Skip to main content
IDevSec LogoIDevSec
LEGAL // COMPLIANCE // TRANSPARENCY

Legal
Documents.

LAST_UPDATED: 2026 // v1.1 // IDEVSEC_LEGAL // ALL_RIGHTS_RESERVED

LEGAL
01 / OVERVIEW

Privacy Policy

IDevSec ("we", "our", "the company") operates idevsec.com and associated platforms. This policy explains what data we collect, how we use it, and your rights as a visitor or client, in alignment with the Digital Personal Data Protection Act (DPDPA), 2023.

By using this website or any IDevSec platform, you agree to the terms of this policy.

02 / DATA COLLECTED

What We Collect

We collect only the minimum data required to operate:

  • +Contact form submissions (name, email, message, company)
  • +Application data submitted via the careers form (name, email, work type, links)
  • +Vulnerability reports submitted via the responsible disclosure process
  • +Basic analytics (page views, referrers) // no personal identifiers stored
  • +Technical logs (IP address, browser type) for security monitoring only

We do not collect payment data, biometric data, or any sensitive personal categories of data.

03 / DATA USE

How We Use It

  • +To respond to contact and consultation enquiries
  • +To process and evaluate job applications
  • +To receive and triage responsible vulnerability disclosures
  • +To monitor platform security and detect abuse
  • +To improve website performance and content

We do not sell, rent, or broker your data to any third party.

04 / DATA RETENTION

How Long We Keep It

Contact enquiries: retained for up to 12 months or until the business relationship concludes.

Applications: retained for up to 6 months after a decision is made.

Security reports: retained indefinitely as part of our internal security audit trail. Researcher information is stored only with explicit consent.

Technical logs: purged on a rolling 30-day cycle.

05 / YOUR RIGHTS

Your Rights

You have the right to:

  • +Request a copy of the data we hold about you
  • +Request correction of inaccurate data
  • +Request deletion of your data (subject to legal obligations)
  • +Withdraw consent for any processing based on consent
  • +Lodge a complaint with the relevant data protection authority

To exercise any of these rights, or for any privacy-related grievances, contact our designated Grievance Officer at legal@idevsec.com. We will respond within 30 days.

06 / COOKIES

Cookies

This website uses minimal, functional cookies only. No tracking cookies. No third-party advertising cookies. No profiling.

We do not use Google Analytics, Meta Pixel, or any equivalent third-party tracking tool.

IDEVSEC_LEGAL // 2026 // v1.1 // ALL_RIGHTS_RESERVED

RESPONSIBLE_DISCLOSURE_POLICY
terminalPRODUCTSsecurityCONSULTINGinfoABOUTworkCAREERSsendCONTACT