Straight talk about what we collect, why, and the choices you have. No dense legalese.
Last updated: July 3, 2026
Please note: This is a general template, not legal advice. Have a qualified legal professional review and adapt it for your business before you publish.
This policy explains how SecPostureAssessment ("we," "us") handles information when you use our
free security posture assessment and related products. We built this tool to help you, not to
collect more than we need — so we keep data to a minimum and explain it clearly here.
What we collect
Your assessment answers. The responses you give to the 10–15 questions. These are general, non-technical answers — we never ask for passwords, and we don't scan your devices or network.
Your name and email. Only if you ask us to send your results to you. We use them to create your report and send you your private results link.
Payment information. The assessment is free. If we introduce any paid features in the future, payments will be handled by Stripe, our payment processor — we would receive confirmation of your purchase, but we never see or store your full card details.
Basic usage data. Through Google Analytics, we collect aggregate information such as pages visited, general location (country/region), device and browser type, and how you found the site. Google may use cookies or similar technologies for this. This helps us understand what's working and improve the tool.
Why we collect it
To calculate your score and build your report. Your answers are used to generate your 0–100 score, your prioritized fixes, and your detailed report.
To give you your results link. When you finish, your results open at your own private link (URL) where you can review findings, follow detailed step-by-step fixes, and track your progress over time. Your name and email let us create that report and send you the link.
To process payments for any paid features, if and when we offer them.
To improve the tool using aggregate analytics.
To send occasional security tips — only if you opt in. These are delivered through MailerLite, and you can unsubscribe at any time with one click.
Your results link
Your report lives online at a unique, hard-to-guess link rather than as a downloadable file.
That link is your personal dashboard: it shows every finding, the detailed steps to fix each one,
and lets you come back to track your progress. Treat the link like a private key — anyone with it
can view that report, so only share it with people you trust.
How your data is stored
Data is transmitted over an encrypted connection (HTTPS) and stored with reputable service
providers. We keep information only as long as we need it to provide the service and meet legal
or accounting obligations, then delete or anonymize it. We limit who can access your data to
what's necessary to run SecPostureAssessment.
Third parties we use
We rely on a few trusted providers to run the service. Each only receives the data it needs:
MailerLite (email service provider) — to send your results link and any tips you opt into.
Stripe (payment processor) — to securely handle payments for paid products. Your card details are managed by Stripe under its own privacy and security terms.
SecPostureAssessment is intended for business owners and professionals and is not directed at
children. We do not knowingly collect data from anyone under 16.
Changes to this policy
If we make meaningful changes, we'll update this page and the "last updated" date above. If the
changes are significant, we'll do our best to let you know directly where we can.