PacketWatch Privacy Policy

 

Effective Date: May 11, 2026

This Privacy Policy ("Policy") explains how WGM Associates LLC, doing business as PacketWatch ("PacketWatch," "we," "us," or "our"), collects, uses, shares, and protects personal information in connection with our website, PacketWatch.com (the "Site"), and our enterprise cybersecurity and related professional services (the "Services"). PacketWatch provides Services only to businesses and other organizations (B2B) and does not offer consumer services for personal, family, or household use. This Policy is written for business customers and their representatives. It does not apply to information our customers ask us to process on their behalf under a separate written agreement (for example, customer data contained in systems we monitor or support), which is governed by contract and applicable data protection terms.

This Policy describes: (1) what personal information we collect; (2) when we collect it; (3) how we use it; (4) how we share it; (5) how we protect and retain it; and (6) the choices and rights that may be available to you. If you have questions, please contact us using the information in the "Contact Us" section below.

Our Site may include links to third-party websites. If you follow those links, the third party’s privacy practices apply. We encourage you to review the privacy policy of any site you visit.

We are based in the United States and do not maintain an office in the European Union. If you access the Site or engage our Services from outside the United States, your information may be transferred to and processed in the United States and other countries where we or our service providers operate.

The Site and Services are intended for business use and are not directed to children. We do not knowingly collect personal information from children under 16.

If we process personal information on behalf of a customer as part of the Services (for example, contact information in a ticketing system or security logs a customer asks us to review), we do so as a service provider or processor under our customer contract and handle that information in accordance with the contract and applicable law. Our Services may also involve third-party technology partners, including cybersecurity vendors, that support delivery of the Services. Where appropriate, we share limited information with those partners under confidentiality and data protection obligations consistent with our agreements.

Contents: 1) Information We Collect; 2) How We Collect Information; 3) How We Use Information; 4) How We Share Information; 5) Cookies & Analytics; 6) Security; 7) Data Retention; 8) Your Choices and Rights; 9) Changes to This Policy; 10) Contact Us.

 

1. Information We Collect

Depending on how you interact with us, we may collect the following categories of personal information:

  • Business contact information (such as name, work email, work phone, company, job title, and business address).
  • Account and support information (such as usernames, authentication details, support requests, and communications with us).
  • Payment and billing information (such as billing contact details, payment status, and transaction records). Payment card information is processed through our third-party accounting and payment platform. We do not store full payment card numbers or security codes on our own systems.
  • Technical and application telemetry (such as IP address, device identifiers, browser type, crash reports, performance diagnostics, feature usage, and other technical logs generated when you use the PacketWatch application or platform, or the Site). For clarity, this telemetry is about the operation and security of the application and does not include the content of customer systems unless a customer separately provides that content to us for support or analysis under contract.
  • Security artifacts and detection metadata (such as file hashes, behavioral indicators, network indicators, detection telemetry, and similar technical artifacts) collected through the PacketWatch application or platform as part of delivering the Services. These items may be used to improve detections and automated analytics, including training and improving machine learning models, as described below. For clarity, we do not disclose raw security artifacts between clients; we use and may share only derived indicators and similar threat intelligence outputs.
  • Event or meeting information (such as registration details and, if you choose to participate, recordings or notes from calls or webinars).
  • Physical forensic devices and materials (such as computers, phones, drives, removable media, documents, and related materials) that customers or their representatives provide or ship to us for forensic examination, incident response, e-discovery support, or related professional services, together with associated shipping, custody, inventory, and analysis records.
  • Customer-provided service data that we access, receive, or collect while delivering Services on behalf of a customer (handled under contract; may include log data, ticket content, telemetry, or other information a customer asks us to analyze, including information made available through customer-authorized API integrations with customer systems or third-party platforms such as endpoint detection and response (EDR) tools, productivity and collaboration platforms such as Microsoft 365 or Google Workspace, and cloud infrastructure, SaaS, or similar service platforms).

We do not sell personal information. As described below, we may use cookies and similar technologies, and some privacy laws treat certain analytics or advertising-related disclosures as “sharing.” You can manage cookies through your browser settings and, where available, our cookie tools.

 

2. How We Collect Information

We collect information in the following ways:

  • Directly from you when you contact us, request information, sign up for updates, register for an event, or engage our Services.
  • Automatically when you use the Site or the PacketWatch application or platform, including through cookies, server logs, telemetry, feature usage data, and similar technologies.
  • From business sources such as your employer, colleagues, resellers/partners involved in a transaction, or publicly available sources (for example, professional directories), where permitted by law.
  • From customers when they provide, make available, or authorize us to collect information needed to deliver the Services on their behalf, including through customer-authorized API integrations with customer systems or third-party platforms.

 

3. How We Use Information

We use personal information for the following business purposes:

  • Provide, operate, maintain, and improve the Site and Services, including onboarding, service delivery, troubleshooting, and customer support.
  • Communicate with you about requests, contracts, renewals, security notices, and administrative matters.
  • Send marketing and informational communications (you can opt out at any time).
  • Maintain the security of our systems, prevent fraud and abuse, and protect our rights and property.
  • Comply with legal obligations and enforce our agreements.
  • Use technical and application telemetry to maintain and improve the PacketWatch application or platform, including monitoring reliability and performance, detecting abuse, and developing or improving automated analytics (including machine learning) to identify suspicious activity patterns. Where feasible, we use derived, de-identified, or aggregated technical data for these purposes. This use is based on system, network, application, attacker behavior, payload, and similar security-related data, and not on the contents of a person’s emails or other private communications unless that content is separately provided to us under contract for support or analysis.
  • Use security artifacts and detection metadata collected through the PacketWatch application or platform to develop, train, and improve detections and automated analytics (including machine learning models) and to better protect our clients. This use is a core part of the Services and is not optional. Where feasible, we use derived, de-identified, or aggregated technical data for these purposes and do not identify client-specific information to other clients. We do not disclose raw security artifacts between clients and do not use the contents of a person’s emails or other private communications for these purposes unless that content is separately provided to us under contract for analysis. We use and may share only derived indicators and similar threat intelligence outputs.
  • Receive, document, track, store, transport, image, analyze, return, and, where applicable, securely dispose of physical forensic devices and materials provided to us in connection with forensic, incident response, e-discovery, or related professional services, including maintaining associated custody, inventory, shipping, and examination records.
  • Support corporate transactions (such as mergers, acquisitions, or asset sales) where permitted by law.

Where permitted by law, we may disclose the categories of personal information described above to service providers and business partners that help us operate the Site and deliver the Services, such as hosting providers, customer relationship management tools, ticketing systems, analytics providers, and cybersecurity technology partners. We do not disclose business contact information to third parties for their own direct marketing purposes without your consent.

 

4. How We Share Information

We may share personal information in the following circumstances:

  • Service providers that help us operate the Site and deliver the Services (for example, hosting, analytics, email delivery, customer support tools, and payment processors). They may access information only to perform services for us and must protect it.
  • Technology partners that support delivery of cybersecurity services (for example, tools used to detect, investigate, or remediate threats), consistent with our contracts and partner obligations.
  • Business transfers if we are involved in a merger, acquisition, financing, reorganization, or sale of all or part of our business.
  • Legal and safety when we determine in good faith that disclosure is appropriate to comply with law, protect rights or safety, investigate fraud, or respond to lawful requests.
  • With your direction when you instruct us to share information (for example, to add an authorized contact to an account).

 

5. Cookies & Analytics

We use cookies and similar technologies, such as pixels and local storage, to help the Site function, understand how it is used, and improve performance. You can control cookies through your browser settings and, where available, cookie preference tools on the Site. Some features may not function properly if you disable cookies.

 

6. Security

We use reasonable administrative, technical, and physical safeguards designed to protect personal information from unauthorized access, use, alteration, and disclosure. No method of transmission over the Internet or method of storage is 100% secure, so we cannot guarantee absolute security.

If you have an account with us, you are responsible for maintaining the confidentiality of your login credentials and for any activity that occurs under your account.

If you believe your interaction with us involves a security issue, please contact us using the information in the "Contact Us" section below.

 

7. Data Retention

We retain personal information only as long as reasonably necessary for the purposes described in this Policy, including providing the Site and Services, complying with legal obligations, resolving disputes, and enforcing our agreements. Retention periods may vary depending on the type of information and the nature of the Services provided under contract. We may retain de-identified or aggregated information for longer periods where permitted by law.

 

8. Your Choices and Rights

Depending on where you live, you may have certain rights regarding your personal information, including the right to request access, correction, or deletion. You may also be able to object to certain processing or request that we limit it.

  • Marketing emails: You can opt out by using the unsubscribe link in our emails.
  • Cookies: You can control cookies as described in Section 5.
  • Requests: You may contact us to request access, correction, or deletion of personal information we hold about you, subject to legal limitations.

Customer-controlled data: If your employer or organization is our customer and you want to exercise rights relating to information processed on its behalf, please contact your organization first. In many cases, we can act on those requests only through the customer.

California: If you are a California resident, you may have rights under the California Consumer Privacy Act (as amended), including the right to know, delete, and correct certain personal information, and to opt out of certain disclosures that may be considered “sharing” for targeted advertising. We do not sell personal information. To submit a request, contact us as described below.

 

9. Changes to This Policy

We may update this Policy from time to time. If we make material changes, we will update the Effective Date above and, where appropriate, provide additional notice on the Site or through our business communications.

 

10. Contact Us

WGM Associates LLC d/b/a PacketWatch
Attn: Privacy
8601 N. Scottsdale Rd Suite 325
Paradise Valley, AZ 85253
Email: privacy@packetwatch.com
Phone: 480-444-7070