Privacy Policy

1. Who We Are

ILDAN ("ILDAN," "we," "us," or "our") is a professional services firm providing cybersecurity advisory, fractional CISO, compliance, and AI governance services. Our website is located at ildan.ai. For privacy-related inquiries, please contact us at info@ildan.ai.

2. Information We Collect

We collect only the information necessary to respond to your inquiries and deliver our services.

Information you provide directly:

• Name, email address, phone number, and company name when you contact us via email or any contact form on this website.
• The content of messages or inquiries you send to us.

Information collected automatically:

• Standard server log data, including IP address, browser type, referring URL, and pages visited. This information is used solely for maintaining website security and diagnosing technical issues.

We do not currently use third-party analytics services, advertising networks, or tracking pixels on this website. We do not use cookies beyond those strictly necessary for the website to function.

3. How We Use Your Information

We use the information we collect to:

• Respond to your inquiries and communications.
• Provide, deliver, and improve our professional services.
• Maintain the security and integrity of our website.
• Comply with applicable legal obligations.

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

4. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), we process your personal data under the following legal bases:

• Legitimate interests — responding to inquiries and operating our business.
• Contractual necessity — where processing is necessary to fulfill a service agreement with you.
• Legal obligation — where we are required to process data to comply with applicable law.
• Consent — where you have provided explicit consent, which you may withdraw at any time.

5. Data Sharing

We do not share your personal information with third parties except in the following circumstances:

• Service providers: Trusted vendors who assist with email hosting or website infrastructure, bound by confidentiality obligations and permitted to use data only to provide services to us.
• Legal requirements: When required by law, court order, or governmental authority.
• Business transfers: In connection with a merger, acquisition, or sale of assets, with appropriate notice provided to you.

6. Data Retention

We retain your personal information only as long as necessary to fulfill the purposes described in this policy, to maintain our business records, or as required by law. Email correspondence is retained for a period consistent with our operational and legal needs, and then securely deleted.

7. Your Rights

Depending on your location, you may have the following rights with respect to your personal information:

• Access: Request a copy of the personal data we hold about you.
• Correction: Request correction of inaccurate or incomplete data.
• Deletion: Request deletion of your personal data, subject to legal retention requirements.
• Portability: Request that we provide your data in a portable format.
• Objection / Restriction: Object to or request restriction of certain processing activities.
• Withdrawal of consent: Where processing is based on consent, withdraw that consent at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, contact us at info@ildan.ai. We will respond within the timeframe required by applicable law (generally 30 days).

8. California Residents (CCPA / CPRA)

If you are a California resident, you have the right to know what personal information we collect, the right to delete your personal information, the right to opt out of the sale of your personal information (we do not sell personal information), and the right to non-discrimination for exercising these rights. To submit a request, contact us at info@ildan.ai.

9. Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. As a cybersecurity firm, security is not an afterthought — it is our core practice.

10. Links to Other Websites

Our website may contain links to third-party websites. We are not responsible for the privacy practices of those sites and encourage you to review their privacy policies independently.

11. Children's Privacy

Our website and services are directed to business professionals and are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children.

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date at the top of this page. Continued use of our website after any changes constitutes acceptance of the updated policy. For material changes, we will provide more prominent notice.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

ILDAN
Brighton, Michigan, United States
info@ildan.ai