Privacy Policy

We may collect the following categories of information:

• Contact Information: Name, email address, telephone number, and organizational affiliation provided voluntarily through inquiry forms or direct correspondence.
• Engagement Information: Details related to security requirements, threat assessments, or operational needs shared in the course of a client relationship or prospective engagement.
• Technical Information: IP address, browser type, device identifiers, and pages visited, collected automatically when you access our website.
• Communications: Records of correspondence, including emails and secure messages, exchanged with our team.

We do not collect sensitive personal data beyond what is strictly necessary to provide our services or respond to your inquiry.

Information collected is used solely for the following purposes:

• Responding to inquiries and evaluating prospective engagements
• Delivering contracted security services and fulfilling our professional obligations
• Maintaining records required by applicable law or regulation
• Improving the functionality and security of our website
• Communicating material updates relevant to an active engagement

We do not use your information for marketing purposes, nor do we sell, rent, or trade personal information to any third party under any circumstances.

Confidentiality is fundamental to how Cerberus operates. All information shared with us in connection with a security engagement — including the identity of clients, the nature of services rendered, and any operational details — is treated as strictly confidential. Our personnel are bound by confidentiality obligations that survive the termination of any engagement.

We will not disclose client information to any third party except: (a) with the express written consent of the client; (b) as required by applicable law, court order, or lawful government authority; or (c) to the extent necessary to prevent imminent harm to persons or property.

Cerberus does not sell or share personal information with third parties for commercial purposes. We may engage trusted service providers — such as secure hosting or communications infrastructure providers — who process data solely on our behalf and under strict confidentiality agreements. These providers are prohibited from using your information for any purpose other than providing services to Cerberus.

Any subcontractors or operational partners engaged in connection with a client engagement are subject to equivalent confidentiality obligations.

We implement industry-standard technical and organizational measures to protect information against unauthorized access, disclosure, alteration, or destruction. These measures include encrypted communications, access controls, and secure data storage practices appropriate to the sensitivity of the information held.

While no system can guarantee absolute security, we continuously review and enhance our security practices to reflect the evolving threat landscape.

We retain personal information only for as long as necessary to fulfill the purposes for which it was collected, to satisfy our legal and contractual obligations, or as required by applicable law. Upon conclusion of an engagement, client information is archived securely and access is restricted to authorized personnel only.

Our website may use cookies and similar technologies to support basic functionality and understand how visitors interact with our site. We do not use third-party advertising cookies or behavioral tracking technologies. You may configure your browser to refuse cookies; however, certain features of the site may not function as intended.

Depending on your jurisdiction, you may have the right to:

• Request access to personal information we hold about you
• Request correction of inaccurate or incomplete information
• Request deletion of your personal information, subject to legal retention requirements
• Object to or restrict certain processing activities

To exercise any of these rights, please contact us using the information provided below. We will respond to all legitimate requests within a reasonable timeframe and in accordance with applicable law.

Cerberus operates globally. If you are located outside the United States, please be aware that information you provide may be transferred to and processed in the United States or other jurisdictions where our operations are based. We take appropriate steps to ensure that such transfers comply with applicable data protection laws.

We reserve the right to update this Privacy Policy at any time. Material changes will be reflected by an updated effective date at the top of this page. We encourage you to review this policy periodically. Continued use of our website or services following any update constitutes acceptance of the revised policy.

For questions, concerns, or requests relating to this Privacy Policy or the handling of your personal information, please contact us at: