Legal

Privacy Policy

Last updated June 2026

This is a plain-language summary of how we handle information. It explains our approach; it isn’t a substitute for a signed data processing agreement, which enterprise customers receive on request at legal@antrixis.com.

What we collect

  • Account data — name, work email, and organization, to create and secure your account.
  • Scan data — the assets, findings, and attack paths produced when you point Antrixis at targets you’re authorized to assess.
  • Usage data — product and diagnostic telemetry to operate, secure, and improve the service.

How we use it

To provide the service, secure your account, communicate with you, and improve the product. We do not sell your data, and we do not train foundation models on your scan data.

Tenant isolation

Customer data is isolated per tenant at the database with row-level security. One customer can never access another’s data.

Sub-processors

We rely on a small set of vetted infrastructure and AI sub-processors to run the platform. Our current list is available to customers on request.

Retention & your rights

We retain data for as long as your account is active or as needed to provide the service, then delete or anonymize it. You can request access, correction, export, or deletion of your data at privacy@antrixis.com.

Security

Encryption in transit and at rest, least-privilege access, and an immutable audit trail. See our Trust Center for the full picture.

Contact

Questions about privacy? Email privacy@antrixis.com.