ("we," "our," or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our security audit services.

2. Data We Collect

We collect the following types of information:

  • Contact Information: Email addresses you provide when requesting a security audit report.
  • Domain Information: Domain names you submit for security analysis.
  • Technical Data: IP addresses, browser types, device information, and cookies for analytics and functionality.
  • Usage Data: Pages visited, time spent on site, and interaction patterns.

3. How We Use Your Data

We use your personal data for the following purposes:

  • Conducting security audits on domains you submit
  • Delivering audit reports to your provided email address
  • Scheduling diagnosis calls via Calendly (third-party service)
  • Improving our website and services through analytics
  • Complying with legal obligations

4. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your browsing experience. These include:

  • Essential Cookies: Required for basic site functionality (e.g., remembering your cookie consent choice).
  • Analytics Cookies: Help us understand how visitors interact with our website (e.g., Cloudflare Analytics).

You can control cookies through your browser settings. Note that disabling cookies may affect site functionality.

5. Third-Party Services

We use the following third-party services that may collect your data:

  • Calendly: For scheduling diagnosis calls. Calendly's privacy policy applies to data collected through their service.
  • Cloudflare: For website hosting and security. Cloudflare may process technical data for CDN and security purposes.
  • Render.com: Backend API hosting for security audit processing.

6. Your Data Rights

Under GDPR/RODO, you have the following rights regarding your personal data:

  • Right to Access: Request a copy of your personal data we hold.
  • Right to Rectification: Request correction of inaccurate data.
  • Right to Erasure: Request deletion of your data ("right to be forgotten").
  • Right to Data Portability: Request your data in a machine-readable format.
  • Right to Object: Object to processing of your data for specific purposes.
  • Right to Withdraw Consent: Withdraw consent for data processing at any time.

To exercise any of these rights, please contact us at the email address below.

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy:

  • Audit reports and associated email addresses: 12 months
  • Analytics data: Aggregated and anonymized after 6 months
  • Cookie consent records: Until withdrawn by user

8. Data Security

We implement appropriate technical and organizational measures to protect your data, including:

  • 256-bit SSL encryption for data transmission
  • Secure cloud hosting with Cloudflare and Render
  • Regular security audits and vulnerability assessments
  • Access controls and authentication for internal systems

However, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.

9. International Data Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA). We ensure appropriate safeguards are in place, such as standard contractual clauses approved by the European Commission.

10. Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a minor, please contact us immediately.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of significant changes by posting the updated policy on this page with a new "Last Updated" date.

12. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us:

Mosaic Mutiny Ltd

Registration Number: 16532268 (Registered in England & Wales)

ICO Registration Reference: CSN1288095

Registered Office: 71-75 Shelton Street, Covent Garden, London, United Kingdom, WC2H 9JQ

Contact Email: [email protected]

This Privacy Policy is effective as of the date listed above and applies to all users of our website and services.