Privacy Policy

Last Updated: 1/9/2026

This Privacy Policy describes how PillarPoint Consulting LLC (“PillarPoint,” “we,” or “us”) collects, uses, stores, and discloses information in connection with the PillarShield services (“Service”).

This Policy applies to:

  • the PillarShield website(s), and

  • the PillarShield SaaS platform and related services.

1. Overview and Scope

PillarShield is a B2B SaaS platform that analyzes customer-submitted content to help identify potential risks such as sensitive data exposure or policy violations.

This Privacy Policy distinguishes between:

  • Website visitors, and

  • Customers and Authorized Users using the Service.

Where Customer Content is processed on behalf of a business customer, PillarPoint acts as a service provider / processor, not the data controller.

2. Information We Collect

2.1 Information Collected from Website Visitors

When you visit our website, we may collect:

  • contact information submitted via forms (e.g., name, email),

  • basic usage data such as IP address, browser type, and pages visited,

  • cookies or similar technologies for analytics and site functionality.

2.2 Information Collected Through the Service

When Customers use the Service, we may collect and process:

a) Customer Account Information

  • organization name

  • administrator contact details

  • billing and subscription information

b) Authorized User Information

  • names, email addresses, or identifiers provided by the Customer

  • authentication and access metadata

c) Customer Content

  • text or data submitted for analysis through APIs or integrations

  • content metadata provided by Customer systems (e.g., CMS identifiers)

Customer Content may include personal data if the Customer submits such data.

2.3 Automatically Collected Service Data

We collect operational and technical data such as:

  • timestamps

  • request identifiers

  • audit log entries

  • usage metrics

  • system and security logs

This data is used to operate, secure, and improve the Service.

3. How We Use Information

We use information to:

  • provide and operate the Service,

  • analyze Customer Content at Customer’s direction,

  • generate Outputs such as logs and reports,

  • maintain security and prevent abuse,

  • provide support and communicate with Customers,

  • comply with legal obligations.

We do not sell personal data.

4. Customer Content and Data Ownership

Customers retain ownership of their Customer Content.

PillarPoint processes Customer Content solely to provide the Service in accordance with our Terms of Service and applicable Order Forms.

Unless expressly agreed otherwise:

  • Customer Content is not used to train generalized machine learning models.

  • Customer Content is not shared with other customers.

5. Data Retention

Retention periods vary based on:

  • the Customer’s subscription Plan, and

  • applicable Order Forms.

For example:

  • self-service plans may retain logs for a limited period,

  • Managed plans may include extended retention (e.g., up to 365 days).

Deleted data may remain in backups for a limited time before permanent deletion.

6. Data Sharing and Disclosure

We may share information:

  • with service providers and subprocessors that support hosting, infrastructure, analytics, or customer support,

  • to comply with legal obligations or lawful requests,

  • to protect the rights, security, and integrity of PillarPoint and our Customers.

We do not share Customer Content with third parties except as required to provide the Service or comply with law.

7. Subprocessors and Infrastructure

PillarShield relies on third-party infrastructure providers (such as cloud hosting and storage services).

We maintain agreements with subprocessors that require appropriate confidentiality and security protections.

A current list of subprocessors may be made available upon request.

8. Security Measures

We implement reasonable administrative, technical, and organizational safeguards designed to protect information from unauthorized access, disclosure, or loss.

However, no system can be guaranteed to be 100% secure, and Customers acknowledge this inherent risk.

9. Cookies and Tracking Technologies

Our website may use cookies or similar technologies for:

  • basic functionality,

  • analytics,

  • performance monitoring.

You can control cookies through browser settings or consent tools where applicable.

10. International Data Transfers

Customer data may be processed in the United States or other locations where PillarPoint or its subprocessors operate.

Where required, appropriate safeguards are used for cross-border data transfers.

11. Customer Responsibilities

Customers are responsible for:

  • ensuring they have rights to submit Customer Content,

  • determining what personal data is submitted to the Service,

  • configuring retention and access controls appropriately,

  • responding to data subject requests related to Customer Content.

12. Data Subject Rights

Where applicable law provides rights (such as access, correction, or deletion), requests related to Customer Content should be directed to the Customer organization.

PillarPoint will reasonably assist Customers in responding to such requests as required by law.

13. Children’s Data

The Service is not intended for use by children, and we do not knowingly collect personal data from children under applicable age thresholds.

14. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated through the Service or website.

Continued use of the Service constitutes acceptance of the updated Policy.

15. Contact Information

For questions about this Privacy Policy or data practices, contact:

PillarPoint Consulting LLC
legal@pillarpoint.consulting