Visibilitiez← Back to Home
Legal

Privacy Policy

Last updated: May 2026

Visibilitiez ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our security platform, website, and related services (collectively, the "Service"). By using our Service, you agree to the collection and use of information in accordance with this policy.

1. Data Collection

Account Information

When you create an account, we collect:

  • Name and email address
  • Organization name and billing address
  • Payment information (processed securely via third-party payment processors)
  • Phone number (optional, for 2FA and alerts)

Usage Data

We automatically collect:

  • Dashboard access logs and feature usage patterns
  • API call metadata (endpoints, timestamps, response codes)
  • Browser type, device information, and IP address
  • Referral sources and pages visited on our marketing site

Security Logs

As part of our security service, we process:

  • HTTP request metadata (headers, URLs, methods, IP addresses) passing through our WAF
  • Threat detection results and scoring data
  • Attack surface scan results (DNS records, SSL certificates, open ports, headers)
  • Incident response timelines and mitigation actions

2. Data Usage

We use collected data for the following purposes:

Service Delivery

Operating and maintaining the WAF, ASM scanner, and dashboard for your protected domains.

Threat Analysis

Analyzing traffic patterns to detect, prevent, and respond to security threats in real-time.

Collective Defense

Anonymized threat data contributes to our collective intelligence network, protecting all customers.

Service Improvement

Improving our AI models, detection accuracy, and platform performance based on aggregated usage patterns.

Communication

Sending security alerts, incident notifications, billing updates, and product announcements.

Compliance

Generating compliance reports and maintaining audit trails as required by your subscription plan.

3. Data Sharing

We never sell your personal data or security logs to third parties.

We may share data only in these limited circumstances:

  • Service Processors: Cloud infrastructure providers (for hosting), payment processors (for billing), and email delivery services (for notifications) — all bound by data processing agreements.
  • Collective Defense Network: Anonymized, aggregated threat indicators (IP reputations, attack signatures) are shared across our customer network. No customer-identifiable information is included.
  • Legal Requirements: When required by law, court order, or governmental authority. We will notify you unless legally prohibited from doing so.
  • Business Transfers: In the event of a merger, acquisition, or asset sale, your data may be transferred. We will notify you before your data becomes subject to a different privacy policy.

4. Data Retention

Security logs and analytics data are retained based on your subscription plan:

Basic

30 days

Advanced

60 days

Business

90 days

Account information is retained for the duration of your account plus 30 days after deletion. Billing records are retained for 5 years as required by Indonesian tax law.

5. Your Rights

You have the following rights regarding your data:

  • Access: Request a copy of all personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your account and associated data (subject to legal retention requirements).
  • Export: Download your security logs, scan results, and account data in machine-readable format (JSON/CSV).
  • Restriction: Request that we limit processing of your data in certain circumstances.
  • Objection: Object to processing of your data for specific purposes.

To exercise any of these rights, contact us at privacy@visibilitiez.com. We will respond within 30 days.

6. Cookies

We use cookies and similar technologies for:

Essential Cookies

Required for authentication, session management, and security features. Cannot be disabled.

Analytics Cookies

Help us understand how you use our dashboard and website. Used to improve user experience.

Preference Cookies

Remember your settings, theme preferences, and dashboard layout configurations.

You can manage cookie preferences through your browser settings. Note that disabling essential cookies may prevent you from using certain features of the Service.

7. Data Processing Agreement

For Business plan customers, we offer a Data Processing Agreement (DPA) that provides additional contractual guarantees regarding our processing of your data. The DPA covers:

  • Scope and purpose of data processing
  • Technical and organizational security measures
  • Sub-processor management and notification
  • Data breach notification procedures (within 72 hours)
  • Data transfer mechanisms for international processing
  • Audit rights and compliance verification

To request a DPA, contact privacy@visibilitiez.com.

8. Security Measures

We implement industry-standard security measures to protect your data:

  • Encryption at rest (AES-256) and in transit (TLS 1.3)
  • Role-based access control with principle of least privilege
  • Regular security audits and penetration testing
  • Multi-factor authentication for all internal systems
  • Automated vulnerability scanning of our infrastructure
  • Incident response plan with defined escalation procedures

9. Contact Us

For privacy-related inquiries, data requests, or concerns:

Email: privacy@visibilitiez.com

Address: Jakarta, Indonesia

We will respond to all privacy inquiries within 30 calendar days.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. For significant changes, we will send an email notification to the address associated with your account. Your continued use of the Service after changes constitutes acceptance of the updated policy.