Privacy Policy

Information we collect

When you sign in, we receive account information from your provider, including email address, display name, provider ID, account ID, and authentication state.

Profiles may include display name, handle, bio, and photo URL. iOS notifications may use device tokens, app version, notification state, and delivery preferences.

How we use information

We use account and app information to authenticate users, protect access, deliver requested alerts, operate administrative workflows, improve reliability, and secure the service.

Service providers

Trusted providers support hosting, authentication, backend data access, abuse prevention, monitoring, and push notifications. They process information as needed to operate and protect the service.

Account deletion and retention

Signed-in users can start account deletion from Settings in the iOS app. Deletion removes the app account, profile, handle reservation, notification tokens, and notification preferences.

Some records may be retained for legal, security, fraud prevention, abuse prevention, backup, or audit obligations. Account deletion is permanent and separate from signing out.

AI and public CVE content

Public threat intelligence may be AI-assisted and may be incomplete, delayed, inaccurate, or stale. Halo Threat Intelligence does not send personal account or profile data to AI providers for public threat advisory generation.

Admin access and external links

Privileged admins may access limited account metadata to operate and protect the service. Public CVE pages and the app may open third-party links governed by third-party policies.

Contact

For privacy questions, data requests, or support, use the Halo Threat Intelligence support page.