Skip to main content
Legal

Privacy Policy

How Hijack Security collects, uses, and protects your data.

Effective date: March 14, 2026

Last updated: March 14, 2026

Hijack Security LLC (“we,” “us”) operates hijacksecurity.com. This policy explains what data we collect, why, and what we do with it.

What We Collect

Waitlist form

  • Email address
  • Source (which button you clicked)
  • Submitted voluntarily when you sign up for early access to Intercept

Contact form

  • Name, email, company, and message
  • Submitted voluntarily when you reach out to us

Server logs

  • IP address, user agent, request path, and timestamps
  • Collected automatically on every request
  • Used for security monitoring and abuse prevention
  • Retained for 30 days, then deleted

What we don't collect: We don't use cookies, tracking pixels, analytics services, or ad networks. We don't use social media widgets that track you. The only client-side storage is a theme preference (light/dark mode) in your browser's localStorage — it contains no personal information.

How We Use Your Data

  • Waitlist signups: To notify you when Intercept is available. We may send product updates to your email. That's it.
  • Contact submissions: To respond to your inquiry. We don't add you to marketing lists.
  • Server logs: To detect abuse, debug issues, and monitor uptime.

We don't sell your data. We don't share it with advertisers. We don't use it to build profiles.

Where We Store It

Form submissions are stored in AWS DynamoDB in the us-east-1 (N. Virginia) region. Data is encrypted at rest using AWS-managed keys and in transit via TLS 1.2+.

Access is restricted to authorized personnel only, secured through IAM roles and least-privilege policies.

Who We Share It With

We don't sell or rent your personal information.

We use these service providers to operate the site:

If required by law — a valid subpoena, court order, or legal process — we will disclose information as necessary. We'll notify you if legally permitted to do so.

Your Rights

If you're in the EU/EEA (GDPR): You have the right to access, correct, delete, port, or restrict processing of your personal data. Our lawful basis for processing is legitimate interest (responding to your inquiry, managing the waitlist) and consent (you chose to submit the form).

If you're in California (CCPA): You have the right to know what data we've collected, request deletion, and opt out of sale. We don't sell personal information, so there's nothing to opt out of.

Everyone: You can request access to, correction of, or deletion of your data at any time.

To exercise any of these rights: Email us at privacy@hijacksecurity.com. We'll respond within 30 days. No verification hoops — we'll confirm your identity via the email address on file and process your request.

Children

This website is not directed at anyone under 13. We don't knowingly collect data from children. If we learn we've collected information from a child under 13, we'll delete it immediately.

Changes

If we make material changes to this policy, we'll update the “Last updated” date at the top and post the revised policy here. For significant changes, we'll notify waitlist subscribers via email.

Contact

Questions about this policy or your data?

Email: privacy@hijacksecurity.com

Ready to See Everything?

Join the waitlist. Be first to experience Intercept — nine scan modules, one score, zero tool sprawl.

Free at launch. No credit card required.