Webheadcase Privacy Policy

Effective Date: 01/01/2024

Complete Revision Date: 01/01/2026

​

Webheadcase (“we,” “our,” or “us”) provides cybersecurity services, digital strategy consulting, IT infrastructure support, and web management solutions. We are committed to protecting the privacy, security, and integrity of the information entrusted to us. This Privacy Policy explains how we collect, use, store, and protect personal and organizational data across all Webheadcase services.
By using our website or engaging our services, you agree to the practices described in this policy.

​

1. Information We Collect

1.1 Information You Provide

•     Contact details (name, email, phone number, organization)
•     Account information (usernames, access roles)
•     Service-related data (project requirements, system details)
•     Credentials voluntarily provided for cybersecurity assessments or system integrations
 

Credentials are stored only in encrypted environments and deleted immediately after use unless otherwise agreed.

1.2 Automatically Collected Information

•     IP address, browser type, device identifiers
•     Website analytics and traffic logs
•     Security logs generated during assessments or monitoring
 

1.3 Information Collected During Cybersecurity Services

•     System configurations and network metadata
•     Vulnerability scan results
•     Log files and event data
•     Threat detection and incident response data
 

1.4 Third‑Party Information

We may receive information from:

•     Cloud service providers
•     Security tools and monitoring platforms
•     Payment processors
•     Publicly available sources

​

2. How We Use Your Information

We use collected information to:

•     Deliver cybersecurity, IT, and digital strategy services
•     Authenticate users and manage secure access
•     Conduct vulnerability assessments, penetration tests, and system monitoring
•     Improve website performance and service quality
•     Communicate updates, reports, and support information
•     Maintain compliance with legal and regulatory obligations
•     Detect, prevent, and respond to security threats

​

3. Legal Basis for Processing (GDPR‑Aligned)

Where applicable, we rely on:

•     Contractual necessity
•     Legitimate interest
•     Consent
•     Legal obligation

​

4. Data Retention

​

Clients may request earlier deletion at any time.

​

5. Data Ownership & Client Rights

•     Clients retain full ownership of all data provided or generated during cybersecurity engagements.
•     Upon request, Webheadcase will return or securely delete client data.
•     Clients may request access, correction, deletion, or restriction of their data.
•     Clients may request a Data Processing Agreement (DPA).

​

6. How We Protect Your Information

We use industry‑standard and advanced security measures, including:

•     Encryption in transit and at rest
•     Zero‑trust access controls
•     Encrypted credential vaults
•     Network segmentation
•     Continuous monitoring and threat detection
•     Secure development and deployment practices

​

7. Breach Notification

If a data breach occurs, we will:

•     Notify affected clients without undue delay
•     Provide details about the breach
•     Outline mitigation steps
•     Offer guidance on protective measures

​

8. Automated Analysis & Threat Detection

Some cybersecurity tools use automated systems to detect anomalies, identify vulnerabilities, and flag suspicious activity. These systems do not make decisions that produce legal or significant effects on individuals.

​

9. Sharing & Subprocessors

We may share information with trusted third parties such as:

•     Cloud hosting providers
•     Security monitoring tools
•     Analytics platforms
•     Payment processors

A list of subprocessors is available upon request.

We do not sell personal information.

​

10. International Data Transfers

When data is transferred internationally, we use safeguards such as:

•     Encryption
•     Contractual data protection clauses
•     Secure transfer protocols

​

11. Cookies & Tracking Technologies

We use cookies to:

•     Improve website performance
•     Analyze traffic
•     Enhance user experience

Users may disable cookies through browser settings.

​

12. Children’s Privacy

Our services are not intended for individuals under 13. We do not knowingly collect information from children.

​

13. Your Privacy Rights

Depending on your location, you may have rights to:

•     Access your data
•     Correct inaccurate information
•     Request deletion
•     Object to processing
•     Request data portability

Contact: webheadcase@webheadcase.com

​

14. Changes to This Policy

We may update this Privacy Policy periodically. The “Last Updated” date will reflect the most recent revision.

​

15. Contact Us

Webheadcase

P.O. Box 4164

Greenville NC 27836

 

Phone: 252.367.0298

Email: webheadcase@webheadcase.com

Website: https://www.webheadcase.com

​

16. Governing Law (North Carolina Compliance)

This Privacy Policy is governed by and interpreted in accordance with the laws of the State of North Carolina, without regard to conflict‑of‑law principles. Webheadcase complies with all applicable federal, state, and local laws within North Carolina related to data privacy, cybersecurity, consumer protection, and digital services. By using our services, you agree that any disputes arising from this policy or our practices will be handled under North Carolina jurisdiction.

​