Last updated: May 18, 2026
Petra Security, Inc. ("Petra," "we," "us") provides identity threat detection and response for Microsoft 365 environments. This policy explains what personal information we collect, why we collect it, and the choices you have.
If you have questions or want to exercise any rights described below, email support@petrasecurity.com.
This policy covers people who visit petrasecurity.com, use our product, or interact with us as prospects, customers, or partners. It applies regardless of where you live, with additional rights for residents of certain jurisdictions described at the end.
Information you give us directly. When you fill out a form, request a demo, sign up for an account, email us, or talk to us at an event, we collect what you provide, typically name, work email, company, job title, phone number, and anything you write in a message field.
Information we collect automatically when you visit our site. Our website and analytics tools collect standard web data: IP address, browser type, device type, pages visited, referring URL, time spent, and similar diagnostic and usage information. This information may be associated with cookies and similar technologies.
Information from third parties. We use enrichment, advertising, and marketing tools that may provide us with additional business information about you (company size, industry, role) to help us understand who is interested in our product.
We use personal information to:
We do not sell personal information for money. We do share limited information with advertising platforms (Meta, LinkedIn, Reddit, Google) to measure ad performance and reach similar audiences, which some privacy laws classify as "sharing" or "selling." You can opt out of this. See below.
We use cookies and similar technologies to make our site work, to understand how visitors use it, and to measure and improve our marketing. These include:
We use third-party tools from providers including Google, Meta, LinkedIn, Reddit, HubSpot, and others to deliver this functionality. Cookies may be set by us or by these third parties.
You can control cookies through your browser settings. We honor the Global Privacy Control (GPC) browser signal. If your browser sends a GPC signal, we treat it as an opt-out of sharing your information with advertising platforms.
We share information with:
We require service providers to handle personal information consistent with this policy.
We retain personal information for as long as we need it for the purposes described above, then delete or anonymize it. Marketing contacts are kept until you unsubscribe or ask us to delete your information. Customer data is retained as described in the relevant customer agreement.
We implement reasonable administrative, technical, and physical safeguards designed to protect personal information.
Depending on where you live, you may have the right to:
To exercise any of these rights, email support@petrasecurity.com. We will verify your identity (typically by confirming the request comes from an email address we already have on file) and respond within the time required by applicable law, generally 30 to 45 days. You can also designate an authorized agent to make a request on your behalf.
The California Consumer Privacy Act (CCPA), as amended by the CPRA, gives you the rights listed above plus the right to opt out of the sale or sharing of personal information and the right to limit the use of sensitive personal information.
We do not sell personal information for money. We do share limited information with advertising platforms as described above, which is treated as "sharing" under California law. To opt out, use our Your Privacy Choices page, enable Global Privacy Control in your browser, or email support@petrasecurity.com.
We have not sold or shared the personal information of consumers under 16 in the preceding 12 months, and we do not knowingly collect personal information from children under 16.
If you live in Canada, the Personal Information Protection and Electronic Documents Act (PIPEDA) and, if you live in Quebec, Law 25 give you rights to access, correct, and withdraw consent for the personal information we hold about you. To exercise these rights, email support@petrasecurity.com. Quebec residents may also file complaints with the Commission d'accès à l'information.
Residents of Virginia, Colorado, Connecticut, Utah, Texas, Oregon, Montana, and other states with comprehensive privacy laws have similar rights to those described above. Email support@petrasecurity.com to exercise them.
We do not currently market to or target residents of the EU, UK, or EEA. If you reach our site from one of these regions and submit information, we will handle it consistent with this policy and applicable law. You may contact us at support@petrasecurity.com to exercise data subject rights.
We may update this policy from time to time. We will update the "Last updated" date at the top and, for material changes, provide additional notice where appropriate.
Petra Security, Inc.
Email: support@petrasecurity.com
