What this covers
Legal: clear expectations for safe operation.
Plain-language policy content for customers, users, partners and researchers.
01Available policies
- Privacy Policy explains how information is handled.
- Terms of Service summarise authorised use and customer responsibilities.
- Acceptable Use defines safe boundaries for security testing.
- Responsible Disclosure explains how to report issues safely.
02Operating principles
- Security testing must remain authorised, scoped and auditable.
- Customer data and evidence should be handled confidentially.
- Formal contracts and reviewed policies control legal obligations.
03Need help?
- Contact ThreatCanary for legal, procurement, privacy, trust or security review questions.
- Customers should request formal policy documents during procurement or onboarding.
