What personal information does MoonFort collect?

MoonFort collects personal information you choose to provide, such as your name, email address, password, and any other information you submit. We also collect customer contact and billing information.

How does MoonFort protect personal information?

MoonFort implements and maintains industry-standard technical and organizational measures designed to protect personal information. However, no system can be guaranteed to be completely secure.

How does MoonFort share personal information?

MoonFort may share personal information with affiliates, service providers, regulators and authorities, professional advisors, and in connection with business transfers, or with your consent.

What privacy rights do users have?

Depending on your location and applicable law, you may have rights including: withdraw consent, access, rectification, object, erasure, restriction, and data portability.

How can I contact MoonFort about privacy?

You can contact MoonFort regarding privacy matters at itay@moonfort.ai

MOONFORT PRIVACY POLICY

Last Updated: October 16, 2025

This Privacy Policy (“Privacy Policy”) explains how MoonFort Security, Inc. and MoonFort Security Ltd. (“MoonFort,” “we,” “our,” or “us”) collect, use, disclose, and store personal information about individuals (“you”) in connection with our services (the “Services”).

We respect your privacy and strive to uphold high standards of data protection. Please read this Privacy Policy carefully to understand our practices. Important note: Nothing in this Privacy Policy is intended to limit your statutory rights, including any rights to remedies or enforcement.

What personal information we collect, why we collect it, and how it is used
How we protect and retain your personal information
How we share your personal information
Your privacy rights
International transfers of personal information
Use by children
Interaction with third-party products
Contact us

This Privacy Policy may be updated from time to time. Please check back periodically for the latest version. If we make material changes to how we use personal information that differ from the practices at the time of collection, we will notify you (for example, by posting a notice in the Services) and take any additional steps required by applicable law.

1. What personal information we collect, why we collect it, and how it is used

A. Personal information we process

Information you provide through the Services. We collect personal information you choose to provide, such as your name, email address, password, and any other information you submit. We also collect customer contact and billing information.

B. Purposes of processing

To provide and operate the Services. This includes: (i) creating and managing your account; (ii) delivering the Services and processing your requests; (iii) communicating with you about the Services and providing support; (iv) carrying out your instructions; (v) sending push notifications and/or emails about your account, features, and subscription updates; (vi) personalizing your experience; (vii) enabling you to add and administer users; and (viii) generally administering, maintaining, and improving the Services.
Administrative purposes. We use personal information to (i) respond to questions, comments, and support requests (including about potential or future services); (ii) provide MoonFort Services; (iii) perform internal quality control; (iv) establish and maintain business relationships; and (v) generally administer the MoonFort Services.
Security, safety, and legal. We use personal information to detect, prevent, and prosecute fraud or other unlawful activity; identify and repair errors; conduct audits; protect our Services, users, and the public; comply with laws and requests from authorities; and exercise or defend legal claims.

C. Lawful bases (where required)

Where applicable (e.g., under the GDPR), our processing is based on one or more of the following legal bases:

Consent from the data subject.
Contractual necessity to perform a contract or take steps prior to entering into a contract.
Legal obligation to which we are subject.
Legitimate interests pursued by us or a third party.

2. How we protect and retain your personal information

Security. We implement and maintain industry-standard technical and organizational measures designed to protect personal information. However, no system can be guaranteed to be completely secure, and unauthorized access may occur. Security also depends on the safeguards you use for your devices, networks, and credentials; please take appropriate steps to protect them.
Retention. We store personal information until we proactively delete it or you submit a valid deletion request. In some cases, we retain personal information longer, for example: (i) to comply with legal, regulatory, tax, or accounting requirements; (ii) to maintain accurate records of interactions with you in case of complaints or disputes; and/or (iii) where we reasonably believe litigation is likely.

We may share personal information as follows:

Partners and other third parties.
Affiliates. We share information with our affiliated companies.
Service providers. For example:
- Cloud service providers (hosting and related services).
- Email, CRM, and similar tools that help us deliver and support the Services.
Regulators and authorities. Where necessary to comply with laws, regulations, requests from law enforcement or other authorities, court orders, internal compliance, or to protect the safety, security, and integrity of MoonFort, our Services, customers, employees, property, and the public.
Professional advisors. Lawyers, accountants, auditors, and similar advisors where necessary to obtain advice or protect and manage our business interests.
Safety, security, and enforcement. To investigate, prevent, or take action regarding illegal activities, suspected fraud, cybersecurity threats, potential threats to physical safety, or violations of our policies, or as otherwise required or permitted by law.
Business transfers. In connection with an actual or contemplated sale, investment, merger, acquisition, reorganization, bankruptcy, or similar event, we may transfer personal information to relevant third parties.
With your consent. Where you have provided consent to share or transfer your personal information.

4. Your privacy rights

Depending on your location and applicable law (and subject to exemptions), you may have some or all of the following rights:

Withdraw consent where processing is based on consent.
Access personal information we hold about you and information about how it is processed.
Rectification of inaccurate or incomplete personal information.
Object to certain processing (including where based on legitimate interests), under certain conditions.
Erasure (“right to be forgotten”) under certain conditions.
Restriction of processing under certain conditions.
Data portability for personal information you provided to us, in a structured, commonly used, machine-readable format, under certain conditions.
Automated decision-making. We do not use personal information for automated decision-making or profiling that produces legal or similarly significant effects.

Exercising your rights. To exercise your rights, contact us at itay@moonfort.ai. You may authorize an agent to submit a request on your behalf if you provide signed written permission. We may take steps to verify your identity (and, if applicable, your agent’s authority) before fulfilling your request. Subject to legal and other considerations, we will make reasonable efforts to honor your request promptly or inform you if we need more information. We may charge a fee where permitted by law (e.g., if a request is manifestly unfounded or excessive). If your request would adversely affect the rights and freedoms of others or we are legally entitled to handle it differently, we will address it to the maximum extent permitted by law.

5. International transfers of personal information

We operate globally and transfer personal information to countries outside your jurisdiction, including to our affiliates and service providers. Those countries may have privacy laws different from those in your country. When transferring personal information internationally, we implement appropriate safeguards, such as:

Using Standard Contractual Clauses or other lawful transfer mechanisms; and/or
Ensuring transfers are made to countries recognized as providing an adequate level of protection; and/or
Executing appropriate data processing and data protection agreements and onward-transfer commitments.

6. Use by children

Our Services are not directed to children, and we do not knowingly collect personal information from individuals under 18. If you are under 18, please do not provide information without a parent or guardian. If we learn that we have collected information in violation of applicable law, we will delete it. If you believe we may have such information, contact us at itay@moonfort.ai.

7. Interaction with third-party products

The Services may enable interaction with third-party websites, products, or services not owned or controlled by us (“Third-Party Services”). We are not responsible for the privacy practices or content of Third-Party Services, which may collect personal information from you. We encourage you to review the terms and privacy policies of each Third-Party Service.

8. Contact us

For questions, concerns, or to exercise your privacy rights, please contact: itay@moonfort.ai