JustGuard logo

JustGuard Privacy Policy

Last updated: January 3, 2026

This Privacy Policy explains how JustGuard ("the Company," "We," "Us"), a Belgian cybersecurity platform, collects, uses, protects, and discloses Your information when You use Our Service. It also outlines Your privacy rights under the General Data Protection Regulation (GDPR). By using the Service, You agree to this policy.

Interpretation and Definitions

The following definitions apply:

  • Company (We, Us, Our) refers to JustGuard, (BE0804.357.949), located in Belgium.

  • Personal Data is information relating to an identified or identifiable individual.

  • Service refers to the JustGuard cybersecurity platform and Website.

  • Service Provider is any third party processing data on Our behalf (e.g., hosting, analytics).

  • Usage Data is data collected automatically from the Service infrastructure (e.g., page duration, IP address).

  • You is the individual or entity accessing the Service.

Collecting and Using Your Personal Data

Data We Collect

Directly Provided Data

When you create an account, we collect:

  • Email & Password: Your email address and a secure, hashed password (if using email sign-up).
  • Name: First and last name (if provided).
  • Support Data: Information shared when contacting our support.

Data from Third-Party Logins (GitHub & Google)

If you use GitHub or Google to sign in, we collect the unique ID, name, and email address associated with that account.

Usage Data and Tracking

We collect Usage Data (IP address, browser type, pages visited) to monitor, secure, and improve the Service.

Cookies & Tracking Technologies: We use cookies to enhance your experience. For essential functions (authentication, security), we use Necessary Cookies which cannot be disabled. For analytics (PostHog), we use Optional Cookies which are only set if you explicitly give your consent via our Cookie Banner. You can withdraw your consent at any time.

How and Why We Use Your Data (Legal Basis - GDPR)

We use your Personal Data only when we have a legal basis to do so:

  • Performance of a Contract: To provide and maintain the Service, manage Your Account, and fulfill essential services (e.g., running scans).
  • Legitimate Interest: To improve our Service, prevent fraud, and send essential service communications.
  • Consent: For marketing and optional data processing, where required.
  • Legal Obligation: To comply with applicable laws and regulations.

Disclosure of Your Data

We may share your data in the following circumstances:

  • Service Providers: With third parties under contract to perform functions on Our behalf.
  • Business Transfers: In connection with a merger, sale, or acquisition of assets.
  • Affiliates: With Our parent company or subsidiaries, bound by this policy.
  • Legal Requirements: If required by law, court order, or governmental authorities.
  • Consent: With Your explicit permission for other purposes.

Key Service Providers (Processors)

We engage trusted third-party service providers to help us deliver the Service. These processors act on our behalf and are contractually bound to protect your data:

  • PostHog (EU): We use PostHog for product analytics to understand how users interact with our platform. Data is hosted in the European Union (Frankfurt). PostHog is configured to anonymize data where possible and respects your "Do Not Track" and cookie consent preferences.
  • Sentry (EU/US): We use Sentry for real-time error tracking and performance monitoring to Identify and fix bugs. We filter personally identifiable information (PII) before sending data to Sentry. Our Sentry instance is configured to use data residency within the EU (Germany) where applicable.
  • Microsoft Azure (EU): Cloud hosting and infrastructure provider.

Data Retention and Transfer

Data Retention

We retain Personal Data only as long as necessary for the outlined purposes, legal compliance, and security.

International Transfer

We primarily process data within the European Economic Area (EEA). If data is transferred outside the EEA, we ensure adequate safeguards are in place, typically through Standard Contractual Clauses (SCCs), to maintain equivalent data protection standards.

Your Data Protection Rights (GDPR)

As an EEA resident, you have the right to:

  • Access your data.
  • Rectification (correct errors).
  • Erasure ("right to be forgotten").
  • Restrict Processing or Object to Processing.
  • Data Portability (receive a copy in a standard format).
  • Withdraw Consent at any time.
  • Lodge a complaint with the Belgian Data Protection Authority (GBA/APD).

Contact us to exercise these rights.

Security and Policy Changes

Security of Your Personal Data

As a cybersecurity platform, we implement strong technical and organizational measures (e.g., encryption, access controls) to protect Your data. However, absolute security cannot be guaranteed for data transmitted over the Internet.

Children's Privacy

Our Service is not directed at anyone under the age of 16. If we learn we have collected data from a child under 16 without parental consent, we will take steps to remove it.

Changes to this Policy

We will update this Privacy Policy periodically. We will notify you of any material changes via email and/or a prominent notice on the Service before the change takes effect.

Contact Us

For any questions about this Privacy Policy or to exercise your rights:

  • By Email: hello@justguard.be