Privacy Policy

Effective Date: 01/04/2025

Last Updated: 12/08/2025

Introduction

Hyperscale Consulting ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our services, or interact with our open-source tools, including Kite.

Information We Collect

Personal Information

  • Contact Information: Name, email address, phone number, and company details when you contact us or request our services
  • Professional Information: Job title, company name, and business requirements shared during consultations
  • Communication Records: Records of our communications with you, including emails, calls, and meeting notes

Technical Information

  • Website Usage Data: IP address, browser type, operating system, pages visited, and time spent on our website
  • Kite Tool Usage: When using our open-source Kite tool, we may collect anonymized usage statistics to improve the tool's functionality
  • AWS Assessment Data: During security assessments, we may access and analyze your AWS configuration data as necessary to provide our services

Automatically Collected Information

  • Log Data: Server logs, error reports, and performance metrics
  • Cookies and Tracking Technologies: We use cookies to enhance your browsing experience and analyze website traffic

How We Use Your Information

We use your information to:

Service Delivery

  • Provide AWS security assessment services:
  • Perform cloud security consulting:
  • Deliver technical support and maintenance:
  • Generate assessment reports and recommendations:

Communication

  • Respond to your inquiries and requests:
  • Send service-related notifications:
  • Provide updates about our services and tools:
  • Share relevant industry insights and security best practices:

Improvement and Analytics

  • Analyze usage patterns to improve our services:
  • Enhance the functionality of our tools and website:
  • Conduct research to develop better security solutions:

Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

Service Providers

We may engage trusted third-party service providers to assist us in delivering our services, such as:

  • Cloud infrastructure providers:
  • Communication and collaboration tools:
  • Analytics and monitoring services:

These providers are contractually obligated to protect your information and use it only for the specific services they provide to us.

Legal Requirements

We may disclose your information if required to do so by law or if we believe such action is necessary to:

  • Comply with legal obligations or court orders:
  • Protect our rights, property, or safety:
  • Protect the rights, property, or safety of our clients or others:
  • Investigate potential violations of our terms of service:

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

Data Security and AWS Assessments

Security Measures

We implement industry-standard security measures to protect your information, including:

  • Encryption of data in transit and at rest:
  • Multi-factor authentication for access controls:
  • Regular security audits and vulnerability assessments:
  • Secure development practices for our tools:

AWS Assessment Data Handling

When conducting AWS security assessments:

  • We access your AWS environment only with explicit permission and proper role-based access:
  • All assessment data is handled according to AWS security best practices:
  • We use temporary, time-limited access credentials with external IDs:
  • Assessment data is encrypted and securely transmitted:
  • Raw assessment data is deleted after the agreed retention period:

Data Retention

  • Assessment data: Retained only as long as necessary to complete the engagement, typically 30-90 days unless otherwise agreed
  • Communication records: Retained for legitimate business purposes, typically up to 7 years
  • Website usage data: Retained for up to 2 years for analytics purposes

Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

Access and Portability

  • Request access to your personal information:
  • Obtain a copy of your personal information in a portable format:

Correction and Updates

  • Request correction of inaccurate or incomplete information:
  • Update your contact preferences:

Deletion

  • Request deletion of your personal information, subject to legal and contractual obligations:

Restriction and Objection

  • Request restriction of processing in certain circumstances:
  • Object to processing based on legitimate interests:

Cookies and Tracking

  • Manage cookie preferences through your browser settings:
  • Opt out of non-essential tracking technologies:

To exercise these rights, please contact us using the information provided below.

International Data Transfers

If you are located outside of the UK, please note that your information may be transferred to and processed in the UK or other countries where we operate. We ensure appropriate safeguards are in place for such transfers in accordance with applicable data protection laws.

Third-Party Links

Our website may contain links to third-party websites, including our GitHub repository and external documentation. This Privacy Policy does not apply to these external sites. We encourage you to review the privacy policies of any third-party sites you visit.

Open Source Software

Our Kite tool is open-source software available on GitHub. When you use or contribute to Kite:

  • Your contributions may be publicly visible:
  • We may collect anonymized usage statistics to improve the tool:
  • Standard open-source licensing terms apply (MIT License):

Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18, we will take steps to delete such information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or applicable laws. We will notify you of any material changes by:

  • Posting the updated policy on our website:
  • Sending you an email notification if you have provided us with your email address:
  • Updating the "Last Updated" date at the top of this policy:

Contact Information

If you have any questions about this Privacy Policy or our privacy practices, please contact us:

Hyperscale Consulting
Email: info@hyperscale.consulting
Phone: +447305007280
Address: 15 Paternoster Row, Sheffield, S1 2BX, UK

For data protection inquiries specifically, you may also contact our Data Protection Officer at: info@hyperscale.consulting

Compliance

This Privacy Policy is designed to comply with applicable data protection laws, including:

  • General Data Protection Regulation (GDPR) for EU residents:
  • California Consumer Privacy Act (CCPA) for California residents:
  • Other applicable regional privacy laws:

This Privacy Policy was last updated on 12/08/2025 and is effective as of 01/04/2025.