Privacy Policy

Effective: May 17, 2026 · Last updated: May 17, 2026

Summary

The only data collected from you directly is your email address, and only if you subscribe to the newsletter.
Google Analytics 4 is used to measure aggregated site usage, with IP anonymization, and only after you accept the cookie banner.
No data is sold or shared with third parties for advertising or marketing.
You can unsubscribe from the newsletter or request deletion of your data at any time.
For any privacy-related questions, contact contact@defend.network.

1. About defend.network

defend.network is a free cybersecurity intelligence platform that publishes AI-generated daily threat briefings, vulnerability analysis, and a security tools directory.

For privacy-related questions, contact contact@defend.network.

2. Data collected

2.1. Newsletter subscriptions

If you subscribe to the daily briefings, the following data is collected:

Your email address
The date you subscribed
UTM parameters (referring source) if present in the subscription URL

This data is stored by the email service provider, Beehiiv. See Beehiiv's Privacy Policy for details on how subscriber data is handled.

2.2. Analytics (only with consent)

If you accept cookies via the consent banner, Google Analytics 4 (GA4) is used to measure aggregated site usage. The following is collected:

Anonymized IP address (last octet truncated)
Pages visited and time spent
Device type (mobile/desktop), browser, and operating system
Referrer (the site that linked to defend.network)

If you decline the cookie banner, no analytics data is collected. The choice is remembered locally on your device.

2.3. Hosting and server logs

The site is hosted on Netlify, which logs standard request information (IP address, user agent, referrer, timestamp) for operational purposes such as DDoS protection and content delivery. See Netlify's Privacy Policy for details.

2.4. Data not collected

No account creation is required
No names, addresses, phone numbers, or other personal identifiers are collected beyond the email address you provide if subscribing
No third-party advertising or behavioral tracking is used
No cookies are used for advertising
No browser fingerprinting is performed
No data is sold or shared with third parties for marketing

3. How the data is used

Email addresses are used solely to send the daily threat briefings you subscribed to, plus occasional service announcements (for example, if subscription frequency changes). No marketing emails are sent, and email addresses are not shared with third parties.

Analytics data, if consented to, is used to understand which content is useful so that briefing quality can be improved. Reports are aggregated.

4. Your choices

Access: request a copy of any data held about you
Correction: ask for inaccurate data to be corrected
Deletion: request that your data be deleted
Withdraw consent: change cookie preferences at any time by clearing your browser's localStorage
Unsubscribe: every newsletter email contains an unsubscribe link
Data portability: request your data in a machine-readable format

To exercise any of these, email contact@defend.network.

5. Cookies and similar technologies

The following are used on this site:

Functional (always): a localStorage entry called dn_cookie_consent remembers your cookie preference choice. This is not actually a cookie — it stays in your browser and is not transmitted.
Analytics (only with consent): Google Analytics 4 sets _ga and _ga_* cookies. These persist for 2 years and can be cleared at any time via your browser settings.

No marketing cookies, advertising cookies, or social media tracking pixels are used.

6. Data retention

Newsletter subscribers: retained until you unsubscribe
Analytics data: retained for 14 months in GA4, then automatically deleted
Server logs: retained per Netlify's standard policy (typically 30 days)

7. International data transfers

The service providers (Beehiiv, Netlify, Google) may process data in the United States and other countries. They have safeguards in place (Standard Contractual Clauses, EU-US Data Privacy Framework) for transfers from the EU.

8. Children

defend.network is intended for cybersecurity professionals and adults. Data is not knowingly collected from children under 16. If you believe a child has subscribed, email contact@defend.network and the data will be deleted.

9. Security

Standard security practices are in place: HTTPS for all traffic, HTTP Strict Transport Security (HSTS), Content Security Policy headers, and no credentials or sensitive personal data are stored. Subscriber emails are stored by Beehiiv, which maintains SOC 2 Type II compliance.

10. Changes to this policy

This policy may be updated occasionally. Material changes will be noted in a daily briefing, and the "Last updated" date at the top of this page will change.

11. Contact

For privacy questions, data requests, or anything else: contact@defend.network.