Privacy Policy

Name: ShieldCortex
Author: Drakon Systems Ltd

Last updated: 1 February 2026

1. Who We Are

ShieldCortex is operated by Drakon Systems Ltd, a company registered in England (company number pending). Our registered address is in England, United Kingdom.

For any privacy-related enquiries, contact us at support@drakonsystems.com.

2. Data We Collect

npm Package (Local Use)

The ShieldCortex npm package runs entirely on your machine. We do not collect, transmit, or store any data from the open-source package. Your memories, audit logs, and configuration remain local.

Website

When you visit shieldcortex.fly.dev or related pages, we may collect:

Standard server access logs (IP address, user agent, pages visited)
Email address — only if you voluntarily submit it (e.g. waitlist signup)

SaaS Platform (Coming Soon)

When our hosted SaaS launches, we will collect account information (email, name), usage data, and payment details necessary to provide the service. This policy will be updated before launch.

3. Cookies & Analytics

Our website currently does not use cookies or third-party analytics. If we introduce analytics in the future, we will update this policy and use privacy-respecting tools where possible.

4. Third-Party Services

We use the following third-party services:

Fly.io — hosting infrastructure
GitHub — source code hosting and issue tracking
npm — package distribution
Formspree — waitlist form processing (if used)

Each of these services has their own privacy policies governing data they process.

5. GDPR Compliance

As a UK-based company, we comply with the UK GDPR and the Data Protection Act 2018. Under these regulations, you have the right to:

Access — request a copy of your personal data
Rectification — request correction of inaccurate data
Erasure — request deletion of your data
Portability — request your data in a machine-readable format
Object — object to processing of your data

To exercise any of these rights, email support@drakonsystems.com.

6. Data Retention

Server logs are retained for up to 30 days. Waitlist email addresses are retained until the product launches or you request removal. We do not retain data longer than necessary for the purposes described in this policy.

7. Data Security

We implement appropriate technical and organisational measures to protect personal data, including encrypted connections (TLS), access controls, and regular security reviews.

8. Changes to This Policy

We may update this policy from time to time. Significant changes will be communicated via our website or blog. Continued use of our services after changes constitutes acceptance of the updated policy.

9. Contact

Drakon Systems Ltd
England, United Kingdom
support@drakonsystems.com