Privacy Policy

Effective Date: January 2026

1. COMMITMENT TO DATA PRIVACY STANDARDS

Potomac Cyber Governance, LLC ("GoCyberCompliant") is committed to protecting your business data in alignment with the Maryland Online Data Privacy Act (MODPA) and federal cybersecurity standards. We practice strict "Data Minimization"—we only collect the data points strictly necessary to generate your custom compliance artifacts.

2. DATA WE COLLECT

  • Assessment Data: Responses provided in our Risk Assessment Survey (e.g., employee count, software stack, cloud providers, and hardware configuration).
  • Transaction Data: Payment processing information handled securely via Stripe. We do not store or see your credit card numbers.

3. HOW WE USE YOUR DATA

We use your data for a single, primary purpose: To construct your custom Information Security Governance framework and provide relevant updates via "Compliance Watch."

  • No Data Sales: We do NOT sell your data to third parties, advertisers, or data brokers.
  • No Public AI Training: We do NOT use your specific business data or survey inputs to train public AI models.

4. DATA RETENTION & DESTRUCTION

We believe that liability is reduced when data is deleted. We strictly limit the retention of client documents.

  • Upload Destruction: Policy handbooks uploaded for Gap Analysis are retained only for the duration of the audit. Once your Red-Line Report is delivered, the source files are purged from our active review environment within 30 days.
  • Minimization: We do not retain copies of your internal operational documents once the service is rendered.

5. DATA SECURITY & ENCRYPTION

Your assessment data is encrypted in transit (using TLS 1.2+) and at rest. We utilize role-based access controls (RBAC) to ensure that only authorized risk auditors and specialists view your inputs during the document generation process.

6. YOUR RIGHTS (MODPA Baseline)

Regardless of your geographic location, we provide all clients with the rights established under Maryland law. You have the right to request a copy of all data we hold regarding your business, or request the permanent deletion of that data, at any time.

7. CONTACT

For data requests or privacy inquiries, please contact: support@gocybercompliant.com.

GoCyberCompliant

Products | FAQ | Terms of Service

© 2026 Potomac Cyber Governance, LLC.