chaosbyte

Legal

Privacy Policy

This Privacy Policy ("Policy") describes how RALIFY SOLUTIONS INC ("Company", "we", "our", or "us") collect, use, and share personal information when you use our website at https://chaosbyte.io and our platform (the "Platform").

1. Scope

This Policy covers the personal information you provide when registering an account, submitting websites for security assessment, subscribing to our newsletter, or otherwise communicating with us. It applies across all our Services, including our website, platform, and mobile applications.

2. Information We Collect

a. Information You Give Us

We collect information you provide when you:

  • Create an account (name, email address)
  • Register websites for security assessment (URL, domain name)
  • Subscribe to our newsletter
  • Contact us for support

b. Information from Third Parties

When you sign in with Google OAuth, we receive your Google Account information, including your name, email address, and profile picture.

3. How We Use Your Information

We use the information we collect to:

  • Run, maintain, and improve our Platform
  • Process your security assessments
  • Send you security reports and notifications
  • Respond to your comments and questions
  • Protect our users and the public
  • Detect and prevent fraud and security issues
  • Comply with the law

4. Information Sharing and Disclosure

We do **not** sell, trade, or rent your personal information to third parties. We may share your information in the following circumstances:

  • With your consent or at your direction: For example, we share certain assessment details with security researchers or your organization when you provide explicit permission.
  • With trusted third parties who perform services on our behalf: For example, we share your IP address with Google Analytics to help us understand how visitors use our website.
  • For legal compliance: We may disclose your information if we believe disclosure is necessary to comply with law, enforce our Terms, or protect our users or the public from fraud or harm.

5. Security

We strive to use commercially acceptable means to protect your personal information. However, no method of transmission over the Internet, or method of electronic storage, is 100% secure. We cannot guarantee its absolute security.

In the event of a data breach, we will notify the appropriate authorities and affected users as required by applicable law.

6. Third-Party Services

Our Platform may contain links to third-party websites and services. We are not responsible for the privacy practices or content of these third-party services. We recommend reviewing their privacy policies before providing any information to them.

We use third-party services including Google Analytics, Google OAuth, and other analytics or advertising services. These services have their own privacy policies, and we encourage you to review them.

7. Your Rights

Depending on your location, you may have certain rights regarding your personal information:

  • Access — You can log in to your account to view the information we have about you.
  • Correction — You can update or correct your information at any time.
  • Deletion —You can request that we delete your personal information. To delete your account, go to your account settings, or contact us to request removal of your data.
  • Object — You can object to the processing of your personal information, including for marketing purposes.
  • Data portability — You can request a copy of your personal information in a portable format.

8. Children's Privacy

Our Services are not directed to children under 16. We do not knowingly collect or maintain personal information from children under 16. If we discover that we have collected personal information from a child under 16, we will promptly delete that information.

9. California Privacy Rights

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect, the right to delete personal information, and the right to opt out of the sale of personal information. As a security assessment platform, we do not sell personal information.

10. Changes to This Policy

We may update this Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date at the top of this Policy. We encourage you to review this Policy periodically for any changes.

Changes are effective when they are posted on this page.

11. Security Discovery Data

As part of our proactive security mission, we may scan publicly accessible websites to identify critical or high-severity vulnerabilities. During this process, we may collect publicly available information such as domain registrant details from WHOIS records, contact information listed on websites, and security-related configuration data.

If we determine that a vulnerability is critical and requires immediate notification, we may use professional networking services (such as LinkedIn) to identify and contact the relevant site operator. In such cases, the personal data we collect from LinkedIn — such as your name, title, and professional profile information — is processed solely for the purpose of responsible vulnerability disclosure. We do not store, sell, or share your personal data collected during security discovery activities except as necessary to notify you of the identified risk.

Last updated: July 7, 2025