Privacy Policy

Last updated: December 2025

1. Introduction

Welcome to PentestMe. We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our penetration testing platform.

2. Information We Collect

2.1 Personal Information

We collect information that you provide directly to us, including:

  • Name, email address, and company information
  • Account credentials and authentication data
  • Billing information and payment details
  • Profile information and preferences

2.2 Technical Data

When you use our platform, we automatically collect:

  • IP addresses and device information
  • Browser type and operating system
  • Usage data and platform analytics
  • Scan configurations and results

2.3 Scan Data

We collect and store data from your security scans, including target URLs, scan results, vulnerability findings, and related metadata. This data is necessary to provide our services and generate reports.

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our services
  • Process your transactions and manage your account
  • Send you technical notices and security alerts
  • Respond to your requests and provide customer support
  • Analyze usage patterns and optimize platform performance
  • Detect and prevent fraud and abuse
  • Comply with legal obligations

4. Data Security

We implement industry-standard security measures to protect your information:

  • AES-256 encryption for data at rest
  • TLS 1.3 encryption for data in transit
  • Regular security audits and penetration testing
  • Access controls and authentication requirements
  • Secure data centers with 24/7 monitoring

5. Data Retention

We retain your personal information and scan data for as long as necessary to provide our services and comply with legal obligations. Scan data retention periods vary by subscription plan (30, 90, or unlimited days). You can request deletion of your data at any time by contacting us.

6. Data Sharing and Disclosure

We do not sell your personal information. We may share your information only in the following circumstances:

  • With your consent or at your direction
  • With service providers who assist our operations
  • To comply with legal obligations or court orders
  • To protect our rights and prevent fraud
  • In connection with a merger or acquisition

7. Your Rights

Depending on your location, you may have the following rights:

  • Access your personal information
  • Correct inaccurate data
  • Request deletion of your data
  • Object to processing of your data
  • Export your data in a portable format
  • Withdraw consent at any time

To exercise these rights, contact us at privacy@pentestme.dev.

8. Cookies and Tracking

We use cookies and similar tracking technologies to collect information about your browsing activities. You can control cookies through your browser settings, but disabling cookies may affect platform functionality.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy.

10. Children's Privacy

Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

12. Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us at:

Email: privacy@pentestme.dev

Address: Cape Town, South Africa