Privacy Policy

Welcome to Stingrai Inc. Stingrai Inc. (“Stingrai,” “we,” “us,” or “our”) operates https://stingrai.io and related subdomains (collectively, the “Service”). This Privacy Policy explains how we collect, use, disclose, and safeguard information when you visit our website, request information about our services, engage with our PTaaS platform, or otherwise interact with us.

We use your information to provide and improve our Service, respond to inquiries, deliver cybersecurity services, and communicate with you about products and updates. By using our Service, you agree to the collection and use of information in accordance with this Privacy Policy. Unless otherwise defined here, capitalized terms have the same meanings as in our Terms of Service.

Our Terms of Service govern all use of our Service and, together with this Privacy Policy, form your agreement with us.

Service

The Stingrai website at https://stingrai.io, our PTaaS platform, and related online properties operated by Stingrai Inc.

Personal Data

Information about an identifiable individual, including information that can be used on its own or with other data to identify, contact, or locate a person.

Usage Data

Information collected automatically when you use the Service, such as IP address, browser type, pages visited, and time spent on pages.

Cookies

Small data files placed on your device that help us recognize your browser and improve your experience on our Service.

Data Controller

The entity that determines the purposes and means of processing Personal Data. For this Privacy Policy, Stingrai Inc. is the Data Controller.

Data Processors (or Service Providers)

Third parties that process Personal Data on our behalf under our instructions and contractual obligations.

Data Subject

An identifiable individual to whom Personal Data relates.

User

Any individual who accesses or uses our Service.

We collect information in several ways to operate our Service, respond to business inquiries, and deliver our cybersecurity offerings.

Personal Data You Provide

We may ask you to provide Personal Data when you contact us, request a quote, book a demo, subscribe to communications, apply for employment, or use features of our Service. This may include:

• Name and job title
• Company name and business contact details
• Email address and phone number
• Mailing address, city, province or state, and postal or ZIP code
• Information you include in forms, support requests, or correspondence with us

Usage Data

When you visit our Service, we may automatically collect diagnostic and analytics information, including your IP address, browser type and version, device type, operating system, referring URLs, pages viewed, date and time of access, and other technical data.

Cookies and Similar Technologies

We use Cookies and similar tracking technologies to operate the Service, remember preferences, analyze traffic, and understand how visitors interact with our website. Cookies may be session-based or persistent. You can control Cookies through your browser settings; disabling Cookies may limit certain features of the Service.

Stingrai uses collected information for legitimate business purposes, including to:

• Provide, operate, and maintain our website and Service
• Respond to inquiries, demo requests, and quote submissions
• Deliver and administer our penetration testing and PTaaS offerings
• Send service-related notices, including changes to our policies or Service
• Provide customer support and account administration
• Send newsletters, marketing, or promotional communications where permitted
• Analyze usage trends and improve our Service, content, and user experience
• Detect, prevent, and address technical issues, fraud, or security incidents
• Comply with legal obligations and enforce our agreements

We may use your Personal Data to contact you with updates or marketing materials. You may opt out of promotional communications at any time by using the unsubscribe link in our emails or by contacting us at info@stingrai.io.

Where applicable, we process Personal Data based on one or more of the following grounds: your consent; performance of a contract or steps taken at your request before entering a contract; compliance with legal obligations; and our legitimate interests in operating, securing, and improving our business, provided those interests are not overridden by your rights.

For Canadian users, our handling of Personal Data is governed by the Personal Information Protection and Electronic Documents Act (PIPEDA) and applicable provincial privacy laws, including Ontario privacy requirements.

We retain Personal Data only for as long as necessary to fulfill the purposes for which it was collected, including to satisfy legal, accounting, or reporting requirements. Retention periods may vary depending on the nature of the data, our relationship with you, and applicable law.

When Personal Data is no longer required, we will delete, anonymize, or securely dispose of it in accordance with our data retention practices.

Your information may be transferred to and processed in Canada, the United Kingdom, the United States, or other jurisdictions where we or our service providers operate. These locations may have data protection laws that differ from those in your province, state, or country.

Where required, we implement appropriate safeguards for cross-border transfers. By submitting your information, you acknowledge that such transfer, storage, and processing may occur.

We do not sell your Personal Data. We may disclose Personal Data in the following circumstances:

• To service providers who perform services on our behalf, such as hosting, analytics, CRM, email delivery, and payment processing
• To professional advisors, such as lawyers, accountants, or insurers, where reasonably necessary
• If required by law, regulation, legal process, or governmental request
• To protect the rights, property, or safety of Stingrai, our users, or others
• In connection with a merger, acquisition, financing, reorganization, or sale of assets, subject to appropriate confidentiality protections

Third-party service providers are authorized to use Personal Data only as necessary to provide services to us and are required to protect it in accordance with contractual and legal obligations.

We implement administrative, technical, and physical safeguards designed to protect Personal Data against unauthorized access, disclosure, alteration, or destruction. These measures are consistent with industry standards for organizations providing cybersecurity services.

Access to Personal Data is limited to personnel and service providers who require it for legitimate business purposes. However, no method of transmission over the Internet or electronic storage is completely secure, and we cannot guarantee absolute security.

Depending on your location, you may have rights regarding your Personal Data. For Canadian residents, particularly under PIPEDA and Ontario privacy laws, these rights may include:

• The right to access Personal Data we hold about you
• The right to request correction of inaccurate or incomplete Personal Data
• The right to request deletion of Personal Data, subject to legal exceptions
• The right to withdraw consent where processing is based on consent
• The right to challenge our compliance with applicable privacy laws

If you are located in the United Kingdom or European Economic Area, you may also have additional rights under applicable data protection laws, including the right to object to certain processing and the right to lodge a complaint with a supervisory authority.

To exercise your rights, please contact us at info@stingrai.io. We will respond within a reasonable timeframe and in accordance with applicable law.

We may employ third-party companies and individuals to facilitate our Service, provide services on our behalf, perform Service-related functions, or assist us in analyzing how our Service is used. These third parties have access to Personal Data only to perform tasks assigned to them and are obligated not to disclose or use it for any other purpose.

Our Service may contain links to websites or services operated by third parties. We do not control and are not responsible for the content, privacy practices, or security of those third-party sites. We encourage you to review the privacy policies of any third-party site before providing Personal Data.

Our Service is not directed to individuals under the age of 18, and we do not knowingly collect Personal Data from children under 18. If you believe we have collected information from a child under 18, please contact us and we will take steps to delete such information.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or business operations. When we make material changes, we will post the updated policy on this page and revise the effective date above.

We encourage you to review this Privacy Policy periodically. Your continued use of the Service after changes become effective constitutes acceptance of the updated Privacy Policy.

If you have questions about this Privacy Policy or our privacy practices, please contact us:

• By email: info@stingrai.io
• Toronto Office (HQ): 1 Adelaide Street East, #3001, Toronto, Ontario, M5C 2V9, Canada
• London Office: 1 Coldbath Square, Office One, Farringdon, London, EC1R 5HL, United Kingdom