Privacy Policy

Urgentic Security Ltd (“Urgentic”, “we”, “us”) operates the urgentic.ai platform — an autonomous AI-powered security operations platform. This Privacy Policy explains how we collect, use, store, and protect information when you use our services.

By using urgentic, you agree to the practices described in this policy. If you do not agree, please do not use the platform.

Account Information

When you create an account, we collect your name, email address, company name, and role.

Security Operations Data

When you connect a Microsoft Sentinel workspace, our agents process incident data, alert logs, and entity information from your environment. This data is used solely to perform investigations and generate reports on your behalf.

Usage Data

We collect information about how you interact with the platform, including pages visited, features used, and commands issued through the Command Centre.

Device Information

We collect browser type, operating system, and device identifiers to provide and improve the service.

• Providing, operating, and maintaining the platform
• Processing security incidents through our AI agent pipeline
• Generating investigation reports and threat intelligence briefs
• Sending notifications, alerts, and incident updates
• Providing customer support
• Analytics and platform improvement
• Communicating about product updates and changes

We take the security of your data seriously and implement industry-standard protections:

• All data is encrypted at rest and in transit (TLS 1.3)
• Azure credentials are encrypted before storage and never exposed in logs or responses
• Strict workspace isolation — each customer's data is logically separated at the database level with Row Level Security
• We never share security operations data between tenants under any circumstances
• Regular security assessments and penetration testing of our infrastructure

• Account data is retained while your account remains active
• Security operations data (incidents, reports, timelines) is retained per your workspace configuration and can be deleted on request
• Upon account deletion, all associated data is permanently removed within 30 days
• Anonymised, aggregated analytics data may be retained for product improvement

We use the following third-party services to deliver the platform:

• Microsoft Azure — Sentinel and Defender XDR integration for incident data
• Supabase — Database infrastructure and authentication
• AI model providers — For incident analysis and report generation. Your security data is not used to train AI models.
• VirusTotal — Threat intelligence lookups for indicators of compromise

We only share data with third parties to the extent necessary to provide the service. We do not sell your data.

You have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data
• Export your data in a portable format
• Opt out of marketing communications at any time
• Withdraw consent where processing is based on consent

To exercise any of these rights, contact us at privacy@urgentic.ai.

We use minimal cookies strictly necessary for the platform to function — session management, authentication, and user preferences (such as theme selection). We do not use advertising or tracking cookies.

We may update this Privacy Policy from time to time. For material changes, we will notify you via email at least 14 days before the changes take effect. Continued use of the platform after notification constitutes acceptance of the updated policy.

If you have questions or concerns about this policy, contact us at: privacy@urgentic.ai

Urgentic Security Ltd
Gaborone, Botswana