Privacy Policy

Last Updated: February 2026

1. Introduction

Glacier Byte Technology LLC ("we," "our," or "us") is committed to protecting the privacy and security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website GlacierByteTechnology.com and use our services.

As a cybersecurity contractor serving federal agencies, we maintain the highest standards of data protection in compliance with NIST 800-53, FedRAMP, and other applicable federal security frameworks.

2. Information We Collect

2.1 Information You Provide

When you contact us through our website forms, we collect:

  • Full name
  • Email address
  • Organization name
  • Message content and service requirements

2.2 Automatically Collected Information

We automatically collect certain information when you visit our website:

  • Browser type and version
  • Operating system
  • Referring website
  • Pages visited and time spent on pages
  • IP address (anonymized for privacy)

3. How We Use Your Information

We use the information we collect for the following purposes:

  • Responding to your inquiries and service requests
  • Communicating about our cybersecurity services and solutions
  • Improving our website and user experience
  • Analyzing website traffic and usage patterns
  • Complying with legal obligations and security requirements
  • Protecting against fraudulent or unauthorized access

4. Form Data Processing

Contact form submissions are processed through a secure backend powered by AWS Lambda and Amazon Simple Email Service (SES). When you submit a form:

  • Your data is transmitted securely via HTTPS/TLS encryption to our API
  • Cloudflare Turnstile verifies you are not a bot before processing
  • Form data is delivered to our designated email address via Amazon SES
  • Submissions are not stored in any database — they are delivered as email only
  • Rate limiting and input validation are enforced to prevent abuse

For more information about AWS's privacy practices, please visit the AWS Privacy Policy.

5. Analytics and Tracking

We use Plausible Analytics, a privacy-friendly web analytics service that:

  • Does not use cookies
  • Does not collect personal information
  • Does not track users across websites
  • Anonymizes all visitor data
  • Is fully compliant with GDPR, CCPA, and PECR

Plausible collects only aggregate statistics about page views and referral sources to help us understand how visitors use our website.

6. Data Security

We implement industry-standard security measures to protect your information, including:

  • HTTPS/TLS encryption for all data transmission
  • Input validation and sanitization to prevent XSS and injection attacks
  • Rate limiting to prevent automated abuse
  • Regular security audits and vulnerability assessments
  • Compliance with NIST 800-53 security controls
  • Secure hosting infrastructure with AWS Amplify

While we implement robust security measures, no method of transmission over the internet is 100% secure. We continuously monitor and improve our security posture.

7. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

  • Service Providers: With trusted third-party service providers (e.g., AWS (Lambda, SES, API Gateway) for form processing, Cloudflare (Turnstile CAPTCHA) for bot protection) who assist in operating our website
  • Legal Compliance: When required by law, court order, or governmental request
  • Security Purposes: To protect our rights, property, safety, or that of our users or the public
  • Business Transfers: In connection with a merger, acquisition, or sale of assets

8. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required by law. Contact form submissions are retained for business communication purposes and deleted upon request or when no longer needed.

9. Your Privacy Rights

You have the following rights regarding your personal information:

  • Access: Request a copy of the personal information we hold about you
  • Correction: Request correction of inaccurate or incomplete information
  • Deletion: Request deletion of your personal information
  • Objection: Object to our processing of your personal information
  • Portability: Request transfer of your data to another service

10. Government Compliance

As a federal contractor, Glacier Byte Technology adheres to strict government security and privacy requirements, including compliance with the Federal Information Security Modernization Act (FISMA), FedRAMP authorization requirements, and NIST Special Publications. Our data handling practices meet or exceed federal standards for protecting sensitive information.

11. Children's Privacy

Our website and services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us immediately.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on this page with a new "Last Updated" date. Your continued use of our website after such changes constitutes acceptance of the updated policy.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Glacier Byte Technology LLC

Helena, MT 59601

Email: info@GlacierByteTechnology.com

CAGE Code: 9WYP0 | UEI: N3UKUXEY4RE5