Welcome to XeneX SOC (“XeneX,” “XeneX SOC,” “we,” “our,” or “us”). This Privacy Policy explains how we collect, use, disclose, protect, and process information when you visit our website, use our services, communicate with us, or engage with our cybersecurity and managed security offerings.
XeneX SOC is a managed cybersecurity services provider delivering security monitoring, threat detection, incident response, compliance support, analytics, automation, and AI-assisted security operations to businesses, educational institutions, healthcare organizations, hospitality providers, and other enterprises. By using our website or services, you agree to the practices described in this Privacy Policy.
1. Information We Collect
We may collect information that you provide directly to us, including your name, company name, email address, phone number, job title, billing information, account credentials, and any communications you submit through forms, email, phone conversations, webinars, support requests, or other interactions with XeneX SOC.
We may also automatically collect certain information when you visit our website or use our services. This information may include IP addresses, browser type and version, operating system details, device identifiers, website usage activity, cookies and tracking information, login and authentication records, session activity, geolocation information derived from IP addresses, referral URLs, and navigation behavior.
As part of our cybersecurity and managed security services, XeneX SOC may process security-related telemetry and operational data, including security logs, endpoint telemetry, network activity metadata, authentication and access logs, threat intelligence indicators, vulnerability scan results, cloud environment activity, email security metadata, user behavioral analytics, and incident or forensic data. This information is used solely for the purpose of delivering, maintaining, securing, improving, and supporting our cybersecurity services.
2. How We Use Information
XeneX SOC uses collected information to provide and manage our services, secure customer environments, detect and respond to cybersecurity threats, provide technical and customer support, improve platform functionality and operational performance, communicate about products and services, fulfill contractual obligations, comply with legal and regulatory requirements, prevent fraud and unauthorized access, and maintain the integrity and security of our systems and operations.
3. AI & Automated Processing
XeneX SOC utilizes artificial intelligence, machine learning, automation technologies, and behavioral analytics to support threat detection, alert correlation, anomaly identification, incident analysis, risk prioritization, operational efficiency, and security recommendations. Certain automated processes may assist in identifying and responding to cybersecurity threats; however, significant security events may also involve review and validation by human analysts where appropriate.
XeneX SOC does not use customer confidential information, customer telemetry, or customer security data to train publicly available artificial intelligence models.
4. Cookies & Tracking Technologies
Our website may use cookies, tracking technologies, and similar tools to support website functionality, analyze usage trends, maintain security, personalize user experiences, and measure marketing effectiveness. These technologies may include essential cookies, analytics cookies, functional cookies, session cookies, security-related cookies, and marketing technologies.
Users may manage cookie preferences through browser settings or any applicable consent management tools made available on our website.
5. Sharing of Information
XeneX SOC may share information with authorized service providers, subprocessors, cloud infrastructure providers, security and compliance partners, payment processors, professional advisors, and government or legal authorities where required by law or necessary to protect our legal rights and operations.
We do not sell personal information and do not share customer data with third parties for unrelated advertising purposes.
6. Data Retention
XeneX SOC retains information only for as long as necessary to provide contracted services, fulfill legal and regulatory obligations, maintain security and compliance records, support legitimate business operations, resolve disputes, and enforce agreements. Retention periods may vary depending on contractual requirements, service configurations, applicable laws, and operational or security obligations.
Following termination of services, customer data may be deleted, anonymized, archived, or retained as required by legal, contractual, compliance, or security obligations.
7. International Data Transfers
XeneX SOC may process and store information in the United States and other countries where we, our affiliates, or our service providers operate. Where required by applicable law, we implement appropriate safeguards for international data transfers, including contractual protections and industry-standard security measures.
8. Data Security
XeneX SOC maintains administrative, technical, and physical safeguards designed to protect information against unauthorized access, disclosure, alteration, misuse, or destruction. Security measures may include encryption, access controls, multi-factor authentication, logging and monitoring systems, threat detection technologies, vulnerability management processes, and network security controls.
While we strive to protect all information using commercially reasonable safeguards, no method of transmission or storage can be guaranteed to be completely secure.
9. Your Privacy Rights
Depending on your jurisdiction and applicable law, you may have the right to request access to personal information, correct inaccurate information, request deletion of personal information, restrict or object to certain processing activities, request portability of your information, opt out of certain data uses, or appeal privacy-related decisions.
To exercise your privacy rights, please contact XeneX SOC using the contact information provided below. We may take reasonable steps to verify your identity before processing certain requests.
10. U.S. State Privacy Rights
Residents of certain U.S. states may have additional privacy rights under applicable laws, including the California Consumer Privacy Rights Act (CPRA), Virginia Consumer Data Protection Act (VCDPA), Colorado Privacy Act (CPA), Connecticut Data Privacy Act (CTDPA), Texas Data Privacy and Security Act (TDPSA), and other applicable state privacy regulations.
XeneX SOC does not sell personal information as defined under applicable state privacy laws.
11. Children’s Privacy
XeneX SOC services are intended for businesses, organizations, and professional users and are not directed toward children under the age of 13. We do not knowingly collect personal information directly from children.
12. Third-Party Websites
Our website and services may contain links to third-party websites, applications, or services that are not operated or controlled by XeneX SOC. We are not responsible for the privacy practices, content, or security of third-party services, and users should review the privacy policies of those providers independently.
13. Changes to This Privacy Policy
XeneX SOC may update this Privacy Policy periodically to reflect changes in legal requirements, technologies, services, operational practices, or business needs. Updated versions will be posted on this page with a revised effective date.
14. Contact Information
If you have questions about this Privacy Policy or wish to submit a privacy-related request, please contact:
XeneX SOC
https://www.xenexsoc.com
Email: privacy@xenexsoc.com
15. Service Provider & Customer Relationship
In many circumstances, XeneX SOC acts as a service provider or data processor on behalf of its customers. Customers remain responsible for determining lawful data collection practices, providing required notices, obtaining necessary consents, and fulfilling their own compliance obligations.
XeneX SOC processes customer data only as necessary to provide contracted services, fulfill documented customer instructions, maintain platform security, and comply with applicable legal obligations.