Legal
Privacy Policy
This policy explains how the Halo Threats app and website handle account and operational information for CVE risk intelligence workflows.
Information we collect
When you sign in, we receive account information from your chosen sign-in provider, such as your email address, display name, provider identifier, account ID, and authentication state needed to keep you signed in.
If you create or edit a profile, we process profile fields such as display name, handle, bio, and provider-supplied photo URL when available. If you enable notifications in the iOS app, we process device notification tokens, app version, device notification state, and notification preferences needed to deliver alerts.
How we use information
We use account and application information to authenticate users, protect access, provide user and admin workflows, deliver requested threat alerts, improve reliability, and maintain the security of the service.
Service providers
The service uses trusted infrastructure providers for hosting, authentication, backend data access, abuse prevention, monitoring, and push notification delivery. These providers process information as needed to operate, protect, and monitor the service.
Account deletion and retention
Signed-in users can initiate account deletion from Settings in the iOS app. Deletion removes the app account, user profile, handle reservation, notification tokens, and notification preferences associated with the account.
Some records may be retained where required for legal, security, fraud prevention, abuse prevention, backup, or audit obligations. Account deletion is permanent and is separate from signing out.
AI and public CVE content
Public CVE risk intelligence may be generated or assisted by AI and may be incomplete, delayed, inaccurate, or stale. Halo Threats does not send personal account or profile data to AI providers for public CVE content generation.
Admin access and external links
Privileged admin users may access limited account metadata to operate and protect the service. Public CVE pages and the app may open external vendor, government, advisory, or marketing links that are governed by third-party policies.
Contact
For privacy questions, data requests, or support, use the Halo Threats support page at https://halothreats.com/support.