Enterprise Security

Transparent Data Practices, Engineered for Enterprise Trust

Effective Date: April 25, 2026. This policy describes how EVADA processes data to power secure operations, maintain service integrity, and support compliant cyber risk programs.

Privacy Commitments

No sale of personal data
Controlled subprocessor governance
Encryption and auditability by default

Information We Process

Account identity and authentication metadata required for secure access.
Security telemetry and scan outputs generated through authorized platform use.
Operational diagnostics used to maintain reliability, threat visibility, and response quality.

Why We Process It

Deliver continuous security monitoring, exploit validation, and report generation.
Improve model-assisted detection quality and prioritize high-confidence risks.
Meet contractual, legal, and regulatory obligations for enterprise customers.

Sharing and Subprocessors

We do not sell personal information.
Data may be processed by approved infrastructure/security subprocessors under strict DPA terms.
All subprocessors are subject to confidentiality, access control, and security review requirements.

Retention and Security

Encryption in transit and at rest for sensitive data channels.
Role-based access controls, auditing, and environment hardening.
Retention periods are aligned with customer agreements and legal obligations.

Privacy Contact

For data rights, processing requests, or privacy review inquiries, contact info@evada.ai.