Get Started
Privacy Policy

Last Updated on January 07, 2020

SaltyCloud is a Public Benefit Company that provides security automation tools. We are committed to the privacy of everyone that uses our website and our services, and we do not take this responsibility lightly.

SaltyCloud (“us”, “we”, or “our”) refers to Salty Cloud, PBC and operates the domain, its subdomains, and its suite of security automation tools including Panopticon, Isora, Dorkbot, Stache, and Phishslap, all known as, (the “Services”).

This page informs you of our policies regarding the collection, use, and disclosure of personal data when you use our Services and the choices you have associated with that data. We use your data to provide and improve the Services. By using the Service, you agree to the collection and use of information in accordance with this policy.

What data do we collect?

Personal Data

While using our Services, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you (“Personal Data”). Personally identifiable information may include, but is not limited to: email addresses, first and last name, phone number, address, state, province, postal code, or city.

Usage Data

We may also collect information about how the Service is accessed and used (“Usage Data”). This Usage Data may include information such as your computer’s Internet Protocol (IP) address, browser type, browser version, the pages of our Services that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.

Tracking & Usage Data

We use cookies and similar tracking technologies to track the activity on our Services and hold certain information. Cookies are files with small amount of data which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your device. Tracking technologies also used are beacons, tags, and scripts to collect and track information and to improve and analyze our Services.

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Services.

How do we use your data?

We may use your Personal Data to provide and maintain our Services, notify you about changes to our Services, provide customer support, gather analysis or valuable information so that we can improve our Services, monitor the usage of our Services, detect, prevent, and address technical issues, or provide you with news, special offers, and general information about other goods, services, and events which we offer that are similar to those that you have already purchased or inquired about unless you have opted not to receive such information.

We may use your Usage Data to conduct research on usage patterns and behaviors that help us improve our Services.

How long do we keep your data?

We will retain your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy. Usage Data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of our Service, or if we are legally obligated to retain this data for longer time periods.

How do we protect your data?

We take reasonable technical and organizational measures to safeguard Personal Data against loss, theft, and unauthorized access, disclosure, alteration, misuse, or destruction. Unfortunately, no data transmission, software, or storage system can be guaranteed to be 100% secure. If you have reason to believe that your interaction with us is no longer secure (for example, if you feel that the security of an account has been compromised), please notify us immediately at If we learn of a breach of our systems, we may notify you or others consistent with applicable law and/or as agreed in our contract with you. We may communicate with you electronically regarding security, privacy, and administrative issues relating to your use of the Services and the Information you provide to us.

How do we transfer your data?

Your information, including Personal Data, may be transferred to—and maintained on—computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction. If you are located outside the United States and choose to provide information to us, please note that we transfer the data, including Personal Data, to the United States for processing. Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and no transfer of your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of your data and other personal information.

Our legal obligations.

Under certain circumstances we may be required to disclose your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g. a court or a government agency). We may also disclose your Personal Data to protect and defend the rights or property of our company, prevent or investigate possible wrongdoing in connection with our Services, protect the personal safety of our users or the public, or protect  against legal liability.

Your Personal Data rights in Europe.

If you are in the European Union or the United Kingdom, you have the right to: request access to and correction of your Personal Data; restrict or object to the processing of your Personal Data; and request your Personal Data be “forgotten” (technically erased). If you would like to exercise these rights, contact us at Please describe the nature of your request and the Personal Data it relates to, and we will comply as soon as reasonably practicable, consistent with applicable law. We will verify your identity before we comply with your request, and therefore ask for your cooperation with our identity verification process.

If we process your Personal Data based on your consent, you may withdraw your consent at any time. You will know if we are seeking to rely on your consent at the time we collect your information via a prominent notice.

Other policies we observe.

Use by Minors

Our Services are not directed to individuals sixteen (18) and under or those not of the age of majority in your jurisdiction, and we request that these individuals do not provide Personal Data through our Services.

Links to Other Parties

Our Services may contain links to or facilitate access to other websites or online services. This Privacy Policy does not address, and we are not responsible for the privacy, information, or practices of other parties. The inclusion of a link within our Services does not imply endorsement of the linked site or service by us or our affiliates. We encourage you to review the privacy policies and learn about the privacy practices of those companies whose websites you choose to visit.

Updates to this Privacy Policy

We reserve the right, at its sole discretion, to modify, add or remove portions of this Privacy Policy from time to time. We will note any such changes by updating the publication date of this Privacy Policy. It is each User’s responsibility to check this Policy periodically for changes. The continued use of the Service following the posting of any changes to this Policy constitutes each User’s acceptance of those modifications, additions, deletions or changes.


If you have any questions or comments about this Privacy Policy, the information practices of our Services, or your dealings with us, you can contact us at any time at

Get Started
Manage assessments
confidently with
collaborative GRC tooling