Privacy Policy

Effective Date: January 1, 2025 | Last Updated: January 1, 2025

1. Introduction

Magier Guard, Inc. ("Magier Guard," "we," "us," or "our") is committed to protecting the privacy and security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our GenAI security platform and related services (collectively, the "Services").

This policy applies to information we collect through our website (magierguard.com), our platform, APIs, and any other services we provide. By using our Services, you agree to the collection and use of information in accordance with this policy.

If you have questions about this Privacy Policy, please contact us at privacy@magierguard.com.

2. Information We Collect

2.1 Information You Provide Directly

  • Account Information: Name, email address, company name, job title, phone number, and password when you create an account
  • Payment Information: Billing address and payment method details (processed securely through third-party payment processors)
  • Communication Data: Information you provide when contacting our support team, sales team, or participating in surveys
  • Content Data: Security policies, custom rules, and configuration settings you define within the platform

2.2 Information Collected Automatically

  • Usage Data: LLM interactions monitored, threats detected, policies enforced, API calls made, and feature usage patterns
  • Technical Data: IP addresses, browser type, operating system, device identifiers, and access times
  • Log Data: Security events, policy violations, system performance metrics, and error reports
  • Cookies and Tracking: Session cookies, analytics cookies, and preference cookies (see our Cookie Policy for details)

2.3 LLM Interaction Data

When our platform monitors LLM interactions for security purposes, we may collect:

  • Prompts and responses (when required for threat detection)
  • Detected threats and policy violations
  • Model identifiers and API endpoints
  • Timestamps and user identifiers

Important: We provide options to minimize data collection and support on-premises deployment where data never leaves your infrastructure.

3. How We Use Your Information

3.1 Service Delivery

  • Provide, maintain, and improve our GenAI security platform
  • Monitor LLM interactions for security threats and policy violations
  • Generate security alerts and compliance reports
  • Provide customer support and respond to inquiries
  • Process payments and manage subscriptions

3.2 Security and Fraud Prevention

  • Detect and prevent security threats, fraud, and abuse
  • Investigate suspicious activity and policy violations
  • Protect the rights, property, and safety of Magier Guard, our users, and the public
  • Comply with legal obligations and law enforcement requests

3.3 Analytics and Improvement

  • Analyze usage patterns to improve platform performance and user experience
  • Develop new features and security detection capabilities
  • Conduct research on AI security threats and mitigation techniques
  • Create aggregated, anonymized statistics for internal analysis and public reports

3.4 Communication

  • Send service-related notifications and security alerts
  • Provide product updates and security advisories
  • Send marketing communications (with your consent, where required)
  • Respond to your requests and questions

4. Data Sharing and Disclosure

4.1 We Do NOT Sell Your Data

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

4.2 Service Providers

We share information with trusted third-party service providers who assist us in operating our platform:

  • Cloud Infrastructure: AWS, Google Cloud for hosting and data storage
  • Payment Processing: Stripe for payment processing
  • Analytics: Google Analytics (anonymized) for usage analytics
  • Communication: SendGrid, Twilio for email and SMS notifications

All service providers are contractually bound to protect your data and use it only for specified purposes.

4.3 Legal Requirements

We may disclose information when required by law or in response to:

  • Valid legal requests (subpoenas, court orders)
  • Government investigations or national security requirements
  • Protection of our legal rights or prevention of harm
  • Enforcement of our Terms of Service

4.4 Business Transfers

If Magier Guard is involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your information is transferred and becomes subject to a different privacy policy.

5. Data Security

We implement industry-leading security measures to protect your information:

5.1 Technical Safeguards

  • Encryption: AES-256 encryption at rest, TLS 1.3 in transit
  • Access Controls: Role-based access controls (RBAC) with least-privilege principles
  • Authentication: Multi-factor authentication (MFA) for all accounts
  • Network Security: Firewalls, intrusion detection, DDoS protection
  • Monitoring: 24/7 security monitoring and incident response

5.2 Organizational Safeguards

  • SOC 2 Type II certified security controls
  • Regular security audits and penetration testing
  • Employee security training and background checks
  • Data retention and deletion policies
  • Incident response and breach notification procedures

5.3 Data Residency

For enterprise customers, we offer data residency options to store data in specific geographic regions (US, EU, UK) to meet regulatory requirements.

6. Your Privacy Rights

6.1 General Rights

You have the following rights regarding your personal information:

  • Access: Request a copy of your personal information
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your personal information (subject to legal retention requirements)
  • Data Portability: Request your data in a machine-readable format
  • Objection: Object to processing of your information for certain purposes
  • Restriction: Request restriction of processing under certain circumstances

6.2 GDPR Rights (EU Residents)

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR):

  • Right to withdraw consent at any time
  • Right to lodge a complaint with your local data protection authority
  • Right to data portability in structured, commonly used formats
  • Right to be forgotten (subject to legal exceptions)

Legal Basis: We process your data based on: (1) contract performance, (2) legitimate interests, (3) legal obligations, or (4) your consent.

Data Protection Officer: dpo@magierguard.com

6.3 CCPA Rights (California Residents)

California residents have rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information is collected, used, and shared
  • Right to delete personal information (subject to exceptions)
  • Right to opt-out of sale of personal information (we do not sell data)
  • Right to non-discrimination for exercising your rights

To Exercise Rights: Email privacy@magierguard.com or call +1 (415) 555-0100

7. Data Retention

We retain your information for as long as necessary to provide Services and comply with legal obligations:

  • Account Data: Retained while your account is active and for 30 days after deletion
  • LLM Interaction Data: Retained for 90 days by default (configurable by enterprise customers)
  • Security Logs: Retained for 1 year for security analysis and compliance
  • Billing Records: Retained for 7 years to comply with tax and accounting regulations
  • Support Communications: Retained for 3 years for quality assurance

After retention periods expire, we securely delete or anonymize data. You can request earlier deletion subject to legal requirements.

8. International Data Transfers

Magier Guard is based in the United States. If you access our Services from outside the US, your information may be transferred to, stored, and processed in the US and other countries.

We use appropriate safeguards for international transfers:

  • Standard Contractual Clauses (SCCs): EU-approved data transfer agreements
  • Data Processing Agreements (DPAs): Available for enterprise customers
  • Privacy Shield (legacy): For customers certified under legacy frameworks
  • Data Residency: Option to store data in EU or UK regions

9. Children's Privacy

Our Services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately at privacy@magierguard.com.

10. Third-Party Links and Integrations

Our Services may contain links to third-party websites and integrate with third-party LLM providers (OpenAI, Anthropic, Google, etc.). This Privacy Policy does not apply to those third parties. We encourage you to review their privacy policies.

When you use our platform to monitor third-party LLM interactions, we process data on your behalf according to our Data Processing Agreement.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by:

  • Posting the updated policy on our website with a new "Last Updated" date
  • Sending email notifications to registered users (for material changes)
  • Displaying in-app notifications when you log in

Your continued use of our Services after changes become effective constitutes acceptance of the updated policy.

12. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

Email: privacy@magierguard.com
Phone: +1 (415) 555-0100
Mail: Magier Guard, Inc.
Attn: Privacy Officer
548 Market Street, Suite 52345
San Francisco, CA 94104
United States

Data Protection Officer (EU): dpo@magierguard.com

Back to Home