Privacy Policy

Invictrix provides AI consulting and cybersecurity advisory services to small and mid-sized businesses. This policy explains what information we collect through this website, how we use it, and your rights regarding that information. We keep it straightforward — because we should hold ourselves to the same standard we ask of our clients.

What We Collect

This website collects information only when you submit the contact form. No tracking cookies, remarketing pixels, or behavioral analytics are deployed on this site.

Through the contact form, we collect:

• Your name and email address
• Company name (optional)
• Service area of interest
• A description of your situation, goals, or questions as you choose to provide them

Three third-party services load assets on this page: Formspree (form delivery), Google Fonts (typography), and Font Awesome CDN (icons). These services receive only the minimum technical data required to function — IP address and browser headers in the case of CDN requests. No personal information from your form submission is shared with Google Fonts or Font Awesome.

How We Use Your Information

• To respond to your inquiry — typically within one business day
• To understand your business context so our response is relevant, not generic
• To follow up if you've indicated interest in a specific service

We do not use your information for marketing, advertising, or list-building. We do not sell, rent, or trade contact information. Period.

Third-Party Services

Formspree receives your form submission and delivers it to us by email. Formspree processes data under its own privacy policy and does not use submission data for advertising. You can review their policy at formspree.io.

Google Fonts and Font Awesome CDN serve design assets. Standard CDN request data (IP address, user agent) is processed by these providers in the course of delivering assets. No personal data from the contact form is shared with either service.

Data Retention

• If an engagement follows your inquiry: contact and engagement records are retained for the duration of the relationship plus two years, consistent with professional service record-keeping norms
• If no engagement follows: contact data is deleted within 90 days of our last communication, unless you've asked us to retain it

Data Security

We practice what we advise. Your information is handled on a need-to-know basis, stored in access-controlled systems, and disposed of securely when retention periods expire. We do not transmit personal data over unencrypted channels.

Your Rights

You have the right to:

• Request a copy of any personal data we hold about you
• Request correction of inaccurate information
• Request deletion of your data at any time
• Opt out of future communications — one email is all it takes

To exercise any of these rights, contact us at the address below. We will respond within five business days.