English
Upload Proposal
Menu

Privacy Policy

Effective date: 2025-11-15

This Privacy Policy explains how Dark Vector Systems Inc. ('Dark Vector', 'we', 'us') handles personal information in connection with our websites, Proof Sprint engagements, and other services (collectively, the 'Services'). It supplements the commitments in our Terms of Service and applies whenever you interact with us online or offline.

We operate a static-first environment: the public site runs without client-side JavaScript, cookies, or third-party trackers. Interaction data flows through hardened server-side pipelines so we can prove compliance while minimizing the data we collect.

1. Categories of Data We Collect

We only collect the information necessary to deliver, secure, and account for the Services.

  • Engagement submissions you provide during a Proof Sprint, such as scope documents, architecture artifacts, code samples, and supporting evidence.
  • Operational telemetry generated by our servers (timestamps, request paths, hashed session identifiers, and outcome codes) required for debugging, fraud prevention, and audit trails.
  • Account and contract records including names, professional contact information, signatures, billing references, and communications tied to your engagement.

2. How We Use Information

Personal information is processed to fulfill our contracts with you and to keep the Services reliable. Core uses include:

  • Delivering project milestones, reviewing submissions, and providing status updates.
  • Maintaining the security of our infrastructure, including intrusion detection, incident response, and integrity monitoring.
  • Providing customer support, invoicing, and engagement planning communications.
  • Meeting legal, regulatory, and certification obligations, including export controls and audit evidence.

3. No Client-Side Tracking

We do not deploy client-side JavaScript, cookies, pixels, or third-party analytics. Authentication and session management occur through short-lived, signed tokens transmitted over encrypted channels. Once tokens expire or a Proof Sprint ends, the associated session material is invalidated.

4. Sharing & Subprocessors

We never sell personal information. We share it only with vetted subprocessors that are essential to the Services and operate under written agreements obligating confidentiality and security standards.

  • Infrastructure hosting providers that run our isolated environments in the United States.
  • Secure file storage and encrypted backup services used to safeguard engagement artifacts.
  • Communication tools that deliver support responses or contract documentation.

5. Data Retention & Deletion

Proof Sprint materials are retained only for the duration of the engagement plus the agreed audit window. System logs roll automatically on a 30-day schedule unless a longer retention period is required by law or to investigate a security incident. You may request deletion of engagement outputs; we honor verified requests unless retaining the data is legally required.

6. Security Controls

Dark Vector Systems maintains layered technical and organizational controls, including encryption in transit and at rest, segregated networks, immutable audit logging, mandatory access reviews, and background-checked personnel. Security documentation (including SOC 2 Type II readiness materials) is available under NDA.

7. Your Choices & Rights

Depending on your location, you may have rights to access, correct, delete, or export your personal information, or to object to certain processing activities. Submit requests to privacy@darkvectorsystems.com and we will respond within the timelines required by applicable law. We will verify your identity before acting on requests.

8. International Transfers & Compliance

We operate primarily from the United States. When we transfer personal information across borders, we rely on appropriate safeguards such as Standard Contractual Clauses or equivalent frameworks. We continually map our controls against NIST 800-171, SOC 2, and relevant data protection laws.

9. Contacting Dark Vector Systems

Reach our privacy team at privacy@darkvectorsystems.com or by mail at 1000 Heritage Center Cir. #374, Round Rock, TX 78664-4463 USA.

For security disclosures, contact security@darkvectorsystems.com. We respond to responsible vulnerability reports within 72 hours.

We may update this Privacy Policy to reflect operational, legal, or regulatory changes. If updates materially impact you, we will notify you through the Services or by email before they take effect.