Privacy Policy

CoreRisk by Core Access Technologies takes the privacy of your business security information seriously. This page explains what we collect and how we use it.

What we collect

• Account information: name, email, phone, business name.
• Assessment responses and the resulting CoreRisk score.
• Lead source data (UTM parameters, referrer) when present.
• Payment metadata (we do not store card numbers — Stripe does).

How we use it

We use your information to deliver the CoreRisk assessment, generate reports, recommend appropriate next steps, and communicate with you about your results. We do not sell your data.

Security

CoreRisk runs over HTTPS, uses encrypted password storage, role-based access, and tenant separation. Sensitive operations are audit-logged. Reports and downloads are served behind authentication.

Your choices

You can update your account information in your portal, or contact us to request data deletion.

This privacy policy is a summary placeholder. Replace with full counsel-reviewed copy before launch.