Plexicus Logo

Product

Platform Overview
Benefits
Use Cases
ASPM
CSPM
Container Security
CWPP
CIEM

Solutions

FinTech
HealthTech
HRTech
Group Companies
Agencies
Startups
Enterprise
Mobile Apps
Manufacturing
Government
RetailTech

Developers

Documentation
API References
GitHub Apps
Plexalyzer Action

Resources

Blog
YouTube Channel
Branding Assets
Changelogs
Feature Requests
Integrations
Comparison Overview
PricingContact

Table of Contents

Current: Introduction

Privacy Policy

Last updated:May 23, 2025

Introduction

This is the Privacy Policy for Plexicus, CNAPP, a company established in the European Union. This policy describes our practices regarding the collection and use of your personal data and sets forth your privacy rights.

We understand that you are aware of and care about your own personal privacy interests, and we take that seriously. This Privacy Policy describes our policies and practices regarding the collection and use of your personal data and sets forth your privacy rights.

As a company that finds its roots in the European Union, and that considers compliance to privacy legislation a core principle of its organization, we have created this Privacy Policy based upon the foundations of the EU General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data).

How We Collect and Use Information

We collect personal information about you in various ways, including:

  • Information you provide directly to us when using our services
  • Information we collect automatically through cookies and similar technologies
  • Information we receive from third parties

We process your personal data for the following purposes:

  • To provide and maintain our services
  • To notify you about changes to our services
  • To allow you to participate in interactive features of our services
  • To provide customer support
  • To gather analysis or valuable information so that we can improve our services
  • To monitor the usage of our services
  • To detect, prevent and address technical issues
  • To fulfill any other purpose for which you provide it

Legal Basis for Processing

Under the GDPR, we must have a legal basis for processing your personal data. We rely on the following legal bases:

  • Consent:Where you have given us explicit consent to process your personal data.
  • Contract:Where processing is necessary for the performance of a contract with you.
  • Legal Obligation:Where processing is necessary for compliance with a legal obligation.
  • Legitimate InterestsWhere processing is necessary for our legitimate interests or those of a third party.

Sharing Information with Third Parties

We may share your personal information with:

  • Service providers who perform services on our behalf
  • Business partners with whom we jointly offer products or services
  • Affiliated companies within our corporate family
  • As required by law, such as to comply with a subpoena or similar legal process
  • As required by law, such as to comply with a subpoena or similar legal process

We require all third parties to respect the security of your personal data and to treat it in accordance with the law.

Cookies & Tracking Technologies

We use cookies and similar tracking technologies to track the activity on our services and hold certain information.

Cookies are files with a small amount of data which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your device.

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our services.

Transferring Personal Data Outside the EEA

We may transfer your personal data to countries outside the European Economic Area (EEA). Whenever we transfer your personal data out of the EEA, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:

  • We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission.
  • Where we use certain service providers, we may use specific contracts approved by the European Commission which give personal data the same protection it has in Europe.
  • Where we use providers based in the US, we may transfer data to them if they are part of the Privacy Shield which requires them to provide similar protection to personal data shared between Europe and the US.

Data Subject Rights

Under the GDPR, you have the following rights:

  • Right to Access: You have the right to request copies of your personal data.
  • Right to Rectification: You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
  • Right to Erasure: You have the right to request that we erase your personal data, under certain conditions.
  • Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data, under certain conditions.
  • Right to Object to Processing: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
  • Right to Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.

If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us at our email: info@plexicus.ai

Data Storage & Retention

We will retain your personal data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your personal data to the extent necessary to comply with our legal obligations, resolve disputes, and enforce our legal agreements and policies.

We will also retain usage data for internal analysis purposes. Usage data is generally retained for a shorter period, except when this data is used to strengthen the security or to improve the functionality of our services, or we are legally obligated to retain this data for longer periods.

Security of Your Data

The security of your data is important to us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee its absolute security.

Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page.

We will let you know via email and/or a prominent notice on our services, prior to the change becoming effective and update the 'Last updated' date at the top of this Privacy Policy.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

Contact Us

If you have any questions about this Privacy Policy, please contact us:

  • By email: info@plexicus.ai
  • By visiting this page on our website: www.plexicus.ai/contact
  • By phone: +1 510-298-1863
  • By address: Plexicus, CNAPP, Calle Sabino Arana 8, Planta 2, 48013 Bilbao

Data Protection Officer

We have appointed a Data Protection Officer (DPO) who is responsible for overseeing questions in relation to this privacy policy. If you have any questions about this privacy policy, including any requests to exercise your legal rights, please contact the DPO using the details set out below.

Data Protection Officerr
Plexicus, CNAPP
Calle Sabino Arana 8, Planta 2, 48013 Bilbao
Spain
Email: info@plexicus.ai