Legal
Short version: we collect what we need to scan and bill, and nothing else.
Account: name, email, organization. Scans: targets you submit, findings produced, evidence captured. Billing: handled by Stripe — we never see your card.
To deliver scans, show you findings, bill you correctly, and prevent abuse.
Stripe (billing), Resend (transactional email), Cloudflare (CDN/WAF), AWS KMS (key custody). No data sold. Ever.
Scan artifacts: 90 days by default. Audit logs: 12 months. Account record: until you delete it.
Access, export, correction, deletion. Email privacy@argus.security. We respond within 30 days (GDPR Art. 12; CCPA §1798.130).
Argon2id for passwords. AES-256-GCM envelope encryption on evidence. KMS-managed keys with quarterly rotation. Audit log of every privileged action.
privacy@argus.security · ArgusSecure, c/o GSGD FIELD SOLUTIONS ENGINEERING