Privacy Notice
Effective date: pending legal review · Last updated: draft
1. Information We Collect
When you use Osinet Command, we collect information you provide directly — such as your name, email address, and organization details when registering or requesting access. We also collect information generated by your use of the Service, including log data, session identifiers, and actions taken within the platform. Third-party connector integrations may provide additional data about your managed customers’ security posture and backup status.
2. How We Use Information
We use collected information to provide, operate, and improve the Service; to authenticate users and enforce role-based access controls; to generate audit logs for security and compliance purposes; and to communicate with you about the Service. We do not sell your personal information or use it for advertising purposes.
3. Data Storage and Security
Your data is stored in Supabase (PostgreSQL). We apply encryption in transit (TLS), signed short-lived session cookies, rate limiting on all sensitive API routes, and role-based access controls to restrict data access to authorized users. During the pilot period, data retention policies are not yet finalized. See our security overview for architectural details.
4. Data Sharing
We do not share your personal information with third parties except as required to operate the Service (e.g., infrastructure providers such as Vercel and Supabase), as required by law or legal process, or with your explicit consent. Third-party vendor connectors (Microsoft, Acronis, ESET, SentinelOne, Check Point, FortiGate) are configured by you and governed by their respective privacy policies.
5. Your Rights
Depending on your jurisdiction, you may have rights regarding your personal data — including the right to access, correct, or delete information we hold about you. To exercise these rights or ask questions about your data, please contact us using the information below. We will respond within a reasonable time frame.
6. Contact
If you have questions or concerns about this Privacy Notice or our data practices, please reach out via the request access form or the contact details provided during pilot onboarding. This notice will be updated as the Service matures and legal review is completed.