Skip to content
Cyber Army LogoCyber Army™

Privacy Policy

Last updated: 2025-09-29

Cyber Army ("we," "us") respects your privacy. This policy explains what data we collect across our products — CyberArmy AutoFix and Cyber Swarm — how we use it, and your rights.

What we collect

Contact and account information

  • Name, work email, company name, and role — submitted via contact forms, early access requests, or account sign-up.
  • Communication records: emails, support tickets, and demo requests.

AutoFix platform data

When you connect AutoFix to your infrastructure, we collect the minimum necessary to perform autonomous remediation:

  • Asset inventory metadata: domains, IPs, cloud resource identifiers, repository names.
  • Vulnerability findings and fix records — stored per tenant, isolated from other customers.
  • Approval and audit logs: who approved what, when, and the outcome.
  • We do not collect source code, application data, user PII from your systems, or any data unrelated to security operations.

Cyber Swarm scan data

Swarm operates entirely on your external attack surface — publicly reachable information:

  • DNS records, IP addresses, open port observations, and service banners.
  • TLS certificate metadata and Certificate Transparency log entries.
  • HTTP response headers and technology fingerprints.
  • Exploitation evidence for findings (payloads, responses, screenshots of public-facing interfaces).
  • We do not collect data behind authentication, credentials, internal network data, or user personal information from your application.

Website and operational data

  • IP addresses, referrers, user-agent strings, pages viewed, and timestamps — used for security, reliability, and abuse prevention.
  • Analytics data (aggregated, non-personal) for product improvement.

How we use your data

  • Service delivery: to operate AutoFix and Swarm, generate reports, and send alerts.
  • Security and fraud prevention: to detect abuse and protect our infrastructure.
  • Communication: to respond to enquiries, send product updates (with your consent), and deliver requested reports.
  • Product improvement: aggregated, anonymised usage data to improve detection and remediation capabilities.
  • We do not sell your data. We do not use your scan data to train AI models shared with other customers.

Data sharing

  • Subprocessors: limited to approved cloud infrastructure, analytics, and communication tools. Full list at /legal/subprocessors.
  • Legal requirement: we may disclose data when required by law, court order, or to protect rights and safety.
  • Business transfer: in the event of a merger or acquisition, customer data may transfer — you will be notified in advance.

Data retention

  • AutoFix audit logs and scan records: retained for the duration of your contract plus 90 days, then securely deleted unless you request earlier deletion.
  • Swarm scan results: retained for 90 days on the Monthly plan; 7 days on Pay-as-you-go.
  • Contact and account data: retained while your account is active and for a reasonable period after closure.

Your rights

Depending on your location, you may have rights to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your data (subject to legal retention obligations).
  • Object to or restrict certain processing.
  • Data portability (receive your data in a machine-readable format).

To exercise any of these rights, contact cyberarmy@codeproof.com.

Cookies

We use essential cookies for session management and security. We use analytics cookies (with your consent) to understand aggregate usage. You can manage cookie preferences in your browser settings.

Security

We use TLS encryption in transit, AES-256 encryption at rest, and per-tenant data isolation. For details on our security practices see our Security page.

Changes to this policy

We may update this policy as our products evolve. Material changes will be communicated via email or a notice on our website before taking effect.

Contact

Privacy questions or data requests: cyberarmy@codeproof.com.
Cyber Army Technologies, Inc. — Silicon Valley, CA, USA.