Privacy Policy

1. Introduction

CJB Digital Solutions Ltd ("we", "us", or "our") operates ShieldGuard, an AI API protection platform. We are committed to protecting your privacy. This Privacy Policy explains what data we collect, how we use it, and your rights regarding that data.

2. What Data We Collect

We collect the following types of data:

• Account information: Name, email address, and billing details when you create an account
• Request logs: API request metadata including timestamps, endpoints accessed, request origins, and token usage — collected for security analytics and threat detection
• Payment information: Processed securely through Stripe; we do not store full payment card details on our servers
• Usage data: Dashboard interactions, feature usage patterns, and performance metrics to improve our service
• Technical data: IP addresses, browser type, and device information for security and abuse prevention

3. How We Use Your Data

We use collected data for the following purposes:

• Protecting your API endpoints from scraping, abuse, and attacks
• Providing real-time threat detection and monitoring
• Improving ShieldGuard's detection algorithms and overall service quality
• Processing billing and managing your subscription
• Sending important service-related communications
• Complying with legal obligations

4. Third-Party Services

ShieldGuard uses trusted third-party service providers to operate our platform:

• Stripe: All payment processing is handled by Stripe, Inc. Stripe is PCI DSS Level 1 certified. Payment data is collected and processed in accordance with Stripe's own privacy policy. We retain only the minimum billing information needed for invoicing.

We do not sell, rent, or share your personal data with third parties for marketing purposes.

5. Data Retention

We retain data as follows:

• Account data: Retained while your account is active and for up to 12 months after account closure
• Request logs and analytics data: Retained for up to 90 days in aggregate form for analytics and service improvement
• Billing records: Retained for the period required by UK tax and accounting regulations (minimum 6 years)
• Security logs: Retained for up to 12 months for abuse prevention and forensic purposes

6. Your Rights

Under UK data protection law, you have the following rights:

• Access: Request a copy of the personal data we hold about you
• Delete: Request deletion of your account and associated personal data
• Export: Receive your data in a machine-readable format (portability)
• Rectify: Request correction of inaccurate personal data
• Object: Object to processing of your data in certain circumstances
• Restrict: Request that we restrict processing of your data

To exercise any of these rights, contact us at support@cjbwebdevelopment.com. We will respond within 30 days.

7. Data Security

We implement industry-standard security measures to protect your data, including encryption in transit and at rest, access controls, and regular security audits. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

8. Changes to This Policy

We may update this Privacy Policy from time to time. The most current version will always be available on this page with the updated "Last updated" date. Significant changes will be communicated via email or a prominent notice on the ShieldGuard dashboard.