Greyphish

Privacy Policy

Effective Date: March 6, 2026

Sima Technologies LLC (“Company”, “we”, “us”, or “our”) operates GreyPhish at greyphish.com. This Privacy Policy describes how we collect, use, and protect your personal information when you use our service.

1. Information We Collect

Account Information

When you register, we collect your username, email address, and a hashed password. We do not store plaintext passwords.

Payment Information

Payment processing is handled by Stripe. We do not store credit card numbers or full payment details on our servers. Stripe may collect information as described in their privacy policy.

Usage Data

We collect basic usage information such as pages visited, API calls made, feature usage, and session duration to improve the service.

Technical Data

We automatically collect IP addresses, browser type, device information, and access timestamps for security and operational purposes.

2. How We Use Your Information

  • To provide, maintain, and improve the GreyPhish platform
  • To process payments and manage your subscription
  • To communicate with you about your account, service updates, or support requests
  • To detect and prevent fraud, abuse, or security incidents
  • To comply with legal obligations

3. Information Sharing

We do not sell your personal information. We may share data with:

  • Stripe for payment processing
  • Infrastructure providers (hosting, CDN) as necessary to deliver the service
  • Legal authorities when required by law or to protect our rights

4. Data Retention

We retain account data for as long as your account is active. After account deletion, we may retain certain data for up to 90 days for legal and operational purposes, after which it is permanently deleted.

5. Data Security

We implement reasonable technical and organizational measures to protect your data, including encryption in transit (TLS), hashed passwords, and access controls. No system is 100% secure, and we cannot guarantee absolute security.

6. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Export your data in a portable format
  • Withdraw consent where processing is based on consent

To exercise any of these rights, contact us at admin@greyphish.com.

7. Cookies

We use essential cookies for authentication and session management. We do not use third-party advertising cookies.

8. Children

GreyPhish is not intended for users under 18. We do not knowingly collect data from children.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify active subscribers of material changes via email. The “Effective Date” at the top reflects the latest revision.

10. Contact

For privacy-related inquiries, contact us at admin@greyphish.com.

Sima Technologies LLC

TermsPrivacyRefund PolicyContactAPI Docs

© 2026 Sima Technologies LLC. All rights reserved.