Skip to content

Legal

Privacy Policy

This policy explains how Rapid Securities handles personal data when you visit rapidsecuritiesinc.com or work with us. Last updated: 24 March 2026.

1. Who we are

Rapid Securities ("we", "us", "our") is the data controller for personal data processed as described in this policy, unless we tell you otherwise (for example where we act only as a processor for a client engagement).

Postal address: 167-169 Great Portland Street, 5th Floor, London W1W 5PF, United Kingdom

Website: rapidsecuritiesinc.com

For privacy questions, contact us through the contact form or using the business details you already have for our team.

2. Scope

This policy applies to information we obtain through our public website, marketing activities, and when you enquire about or purchase our services. If you are a client, additional terms in your statement of work or contract may describe how we process data for that specific project.

3. Data we collect

We may process the following categories of data:

  • Identity and contact data: name, company name, email address, phone number, job title, and similar details you provide when you contact us or sign up for updates.
  • Technical and usage data: IP address, browser type, device type, general location derived from IP, pages viewed, referring URL, and timestamps, collected through server logs, cookies, or similar technologies.
  • Communication content: the contents of messages you send us, including through contact forms, email, or calls.
  • Client and project data: when we deliver security testing or advisory work, we may process information you or your organisation provides for scoping, testing, reporting, and billing. That can include URLs, credentials or access arrangements you choose to share, findings, and commercial records.

4. How we use your data and lawful bases

We use personal data to:

  • Respond to enquiries and operate the website (legitimate interests in running our business and communicating with prospects and clients; where required, consent for non-essential cookies or marketing).
  • Negotiate, perform, and manage contracts with you or your organisation (performance of a contract; legitimate interests).
  • Improve our site and services, including analytics where used (legitimate interests, or consent where applicable).
  • Comply with legal obligations, enforce our terms, and protect rights, safety, and security (legal obligation; legitimate interests).

5. Cookies and similar technologies

We may use cookies and similar technologies that are strictly necessary for the site to function, and, where we deploy them, analytics or preference cookies. You can control many cookies through your browser settings. If we use non-essential cookies that require consent under UK law, we will provide a clear choice before they are set.

6. Sharing and subprocessors

We do not sell your personal data. We may share data with:

  • Service providers who host our website, email, CRM, or other tools, under written terms that require them to protect personal data.
  • Professional advisers (such as lawyers or accountants) where needed.
  • Authorities or third parties when required by law or to protect our legal rights.

Some providers may process data outside the UK. Where we transfer personal data internationally, we use appropriate safeguards such as the UK International Data Transfer Agreement or Addendum, or other mechanisms recognised under UK GDPR, where required.

7. Retention

We keep personal data only as long as needed for the purposes above, including to satisfy legal, accounting, or reporting requirements. Retention periods depend on the nature of the data and whether you are an active prospect, client, or visitor. Security testing materials and reports are handled in line with contractual agreements and our internal retention schedule.

8. Security

We implement appropriate technical and organisational measures designed to protect personal data against unauthorised access, loss, or alteration. No method of transmission over the internet is completely secure; we encourage you to use secure channels when sending sensitive information.

9. Your rights (UK)

If UK GDPR applies to our processing of your personal data, you may have the right to:

  • Access a copy of your personal data.
  • Rectify inaccurate data.
  • Erase data in certain circumstances.
  • Restrict or object to certain processing.
  • Data portability, where applicable.
  • Withdraw consent where processing is based on consent, without affecting the lawfulness of earlier processing.
  • Lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.

To exercise these rights, contact us using the details in section 1. We may need to verify your identity before responding.

10. Children

Our website and services are directed at businesses and adults. We do not knowingly collect personal data from children.

11. Changes

We may update this policy from time to time. The "Last updated" date at the top of this page will change when we do. Material changes may be highlighted on the website or communicated where appropriate.

This policy is provided for transparency. It is not legal advice. Independent legal review is recommended for your specific situation.