In plain language: PrakKnit collects only what's needed to operate our platform and respond to your enquiries. We do not sell your data. Security data processed by ThreatLens Enterprise stays in your environment unless you choose cloud hosting.

1. Who We Are

PrakKnit ("PrakKnit", "we", "us") builds and operates ThreatLens Enterprise — a unified cyber risk management platform — and the website at www.prakknit.com. For privacy questions, contact hello@prakknit.com.

2. Information We Collect

Website visitors

When you visit prakknit.com we may collect:

We do not use third-party tracking cookies or advertising pixels on this website.

ThreatLens Enterprise customers

The ThreatLens platform processes security findings, asset data, and organisational context that you connect from your own security tools. This data:

Deployment options include on-premise, private cloud, and fully air-gapped environments — your security data can remain entirely within your own infrastructure.

3. How We Use Your Information

We do not sell, rent, or share your personal information with third parties for their marketing purposes.

4. Data Isolation Between Customers

Every customer's data is isolated at the database level using PostgreSQL Row-Level Security (RLS), enforced on every tenant-scoped table — not application-layer filtering alone. Parent/child or portfolio group structures only expose data for tenants explicitly assigned to that group.

5. Data Retention

Contact form submissions are retained only as long as needed to fulfil your enquiry. Customer security data is retained for the duration of the contract and deleted within 30 days of contract termination, unless a different period is agreed in writing or required by law.

6. Security

Security is core to what we do. ThreatLens Enterprise uses encryption in transit (TLS 1.2+) and at rest, database-level tenant isolation, RBAC, SSO/SCIM, MFA enforcement, and audit logging. Our infrastructure is regularly reviewed for vulnerabilities.

To report a security concern, contact security@prakknit.com.

7. Third-Party Services

This website is hosted on Vercel. Contact form submissions are transmitted over TLS for email delivery. We use a minimal number of infrastructure subprocessors and no third-party advertising or tracking SDKs.

8. International Data Transfers

If you are located outside the jurisdiction where our servers operate, your information may be transferred internationally. We take appropriate safeguards — including contractual protections — to ensure any such transfers comply with applicable data protection law.

9. Your Rights

Depending on your jurisdiction, you may have the right to access, correct, export, or delete your personal data, or to object to or restrict certain processing. To exercise any of these rights, email hello@prakknit.com. We will respond within 30 days.

10. Children

ThreatLens Enterprise is an enterprise platform not directed at individuals under 18. We do not knowingly collect information from minors.

11. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated by updating the "Last updated" date at the top and, for active customers, by direct notification. Continued use of our services after an update constitutes acceptance of the revised policy.

Contact Us

For privacy questions, data requests, or to report a concern: