Nullgrave LLC ("Nullgrave," "we," "us," or "our") respects your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website https://nullgrave.com (the "Site"), request services, submit a free scan, or otherwise interact with us (collectively, the "Services").
Please read this Privacy Policy carefully. If you do not agree with its terms, please do not use our Services. Your continued use of the Services following any changes to this Policy constitutes your acceptance of those changes.
We collect information that identifies, relates to, describes, or could reasonably be linked with you or your business ("Personal Information").
Information You Provide:
Automatically Collected Information:
Information from Third Parties:
We do not knowingly collect sensitive personal data (e.g., health data beyond HIPAA readiness discussions) unless required for a specific engagement.
If you are located in the European Economic Area (EEA), the United Kingdom, or Switzerland, we process your Personal Information based on one or more of the following legal grounds:
We use the collected information for:
RoboShadow and Scanning Tools: We use RoboShadow and similar tools for automated daily scanning. Data processed through these tools is used solely to identify vulnerabilities and provide remediation guidance. Scan results are treated as confidential.
We do not sell your Personal Information. We may share it with:
For HIPAA/finance‑ready clients, additional Business Associate Agreements (BAAs) or specific protections may apply.
We implement reasonable administrative, technical, and physical safeguards to protect your information (e.g., encryption in transit/rest, access controls, secure scanning practices). However, no system is completely secure, and we cannot guarantee absolute security.
In the event of a data breach affecting your Personal Information, we will notify you and any applicable regulator without unreasonable delay and as required by law (e.g., within 72 hours for GDPR, within 60 days for HIPAA).
We retain your information as long as necessary for the purposes outlined, to comply with legal obligations, resolve disputes, and enforce agreements. Unless a longer period is required by law or a separate written agreement, we retain scan reports and related work product for 90 days after the engagement ends, after which they are permanently deleted. Contact information is retained for up to 3 years after last contact to respond to inquiries.
Depending on your location (e.g., California under CCPA/CPRA, or EEA under GDPR), you may have rights to:
To exercise these rights, contact us at contact@nullgrave.com. We will respond within legal timeframes (typically 30 days).
California Residents: Under the CCPA/CPRA, you have the right to request that we disclose what Personal Information we collect, use, and disclose. We do not sell your Personal Information, so no “Do Not Sell” link is required. You may still request deletion or access via the email above.
Our Services are not directed to children under 18. We do not knowingly collect data from children.
If you are outside the United States, note that your information may be transferred to and processed in the US. We take steps to ensure appropriate safeguards, including standard contractual clauses where required.
We may update this Policy periodically. We will notify you of material changes by posting the new Policy on the Site and updating the "Last Updated" date. Continued use of the Services after changes constitutes acceptance.
For questions about this Privacy Policy, contact us at:
Nullgrave LLC
[Your PO Box or professional address]
Email: contact@nullgrave.com
Website: https://nullgrave.com/contact