At SyscodeIgniteOn, we take your privacy seriously. This policy explains how we collect, use, and protect your personal information when you use our security testing and vulnerability assessment services. We operate from Taiwan and serve clients across the region, always following local privacy laws and international best practices.

We believe in being transparent about our data practices. This isn't about hiding behind legal jargon — it's about explaining what happens to your information in terms you can actually understand.

We collect different types of information depending on how you interact with us:

We use your information specifically for business purposes related to our security services. Here's what that actually means:

Your contact information helps us communicate about projects, send reports, and coordinate security testing schedules. We use technical data you provide to conduct thorough vulnerability assessments and create detailed security reports. Business information helps us tailor our services to your specific industry needs and compliance requirements.

We also use aggregated, non-identifying data to improve our services and understand security trends in different industries. This helps us stay current with evolving threats and better serve all our clients.

We don't sell your personal information to anyone. Period. We only share information in specific, limited situations:

With trusted subcontractors who help us deliver security services, and only when they sign strict confidentiality agreements. With legal authorities if required by Taiwan law or valid legal process. With professional advisors (lawyers, accountants) who are bound by professional confidentiality requirements.

In the unlikely event of a business merger or acquisition, your data would transfer under the same privacy protections, and you'd be notified in advance.

We keep your information only as long as needed for business purposes or legal requirements. Contact information and basic project details are typically retained for seven years to support ongoing client relationships and comply with business record requirements.

Technical data from security assessments is usually deleted within three years unless you request longer retention for trend analysis. Website analytics data is automatically deleted after 26 months. You can request earlier deletion of your personal information, though we may need to retain some records for legal compliance.

Most of our data processing happens within Taiwan. When we need to transfer data internationally (such as using cloud services with global infrastructure), we ensure appropriate safeguards are in place through standard contractual clauses, adequacy decisions, or other approved transfer mechanisms.

We work with service providers who maintain equivalent privacy protections and are subject to privacy laws in their jurisdictions. Any international transfers are documented and performed with appropriate legal protections.

Our website uses essential cookies for basic functionality and analytics cookies to understand how people use our site. We don't use advertising cookies or tracking pixels that follow you across other websites.

You can control cookie settings through your browser preferences. Blocking cookies might affect some website features, but won't prevent you from contacting us or learning about our services.

We review this privacy policy annually and update it when our practices change or new regulations take effect. Material changes will be communicated via email to existing clients and prominently posted on our website.

We'll always maintain the same high standards for protecting your information, even as our specific practices evolve with technology and legal requirements.