Privacy Policy

Who We Are

PulseShield ("we", "us", "our") operates the website pulseshield.co.uk and provides automated website security scanning and compliance auditing services. This privacy policy explains how we collect, use, and protect your personal data.

Information We Collect

Information You Provide

• Name and email address when you sign up or request an audit
• Company name and domain names you want scanned
• Payment information processed securely through Stripe (we never store card details)
• Communication you send to us via email or contact forms

Information Collected Automatically

• Scan results and reports generated from target domains you specify
• Account usage data (logins, scans run, reports downloaded)
• Basic analytics data (pages visited, browser type) via cookies

How We Use Your Information

We use your personal data to:

• Provide and maintain our security scanning services
• Process payments and manage your subscription
• Send you scan results, reports, and security alerts
• Respond to your enquiries and support requests
• Improve our services and develop new features
• Comply with legal obligations

Legal Basis for Processing

We process your personal data under the following legal bases as defined by GDPR:

• Contractual necessity — to provide the services you've signed up for
• Legitimate interests — to improve our services and communicate with you
• Consent — for marketing communications and non-essential cookies
• Legal obligation — to comply with applicable laws and regulations

Data Sharing

We do not sell or rent your personal data to third parties. We share data only with:

• Stripe — for secure payment processing
• Cloudflare — for website security, performance, and DDoS protection
• Service providers — who help us operate our platform under strict data protection agreements
• Legal authorities — when required by law or to protect our rights

Data Retention

We retain your account data for as long as your account is active. Scan results and reports are retained for the duration of your subscription plus 12 months. You can request deletion of your data at any time by contacting us at [email protected].

Your Rights

Under GDPR and the UK Data Protection Act 2018, you have the right to:

• Access your personal data
• Rectify inaccurate data
• Request erasure of your data
• Restrict processing of your data
• Data portability
• Object to processing
• Withdraw consent at any time

To exercise any of these rights, contact us at [email protected].

Cookies

We use essential cookies for authentication and session management. Non-essential analytics cookies are only set with your consent. You can manage cookie preferences through your browser settings at any time.

Security

We implement appropriate technical and organisational measures to protect your personal data, including encryption in transit (TLS 1.3) and at rest, secure access controls, and regular security assessments of our own infrastructure.

International Transfers

PulseShield is a UK-based company and your data is processed on servers within the UK. Where data is processed outside the UK, we ensure adequate safeguards are in place in compliance with UK GDPR.

Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any material changes by email or by posting a notice on our website. Your continued use of our services after changes constitutes acceptance of the updated policy.

Contact Us

If you have questions about this privacy policy or how we handle your data, please contact us at:

Email: [email protected]