Privacy policy
Version 1.0 — March 27, 2025
This Privacy Policy (the "Policy") comprehensively details the practices and procedures concerning the collection, use, disclosure, retention, and protection of personal data by Stealed.io (hereinafter referred to as "Stealed.io," "we," "us," or "our"). This Policy governs data handling through the Stealed.io website, applications, APIs, proprietary services, and all associated functionalities (collectively referred to as the "Platform"). By accessing or otherwise utilizing the Platform, you (the "User," "you," or "your") unequivocally consent to the terms herein.
Scope and Applicability
This Policy applies exclusively to data collected or processed by Stealed.io through the Platform, regardless of method or medium of collection
Categories of Personal Data Collected
Stealed.io may collect, store, process, and utilize the following categories of personal information:
Identification Data: Names, titles, professional affiliations.
Contact Information: Email addresses, phone numbers, postal addresses.
Account Information: Authentication credentials, account settings, user preferences.
Financial Information: Payment details, billing addresses, transaction records, securely handled through PCI-DSS compliant third-party providers.
Security-Related Data: Information concerning compromised or leaked credentials, domains, and related security intelligence, sourced legally from public, open-source, and dark web sources for security monitoring purposes.
Technical and Usage Data: Device identifiers, IP addresses, geolocation data, browser type and version, operating system, access timestamps, user interactions, session durations, and other analytics gathered via cookies and similar tracking technologies.
Purpose of Data Collection and Processing
Personal data collected by Stealed.io shall be processed solely for the following explicit purposes:
Providing real-time security monitoring, detection, and alert services.
Enhancing cybersecurity through predictive analytics, risk assessment, and brand protection initiatives.
Administering the Platform, facilitating transactions, and fulfilling contractual obligations.
Ensuring technical functionality, security, and performance optimization.
Communicating essential information, including security advisories, product updates, promotional content, and customer service communications.
Complying with applicable laws, regulations, judicial processes, governmental requests, and internal compliance requirements.
Disclosure of Personal Data
Stealed.io commits to stringent confidentiality standards and may disclose personal information exclusively under the following conditions:
To authorized third-party vendors and service providers responsible for platform hosting, infrastructure management, data analytics, financial processing, customer relationship management, and similar essential functions, bound by enforceable confidentiality and data protection agreements.
In adherence to statutory obligations, subpoenas, regulatory investigations, judicial processes, or enforceable governmental requests.
To safeguard Stealed.io's legal rights, protect against legal liability, investigate potential violations, or prevent or mitigate harm to users or the public.
As part of corporate restructuring, mergers, acquisitions, divestitures, or comparable corporate transactions, with appropriate user notification.
Data Protection and Security
Stealed.io employs robust security measures incorporating encryption (in transit and at rest), strict access controls, routine security assessments, vulnerability management programs, incident response procedures, and continuous security monitoring to safeguard personal data against unauthorized access, disclosure, alteration, and destruction.
Data Retention Policy
Personal data is retained only for the minimum period necessary to fulfill the purposes specified herein, or as mandated by applicable laws and regulations. Users with premium subscriptions may request tailored retention policies aligned with contractual agreements.
User Rights and Data Control
Users maintain comprehensive rights regarding their personal data, subject to applicable laws, including:
Right to access personal information.
Right to rectify inaccurate or incomplete data.
Right to request data erasure, subject to legal constraints.
Right to object to or restrict specific data processing activities.
Right to data portability, enabling receipt of data in structured and machine-readable formats.
Requests exercising these rights can be submitted via privacy@stealed.io.
International Transfers
Stealed.io operates globally, necessitating international data transfers. Such transfers comply fully with applicable data protection frameworks, including GDPR, CCPA, and equivalent regulations, incorporating standard contractual clauses, binding corporate rules, or other approved mechanisms ensuring data protection adequacy.
Third-Party Integrations and External Links
The Platform integrates with external third-party applications and services, including SIEM, SOAR, IAM solutions, and similar cybersecurity tools. Users interacting with such third-party integrations acknowledge that Stealed.io bears no responsibility for third-party privacy practices, which are governed solely by respective third-party privacy policies.
Children's Privacy Protection
The Platform is explicitly not intended for individuals under the age of eighteen (18). Stealed.io does not knowingly collect or process personal data from minors. If such data is discovered, immediate corrective measures, including data deletion, shall be implemented.
Modifications to this Privacy Policy
Stealed.io reserves the right, in its sole discretion, to revise or amend this Policy periodically. Users will be notified of substantive changes through conspicuous notifications, email correspondence, or direct communication, as deemed appropriate.
Contact Information
Queries, concerns, or requests relating to this Privacy Policy or data protection practices should be directed to:
Stealed.io Data Protection Office
Email: privacy@stealed.io
Website: https://stealed.io
By continuing to use the Stealed.io Platform after any modifications to this Policy, users implicitly consent to the revised terms. Users are encouraged to periodically review this Privacy Policy to stay informed about data protection practices and obligations.
