Privacy Policy
Effective date: 2025-09-12
General
By accessing or using this website and services ("Service"), you agree to the terms of this Privacy Policy. If you do not agree to these terms, please do not access or use the Service.
For the purposes of this policy:
- "Visitor" means an individual that visits any page of our public website.
- "User" means an individual or entity that uses our products or signs up for an account.
- "Service" includes our websites and SaaS products.
Any information stored by this website is treated as confidential. Information is stored securely and accessed by authorized personnel only. We implement and maintain appropriate technical and organizational measures to protect Personal Data against unauthorized or unlawful processing and against accidental loss, destruction, damage, or disclosure.
Information We Collect
In general, you may visit our public web pages without disclosing who you are and without revealing Personal Information. However, without providing certain information, you may not be able to use our products or services.
Collection of User Data
When you create an account or purchase a product, we may collect information such as your name, company name, email address, billing address, payment information, and other relevant data. We use this information to:
- Provide and improve the Service
- Process purchases and billing
- Provide support
- Send service-related and marketing communications (where permitted)
- Meet contractual and legal obligations
We do not use personal data for automated decision making or profiling. We do not intentionally collect special categories of data (e.g., health, racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, sexual orientation). If we become aware that we have received such information, we will promptly delete it.
If you provide information (including Personal Information) about someone else, you must have authority to do so and to consent to the collection and use of that information as described in this policy.
Legal Bases (EEA/UK)
Where the GDPR/UK GDPR applies, we process Personal Data under one or more of the following legal bases: performance of a contract, legitimate interests (e.g., to secure and improve the Service), compliance with legal obligations, and consent where required (e.g., certain marketing cookies/communications).
Data Access, Correction, Deletion, and Opt-Out
Users can access and update certain account information by logging in. You can also contact us to exercise your data subject rights, including access, rectification, deletion, restriction, portability, and objection.
Contact us at admin@apackets.com. We will respond without undue delay and in any event within one month where GDPR applies.
Our Role
We process Personal Data both as a controller and as a processor under the GDPR:
- For personal data of individual Users collected for account management, billing, support, marketing (where applicable), and operation of the Service, we act as the controller.
- When business customers send or store their own end-user or client data in the Service, we generally act as a processor on their behalf, processing such data under their instructions and our data processing terms. In that scenario, the business customer is the controller.
Data Location & International Transfers
Uploaded PCAP files and related data are stored using our cloud providers. In particular, we use Amazon Web Services (AWS) S3 (currently hosted in the United States) and MongoDB Atlas (MongoDB Cloud) (regional location depends on the selected cluster and may involve processing in the United States).
Where the transfer of Personal Data from the EU/EEA/UK to a country outside those jurisdictions occurs, we rely on the European Commission’s Standard Contractual Clauses (SCCs) (2021) and equivalent UK-approved transfer mechanisms with our sub-processors, together with supplementary technical and organizational measures (including encryption in transit and at rest, strict access controls, logging, and procedures to challenge overbroad government access requests).
Sub-Processors
We use the following core sub-processors to provide the Service:
- Amazon Web Services, Inc. — cloud hosting and file storage (Amazon S3); primary processing location: United States; transfer mechanism: SCCs (2021).
- MongoDB, Inc. (MongoDB Atlas) — managed database service; processing location depends on cluster region (may include United States); transfer mechanism: SCCs (2021).
Additional providers (e.g., payments, analytics, communications) may be used; we maintain contracts and appropriate safeguards with each provider. You can contact us to request the current list.
Retention
- Anonymous uploads: Files uploaded without an authenticated account are automatically deleted at least once every 24 hours (often sooner) from our active systems.
- Account-based uploads: Files and associated results are retained until you delete them in your account or as otherwise required for the operation of the Service and legal compliance.
- Logs/metadata: Diagnostic and security logs may be retained for a limited period for security, fraud prevention, and compliance purposes.
Compromise of Personal Information
If a breach of security leads to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to Personal Information, we will notify affected Users and, where required, regulators, in accordance with applicable law.
Choice
You may choose whether or not to provide Personal Information. Some parts of the Service require certain information to function. If you choose not to provide it, you may be unable to use those parts.
How We Share Your Information
- Personally Identifiable Information: We do not sell or rent your Personal Information. We may share it with service providers and sub-processors as described above, and disclose it as required by law, to protect rights and safety, or in connection with a corporate transaction (e.g., merger or acquisition). If you make information publicly available on our Sites (e.g., forum posts), it may be visible to others.
- Non-Personally Identifiable Information: We may share aggregate or de-identified information (e.g., usage statistics) that does not identify you personally.
Cookies and Other Tracking Technologies
We use cookies and similar technologies to operate, secure, and improve the Service. Some cookies are necessary; others are used for analytics and personalization. Where required, we will seek your consent for non-essential cookies.
| Service | Purpose |
|---|---|
| Google Analytics | To distinguish unique users for analytics purposes |
Newsletters
If you subscribe to our newsletter, we will send announcements and updates about the Service. You may unsubscribe at any time via your account settings or by following the unsubscribe link in the email.
Security
We use reasonable and appropriate safeguards to protect Personal Information, including encryption in transit and at rest, access controls, firewalls, and regular monitoring. No method of transmission or storage is 100% secure; if you believe your account or data has been compromised, please contact us immediately.
Aggregate Information
We may track aggregate usage metrics (e.g., total visitors, traffic by page) to analyze trends and administer the Site. Such information does not identify individual users.
Links to Third-Party Sites
Our Sites may link to third-party websites. We are not responsible for the content or privacy practices of those sites. Your use of third-party sites is subject to their privacy policies and terms.
Children's Privacy
The Service is not directed to children. We do not knowingly collect Personal Information from anyone under the age of 16 (or the lower age permitted by local law). If we learn that we have collected such information, we will delete it.
Contact
Questions or requests about this Privacy Policy or your Personal Information can be sent to admin@apackets.com.
Your Consent & Changes
By using the Service, you consent to this Privacy Policy. We may update this policy from time to time. If we make material changes, we will post a notice on our website or notify you by email. The "Effective date" will be updated accordingly.