Proud to be featured in the OWASP GenAI Security Solutions Landscape – Test & Evaluation category. View Report

VeriGenAI Security Platform Cookie Policy

Effective Date: January 1st, 2025

1. Introduction

VeriGenAI ("we," "us," or "our") uses cookies and similar tracking technologies on our security intelligence platform, website, and related services (collectively, the "Platform"). This Cookie Policy explains what cookies are, how we use them in our cybersecurity platform, and your choices regarding their use.

As a security-first organization, we implement responsible data collection practices while providing enterprise-grade GenAI security assessment services. By using our Platform, you agree to the use of cookies in accordance with this policy and our commitment to data protection.

2. What Are Cookies and Tracking Technologies?

Cookies are small text files stored on your device when you visit our Platform. We also use similar technologies including:

  • Session Cookies: Temporary cookies that expire when you close your browser
  • Persistent Cookies: Cookies that remain on your device for a specified period
  • Local Storage: Technology that allows websites to store data locally on your device
  • Web Beacons: Small graphics used to track user interactions and email engagement
  • Security Tokens: Authentication tokens used to maintain secure platform sessions

3. Types of Cookies We Use

Our security platform uses the following categories of cookies:

3.1. Essential Security Cookies

These cookies are critical for platform security and core functionality:

  • Authentication Cookies: Secure login sessions and multi-factor authentication
  • Security Assessment Cookies: Maintain state during vulnerability testing sessions
  • CSRF Protection: Prevent cross-site request forgery attacks
  • Platform Navigation: Enable secure navigation between platform features

3.2. Functional Platform Cookies

These cookies enhance your security platform experience:

  • User Preferences: Security dashboard layouts, notification settings, and report formats
  • Assessment History: Recent security scans and compliance reports
  • Team Settings: Security team configurations and role preferences

3.3. Security Analytics Cookies

These cookies help us improve platform security and performance:

  • Platform Usage: How security teams use different assessment features
  • Performance Monitoring: Platform response times and system reliability
  • Security Monitoring: Detection of suspicious activity and platform abuse

3.4. Security Intelligence Cookies

These cookies support our threat intelligence and security research:

  • Threat Patterns: Anonymized patterns in security assessment results
  • Compliance Trends: Industry-wide security compliance analytics
  • Platform Optimization: Improve attack detection and assessment accuracy

4. Third-Party Security Services

We work with carefully vetted third-party security services that may place cookies:

  • Google Analytics: Security platform usage analytics and performance monitoring
  • Security Monitoring Services: Advanced threat detection and platform protection
  • Cloud Security Providers: Infrastructure security and DDoS protection
  • Enterprise Authentication: SSO providers for enterprise customer authentication

All third-party services are bound by strict data protection agreements and security requirements appropriate for enterprise cybersecurity platforms.

5. How We Use Cookies in Security Operations

Our security platform uses cookies to:

  • Secure Authentication: Maintain secure sessions for security team access
  • Assessment Continuity: Preserve state during complex security assessments
  • Threat Detection: Monitor for suspicious activity and platform abuse
  • Performance Optimization: Ensure rapid response times for security operations
  • Compliance Reporting: Generate accurate compliance dashboards and reports
  • Platform Security: Protect against security threats and unauthorized access
  • Intelligence Enhancement: Improve attack detection and vulnerability identification

5. Your Cookie Management Options

You have options for managing cookies on our security platform:

5.1. Platform Cookie Controls

Manage cookie preferences directly in your security platform settings:

  • Navigate to Account Settings → Privacy Preferences
  • Configure analytics and intelligence cookie preferences
  • Essential security cookies cannot be disabled for platform security
  • Changes apply immediately and sync across your security team

5.2. Browser Settings

Control cookies through your browser settings, though this may impact platform functionality:

  • Most browsers allow you to view, delete, and block cookies
  • Disabling essential cookies will prevent platform access
  • Consider using browser profiles for different security activities

5.3. Third-Party Opt-Outs

Opt out of third-party analytics and tracking:

6. Enterprise Cookie Management

Enterprise customers receive additional cookie management capabilities:

  • Centralized Control: IT administrators can set organization-wide cookie policies
  • Compliance Integration: Cookie settings align with corporate data governance policies
  • Audit Logs: Detailed logging of cookie usage for security audits
  • Custom Retention: Configure cookie retention periods to meet compliance requirements

7. Security and Privacy Protection

Our cookie implementation includes enterprise-grade security measures:

  • Encryption: All sensitive cookies are encrypted with AES-256
  • Secure Transmission: Cookies transmitted only over HTTPS connections
  • HttpOnly Flags: Security cookies protected from client-side access
  • SameSite Protection: Cookies protected against cross-site attacks
  • Regular Rotation: Security tokens rotated regularly for maximum protection

8. Do Not Track and Privacy Signals

Our security platform respects privacy preferences while maintaining essential security functions:

  • We honor Do Not Track signals for non-essential analytics
  • Essential security cookies remain active to protect platform integrity
  • Global Privacy Control (GPC) signals are respected where applicable
  • Optionally Enterprise customers can configure advanced privacy signal handling

9. Updates to This Cookie Policy

We update this Cookie Policy to reflect:

  • New security platform features and capabilities
  • Changes in privacy regulations and security standards
  • Enhanced security measures and threat protection
  • Improved analytics and threat intelligence capabilities

Material changes are communicated 30 days in advance through platform notifications and direct communication to security team contacts.

10. Contact Information and Support

For questions about cookies or privacy preferences:

VeriGenAI Security Platform
United States of America