← BackLegal

Privacy Policy

1. Data We Collect

Account data: name, email, password hash (Argon2id, managed by Better Auth).

Usage data: lab session activity (spawn/stop/heartbeat), IP address, user agent.

Lead data: if you submit the early-access or B2B contact form: name, email, company, message.

2. How We Use Data

Account data: authentication and access control. Usage data: lab orchestration, security monitoring, and SIEM logging. Lead data: responding to inquiries and notifying you when the course launches.

3. Data Sharing

We do not sell or share your personal data with third parties. B2B inquiry data may be shared with the Attaxium sales team internally.

4. Data Storage

Data is stored in PostgreSQL on managed infrastructure and on local lab infrastructure for session management. Logs are shipped to an internal SIEM.

5. Your Rights

You may request access, correction, or deletion of your personal data by contacting privacy@attaxium.com. We will respond within 30 days.

6. Cookies

We use httpOnly, Secure session cookies for authentication. No tracking or analytics cookies are used.

7. Contact

Questions about this policy? Contact privacy@attaxium.com.

Last updated: July 2026