DataTel

Privacy Policy

Last updated: April 5, 2026

Who We Are

Cyber Risk Hub is a product of DataTel ("we," "us," "our"), a managed security services provider based in the United States. This privacy policy explains how we handle information collected through the Cyber Risk Hub platform at cyberriskhub.datatelco.com.

Information We Collect

Account Information

When you create an account, we collect your email address and, optionally, your name and company name. If you sign in with Microsoft, we receive your Microsoft profile information (name, email) through OAuth.

Assessment Data

When you run an assessment or scan, we collect the data you provide (questionnaire responses) and the results generated by the scan (security findings, scores, recommendations). For the M365 scanner, we access your Microsoft 365 tenant with read-only permissions that you explicitly grant. We do not modify any settings or data in your tenant.

Domain Scan Data

For domain security checks and dark web exposure scans, we query publicly available DNS records, breach intelligence databases, and web security analysis services using only your domain name. No access to internal systems is required.

Usage Data

We collect standard web analytics data including IP address, browser type, and pages visited to improve the platform experience.

How We Use Your Information

  • To run the security assessments and scans you request
  • To generate reports and recommendations
  • To communicate with you about your assessment results
  • To improve the platform and our services
  • To connect you with a security engineer if you request a consultation

Data Retention

Assessment results and reports are stored for as long as your account is active. M365 scanner access tokens are encrypted in transit and discarded immediately after the scan completes. You may request deletion of your data at any time by contacting us.

Data Sharing

We do not sell your data. We may share data with third-party services that help us operate the platform (hosting, email, analytics), but only to the extent necessary to provide the service. Assessment results are only accessible to you and, if applicable, your assigned DataTel account representative.

Security

We use encryption in transit (TLS), encrypted token storage, row-level security on our database, and role-based access controls. Our infrastructure is hosted on SOC 2 compliant platforms.

Your Rights

You may request access to, correction of, or deletion of your personal data by contacting us at [email protected].

Contact

DataTel
Email: [email protected]
Web: datatelco.com