At Iron Kestrel, we prioritize the privacy and security of our customers and website visitors. This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal information. By using our services or visiting our website, you consent to the practices described in this policy.
We gather personal information from our customers, including name, company details, email address, billing zip code, state, and phone number. For customers opting for credit terms, we employ a comprehensive approach to assess initial and ongoing creditworthiness. This involves gathering DUNS information alongside other pertinent data, ensuring secure transactions and maintaining a mutually beneficial relationship. For website visitors, we limit data collection to essential details such as name, company name, email, and phone number, solely for quotation and inquiry purposes.
The personal information we collect is used solely for billing purposes and is limited to the minimum necessary to complete transactions. We do not collect sensitive payment information; all payments are processed securely through Stripe.
We may share your personal information with third-party services or partners, but only when necessary to provide our services or fulfill our contractual obligations. Any third-party services utilized will be fully disclosed at the time of contract, service agreement, or purchase, ensuring compliance with industry standards such as PCI-DSS, SOC2, and HIPAA.
We employ robust security measures to safeguard your personal information. This includes 256-bit AES encryption, adherence to least privilege principles, and true zero trust principles, ensuring the highest level of protection for your data.
We retain personal information collected through our website for a reasonable period necessary to fulfill the purposes outlined in this Privacy Policy, or as required by applicable laws and regulations.
As we continue to grow, our information management processes may evolve. However, we will communicate any significant changes to our customers. Currently, to access, update, or delete your personal information, please email us at security [at] ironkestrel.com.
Our website does not utilize cookies. Any future implementation for essential authentication purposes will prioritize security and transparency, with clear communication via email to our users.
Iron Kestrel operates in Massachusetts, United States, and adheres to all relevant data and privacy laws. We maintain compliance with industry standards and regulations applicable to the data in question, including but not limited to PCI-DSS, SOC2, and HIPAA.
We reserve the right to update or modify this Privacy Policy at any time. Any changes will be posted on this page and will be effective immediately upon posting.
If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us at security [at] ironkestrel.com.