Privacy Policy

1. Overview

Portal VII, Inc. ("Portal VII," "we," "us," or "our") is a global leader in quantum-resistant cybersecurity solutions, dedicated to protecting the digital assets of enterprises, governments, and individuals worldwide. This Privacy Policy governs the collection, use, storage, and disclosure of information we obtain through our website (www.portalvii.com), services, applications, and related platforms (collectively, the "Services").

We are committed to ensuring compliance with global data protection regulations, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable laws. By accessing or using our Services, you consent to the practices described in this policy. If you do not agree, please discontinue use of our Services.

2. Information We Collect

To provide our Services, we collect various types of information, ensuring transparency and adherence to data minimization principles:

• Personal Information: When you interact with our Services, we may collect personal data such as your full name, email address, phone number, company name, job title, and resume (for job applications). This information is collected when you register, contact us, apply for a position, or subscribe to our updates.
• Account Information: If you create an account, we may collect login credentials, preferences, and settings to manage your account securely.
• Usage and Technical Data: We collect data about your interactions with our Services, including IP addresses, browser type, operating system, device identifiers, pages visited, time spent, and referral URLs. This helps us monitor performance, security, and user experience.
• Cookies and Tracking Technologies: We use cookies, web beacons, and similar technologies to enhance functionality, analyze trends, and deliver personalized content. See Section 7 for more details on cookies.
• Communications: If you contact us directly (e.g., via email or support forms), we collect the content of your messages, including any attachments.
• Third-Party Data: We may receive information from third parties, such as partners or service providers, when you interact with our Services through their platforms (e.g., job boards, analytics providers).

3. How We Use Your Information

We use the information we collect to deliver, improve, and secure our Services in the following ways:

• Service Delivery: To provide and maintain our quantum-resistant security platform, process job applications, manage accounts, and fulfill your requests.
• Communication: To respond to inquiries, provide customer support, send service-related notifications (e.g., updates, security alerts), and deliver marketing communications (with your consent).
• Analytics and Improvement: To analyze usage patterns, monitor performance, and enhance the functionality and user experience of our Services through aggregated, anonymized data.
• Security and Fraud Prevention: To detect, prevent, and respond to security incidents, fraud, and abuse using AI-driven threat detection and zero-trust architecture.
• Legal and Compliance: To comply with legal obligations, enforce our terms of service, protect our rights, and respond to lawful requests from authorities.
• Research and Development: To conduct research and develop new quantum-resistant technologies, ensuring our Services remain at the forefront of cybersecurity innovation.

4. How We Protect Your Information

Portal VII employs state-of-the-art security measures to safeguard your data against unauthorized access, disclosure, alteration, or destruction:

• Quantum-Resistant Encryption: We utilize NIST-approved post-quantum cryptographic algorithms to encrypt data both in transit (using TLS 1.3) and at rest, ensuring resilience against future quantum attacks.
• Zero-Trust Architecture: Our systems enforce continuous authentication, least privilege access, and micro-segmentation to minimize risk.
• AI-Driven Threat Detection: We deploy advanced machine learning models to detect and respond to threats in real-time, including anomaly detection and predictive analytics.
• Regular Security Audits: We conduct independent audits, penetration testing, and vulnerability assessments to identify and mitigate potential risks.
• Access Controls: Strict access controls, multi-factor authentication (MFA), and role-based permissions ensure only authorized personnel can access sensitive data.
• Data Minimization and Anonymization: We collect only the data necessary for our operations and anonymize data where possible to reduce risk.
• Incident Response: Our robust incident response plan ensures rapid mitigation and notification in the unlikely event of a data breach, in compliance with applicable laws.

5. Data Sharing and Third-Party Disclosure

We do not sell, trade, or rent your personal information to third parties. However, we may share your data under the following circumstances:

• Service Providers: We engage trusted third-party vendors (e.g., cloud hosting providers, analytics services) to assist in delivering our Services. These providers are bound by strict confidentiality agreements and data protection obligations.
• Legal Requirements: We may disclose information if required by law, regulation, or legal process, such as in response to a subpoena, court order, or government investigation.
• Business Transfers: In the event of a merger, acquisition, or sale of all or part of our assets, your information may be transferred as part of the transaction, subject to applicable data protection laws.
• With Your Consent: We may share your information with third parties if you provide explicit consent, such as when integrating our Services with external platforms.
• Aggregated Data: We may share anonymized, aggregated data for research, marketing, or industry analysis purposes, ensuring your identity remains protected.

6. Your Rights and Choices

Portal VII respects your rights regarding your personal information. Depending on your jurisdiction, you may have the following rights:

• Right to Access: Request a copy of the personal data we hold about you.
• Right to Rectification: Request corrections to inaccurate or incomplete data.
• Right to Erasure: Request deletion of your data (subject to legal retention requirements).
• Right to Restrict Processing: Limit how we use your data under certain circumstances.
• Right to Data Portability: Receive your data in a structured, commonly used, and machine-readable format.
• Right to Object: Object to processing for direct marketing or legitimate interests, including profiling.
• Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent (e.g., marketing emails).
• Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.

To exercise these rights, please submit a request to privacy@portalvii.com. We may require verification of your identity to protect your data. We will respond within 30 days (or as required by law).

For California residents, under the CCPA, you have the right to opt-out of the "sale" of your personal information. We do not sell your data, but you can request disclosure of data shared with third parties for business purposes.

7. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience, improve our Services, and analyze usage:

• Essential Cookies: Necessary for core functionality, such as session management and security (e.g., authentication cookies).
• Performance Cookies: Collect anonymized data on how users interact with our site to improve performance (e.g., Google Analytics).
• Functionality Cookies: Enable enhanced features, such as remembering your preferences or language settings.
• Marketing Cookies: Used to deliver targeted advertisements or track ad performance (with your consent).
• Third-Party Cookies: Some third-party services (e.g., analytics providers) may set cookies on our behalf, subject to their privacy policies.

You can manage cookie preferences through our cookie consent tool (if applicable) or your browser settings. Note that disabling essential cookies may affect the functionality of our Services.

8. Data Retention

We retain personal information only for as long as necessary to fulfill the purposes outlined in this policy or as required by law. Specific retention periods include:

• Account Data: Retained for the duration of your account’s existence plus 6 months, unless you request deletion.
• Job Applications: Retained for 12 months after submission, unless you request deletion or are hired (in which case, data is transferred to HR systems).
• Usage Data: Retained for up to 24 months, after which it is anonymized for long-term analytics.
• Legal Obligations: Certain data may be retained longer if required by law (e.g., tax records for 7 years).

When data is no longer needed, we securely delete or anonymize it using industry-standard methods.

9. International Data Transfers

As a global company, Portal VII may transfer your personal information to jurisdictions outside your country of residence, including the United States, where our headquarters are located. We ensure compliance with international data protection laws through the following mechanisms:

• Standard Contractual Clauses (SCCs): We use SCCs approved by the European Commission to ensure adequate protection for data transferred outside the EEA.
• Data Protection Agreements: We enter into agreements with third-party vendors to ensure they meet equivalent data protection standards.
• Certifications: Where applicable, we rely on certifications like the EU-US Data Privacy Framework (pending implementation).

If you have concerns about international data transfers, please contact us for more information on the safeguards we have in place.

10. Children’s Privacy

Portal VII’s Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that a child under 18 has provided us with personal information, we will take immediate steps to delete such data in compliance with the Children’s Online Privacy Protection Act (COPPA) and other applicable laws. If you believe a child has provided us with their information, please contact us at privacy@portalvii.com.

11. Changes to This Privacy Policy

Portal VII may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or industry standards. We will notify you of significant changes by:

• Posting the updated policy on our website with a new "Last Updated" date.
• Sending a notification to your registered email address (if applicable).
• Displaying a prominent notice on our website for at least 30 days before the changes take effect.

Last Updated: March 16, 2025

12. Contact Information

For questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact our Data Protection Officer (DPO):

• Email: privacy@portalvii.com
• Phone: +1-800-PORTAL7 (+1-800-767-8257)
• Mail: Portal VII, Inc., Attn: Data Protection Officer, 123 Quantum Lane, San Francisco, CA 94105, USA

For EU residents, our GDPR Representative can be contacted at gdpr-rep@portalvii.com.

13. Complaints and Dispute Resolution

If you have a complaint about our data practices, please contact us using the details above. We will investigate and respond within 30 days. If you are not satisfied with our response, you have the right to lodge a complaint with your local data protection authority:

• EU Residents: Contact your local Data Protection Authority (e.g., ICO in the UK, CNIL in France).
• US Residents: File a complaint with the Federal Trade Commission (FTC) or your state’s Attorney General.

We are committed to resolving disputes through alternative dispute resolution mechanisms, such as mediation or arbitration, where applicable.

14. Additional Information

For more information about our privacy practices, please review the following resources:

• Security Practices: Learn more about our quantum-resistant security measures.
• Terms of Service: Understand the terms governing the use of our Services.
• Cookie Policy: Detailed information on our use of cookies and tracking technologies.