Artemis announces $70M in funding.

Read more
Book a Demo

Privacy Policy

1. Introduction

Artemis Global Technologies, Inc. (“Artemis,” “we,” “us,” or “our”) is an AI-native cybersecurity SaaS company that helps organizations detect, investigate, and respond to security threats across their digital environments.

We understand that you are aware of and care about your own personal privacy interests, and we take that seriously. This Privacy Statement describes Artemis’s policies and practices regarding its collection and use of your personal data, and sets forth your privacy rights. We recognize that information privacy is an ongoing responsibility, and so we will from time to time update this Privacy Statement as we undertake new personal data practices or adopt new privacy policies. The most current version of this Privacy Statement will always be posted on our website (artemissecurity.com). We encourage you to visit our website regularly to stay informed of any changes.

Data Controller vs. Processor. We act as the data controller for Personal Data of our website visitors, business contacts, and job candidates. When we process data on behalf of our Customers through the Artemis cybersecurity platform (the “Platform” and “Customer Data”, respectively), we act as a data processor. When we act as the data controller, this Privacy Statement governs how that data is handled. The processing of Customer Data is governed by our applicable agreement with the Customer (“Customer Agreement”) and/or applicable Data Processing Addendum, not this Privacy Statement.

2. Data Protection Officer

Artemis is headquartered in New York, in the United States. Artemis has appointed an internal data protection officer for you to contact if you have any questions or concerns about Artemis’s personal data policies or practices. If you would like to exercise your privacy rights, please direct your query to Artemis’s data protection officer. Artemis’s data protection officer’s name and contact information are as follows:

Edward Vaisman
Founding Builder and Compliance Manager
Artemis Global Technologies, Inc.
New York, NY
contact@artemissecurity.com

3. How We Collect and Use (Process) Your Personal Information

Artemis collects personal information about its website visitors, customers, business contacts, and job candidates. This information generally includes:

  • Name
  • Job title
  • Employer/company name
  • Work address
  • Work email
  • Work phone number
  • Account credentials (passwords are stored in hashed form only)

We use this information to provide prospects and customers with services, manage accounts, provide customer support, and communicate about our products and offerings. We also use this information to detect and prevent fraudulent or illegal activity, or any other activity that may jeopardize the integrity of our website or services, and to investigate violations and enforce our policies. Please note that if you choose not to provide certain personal information or withdraw consent for its processing, we may be unable to provide you with some or all of our services, including access to the Platform.

We do not sell personal information to anyone and only share it with third parties who are facilitating the delivery of our services.

From time to time, Artemis receives personal information about individuals from third parties. Typically, information collected from third parties will include further details on your employer or industry. We may also collect your personal data from a third-party website (e.g., LinkedIn) or from business intelligence and data enrichment providers. Where we receive personal data from third-party sources, we rely on the third party’s confirmation that the data was collected in accordance with applicable law and may be disclosed to us for the purposes described in this Privacy Statement.

4. Use of the Artemis Website

As is true of most other websites, Artemis’s website (artemissecurity.com) collects certain information automatically and stores it in log files. The information may include internet protocol (IP) addresses, the region or general location where your computer or device is accessing the internet, browser type, operating system, and other usage information about the use of Artemis’s website, including a history of the pages you view. We use this information to help us design our site to better suit our users’ needs. We may also use your IP address to help diagnose problems with our server and to administer our website, analyze trends, track visitor movements, and gather broad demographic information that assists us in identifying visitor preferences.

Artemis has a legitimate interest in understanding how customers and potential customers use its website. This assists Artemis with providing more relevant products and services, with communicating value to our partners and customers, and with providing appropriate staffing to meet customer needs. We have assessed that this interest does not override the rights and freedoms of our website visitors, given that we process only non-sensitive browsing and device data, use it solely for service improvement, and provide an opt-out via cookie settings.

5. Cookies and Tracking Technologies

Artemis uses cookies and similar tracking technologies on its website. The types of cookies we use include:

  • Strictly Necessary Cookies: Essential for the operation of the Website and Platform, enabling core functionality such as authentication and security. These cannot be disabled.
  • Functionality Cookies: Allow us to remember your preferences (e.g., language, region) and provide enhanced features.
  • Analytics and Performance Cookies: Help us understand how visitors interact with our Website by collecting and reporting usage information. We may use third-party analytics tools such as Google Analytics.
  • Advertising Cookies: Used to deliver relevant advertisements and measure the effectiveness of our advertising campaigns.

You can manage your cookie preferences through your browser settings or through our cookie consent banner. We honor Global Privacy Control (GPC) signals. Where a valid GPC signal is detected, we will treat it as a request to opt out of the sale or sharing of personal information under the CCPA and will disable analytics and advertising cookies accordingly. For users in the EEA and UK, we will obtain your prior consent before placing any non-essential cookies (including analytics and advertising cookies) on your device, in accordance with the ePrivacy Directive (2002/58/EC) and the UK Privacy and Electronic Communications Regulations (PECR). Please note that disabling certain cookies may affect the functionality of our services.

6. Use of the Artemis Services

When you use the Platform, we may collect and process additional categories of data to deliver the services. The processing of Customer Data through the Platform is governed by our Customer Agreement and/or Data Processing Addendum. This section provides a general overview of the types of data involved:

  • Security Telemetry and Log Data: Metadata, configurations, security events, alerts, and log records ingested or analyzed through the Platform on behalf of Customers.
  • Cloud Environment Configuration: Metadata about cloud infrastructure settings, IAM roles, access permissions, and resource configurations. We collect configuration metadata — not the underlying data stored in your cloud environment.
  • User and Access Metadata: User roles, access permissions, associated email addresses, ownership tags, and account configurations as needed to deliver security analysis.
  • Integration Credentials: API tokens and OAuth credentials required to connect the Platform with your third-party tools. These are stored encrypted at rest using AES-256.

Customer Data processed through the Platform is used solely to deliver the services to the applicable Customer. We do not use Customer Data for marketing, advertising, or any purpose unrelated to service delivery without explicit authorization. For detailed terms governing Customer Data processing, including security obligations, sub-processor management, and data deletion, please refer to your agreement with Artemis.

7. Use of Artificial Intelligence

Artemis is an AI-native cybersecurity platform. We use artificial intelligence and machine learning technologies to enhance our services, including threat detection, event correlation, alert triage, and generation of actionable security insights.

Our approach to AI and data:

  • No Training on Customer Data: We do not use Customer Data to train general-purpose AI or machine learning models. Customer Data is processed solely for delivering the services to the applicable Customer. This commitment does not prohibit Artemis from using aggregated, de-identified data that cannot reasonably be re-identified to improve the services generally. Customers may opt out of inclusion in such aggregated analyses by contacting us at contact@artemissecurity.com.
  • Third-Party AI Providers: Where we use third-party AI providers, we maintain strict contractual safeguards including zero data retention agreements, data isolation, and prohibitions on using Customer Data for model training.
  • Data Isolation: AI processing for each Customer is segregated at the application layer using unique tenant identifiers and access controls within our AWS infrastructure. One Customer’s data is never used to generate insights for another Customer unless explicitly authorized for anonymized, aggregate benchmarking purposes.
  • Human Oversight: AI-generated outputs (e.g., alert triage, threat correlation) are designed to augment human analysts, not replace them. Customers retain full control over how AI-assisted recommendations are actioned.

The specific obligations governing Artemis’s use of AI in connection with Customer Data are set forth in the applicable Customer Agreement. In the event of any conflict between this Privacy Statement and a Customer Agreement, the Customer Agreement shall control.

8. When and How We Share Information with Third Parties

The personal information Artemis collects from you is stored in one or more databases hosted by third parties located in the United States. These third parties do not use or have access to your personal information for any purpose other than cloud storage and retrieval.

A list of our third-party sub-processors can be found at: https://trust.goartemis.ai/subprocessors. We will provide Customers with at least 30 days’ prior notice of any new sub-processor, along with an opportunity to object in accordance with the applicable Customer agreement.

We do not otherwise reveal your personal data to non-Artemis persons or businesses for their independent use unless:

  • You request or authorize it;
  • The information is provided to comply with the law (for example, compelled by law enforcement to comply with a search warrant, subpoena, or court order), enforce an agreement we have with you, or to protect our rights, property or safety, or the rights, property or safety of our employees or others, including for the purpose of enforcing our intellectual property or other legal rights;
  • The information is provided to our agents, vendors, or service providers who perform functions on our behalf;
  • It is required in connection with a merger, acquisition, investment, reorganization, sale of assets, or bankruptcy proceeding;
  • To address emergencies or acts of God; or
  • To address disputes, claims, or to persons demonstrating legal authority to act on your behalf.

We may also gather aggregated data about our services and website visitors and disclose the results of such aggregated (but not personally identifiable) information to our partners, service providers, and/or other third parties for analytics or benchmarking purposes.

The Artemis website may connect with third-party services such as LinkedIn, Twitter/X, and others. If you choose to share information from the Artemis website through these services, you should review the privacy policy of that service. If you are a member of a third-party service, the aforementioned connections may allow that service to connect your visit to our site to your personal data.

9. Transferring Personal Data to the U.S.

Artemis is headquartered in the United States, and our services are hosted on AWS infrastructure in the U.S. East region. Information we collect about you will be processed in the United States. If you are located outside of the United States, please be aware that any information you provide to us will be transferred to and processed in the United States, which may have data protection laws that differ from those in your jurisdiction.

Where we transfer Personal Data from the European Economic Area (EEA), United Kingdom (UK), or Switzerland to the United States, we implement appropriate safeguards to ensure your data receives an adequate level of protection. We have conducted Transfer Impact Assessments (TIAs) in accordance with European Data Protection Board guidance to evaluate risks associated with US transfers. These safeguards include:

  • Standard Contractual Clauses (SCCs) approved by the European Commission (Module 2: Controller to Processor, or Module 1: Controller to Controller, as applicable) and/or the UK International Data Transfer Addendum;
  • Data processing agreements with our vendors and sub-processors that include equivalent contractual protections;
  • Technical measures including encryption of data in transit (TLS 1.2/1.3) and at rest (AES-256), role-based access controls, and continuous security monitoring.
  • Ongoing monitoring of US surveillance laws and readiness to implement additional safeguards if legal frameworks change.

We are committed to ensuring that international transfers of Personal Data are conducted in compliance with applicable data protection laws. We evaluate the legal frameworks of any country to which Personal Data may be transferred and implement supplementary measures where necessary.

For more information about our international transfer practices, or to request a copy of the relevant Standard Contractual Clauses, please contact us at contact@artemissecurity.com.

10. Data Subject Rights

The European Union’s General Data Protection Regulation (GDPR) and other countries’ privacy laws provide certain rights for data subjects. Data Subject rights under GDPR include the following:

  • Right to be informed
  • Right of access
  • Right to rectification
  • Right to erasure
  • Right to restrict processing
  • Right of data portability
  • Right to object
  • Rights related to automated decision making including profiling

This Privacy Statement is intended to provide you with information about what personal data Artemis collects about you and how it is used.

If you wish to confirm that Artemis is processing your personal data, or to have access to the personal data Artemis may have about you, please contact us.

You may also request information about: the purpose of the processing; the categories of personal data concerned; who else outside Artemis might have received the data from Artemis; what the source of the information was (if you didn’t provide it directly to Artemis); and how long it will be stored. You have a right to correct (rectify) the record of your personal data maintained by Artemis if it is inaccurate. You may request that Artemis erase that data or cease processing it, subject to certain exceptions. You may also request that Artemis cease using your data for direct marketing purposes. In many countries, you have a right to lodge a complaint with the appropriate data protection authority if you have concerns about how Artemis processes your personal data. When technically feasible, Artemis will — at your request — provide your personal data to you.

Reasonable access to your personal data will be provided at no cost within 30 days of a verified request. If access cannot be provided within this time frame, Artemis will provide you with a date when the information will be provided. If for some reason access is denied, Artemis will provide an explanation as to why access has been denied.

For questions or complaints concerning the processing of your personal data, you can email us at contact@artemissecurity.com. Alternatively, if you are located in the European Union, you can also have recourse to the European Data Protection Supervisor or with your nation’s data protection authority.

11. California Privacy Rights (CCPA/CPRA)

If you are a California resident, the California Consumer Privacy Act (“CCPA”), as amended by the California Privacy Rights Act (“CPRA”), provides you with additional rights regarding your Personal Information:

  • Right to Know: You have the right to request information about the categories and specific pieces of Personal Information we have collected, the sources of collection, the business purposes for collection, and the categories of third parties with whom we share it.
  • Right to Delete: You may request deletion of your Personal Information, subject to certain legal exceptions.
  • Right to Correct: You may request correction of inaccurate Personal Information.
  • Right to Opt-Out of Sale or Sharing: We do not sell your Personal Information. We do not share Personal Information for cross-context behavioral advertising purposes.
  • Right to Limit Use of Sensitive Personal Information: Artemis does not collect or process sensitive Personal Information as defined under the CPRA (including precise geolocation, racial or ethnic origin, religious beliefs, health data, or similar categories) in the ordinary course of providing services. Should this change, you will have the right to limit the use of such information to purposes authorized by the CCPA.
  • Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.

To submit a request under the CCPA, please contact us at contact@artemissecurity.com. We will verify your identity before processing your request and will respond within 45 days, which may be extended by an additional 45 days where reasonably necessary. You may designate an authorized agent to submit a request on your behalf.

12. Security of Your Information

Artemis implements commercially reasonable technical, administrative, and organizational measures designed to protect personal data against unauthorized access, alteration, disclosure, or destruction. Our security program includes:

  • Encryption of data in transit (TLS 1.2/1.3) and at rest (AES-256)
  • Role-based access controls and the principle of least privilege
  • Multi-factor authentication for internal systems and customer accounts
  • Regular vulnerability scanning and third-party penetration testing
  • SOC 2 Type II certified security controls
  • Employee security awareness training
  • Incident response procedures and continuous security monitoring
  • Infrastructure hosted on AWS with VPC isolation and IAM authentication

No method of transmission over the Internet or electronic storage is completely secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee absolute security. In the event of a security incident involving your personal data, we will notify affected individuals and relevant authorities as required by applicable law.

For more details on our security program, please visit our Trust Center at https://trust.goartemis.ai.

13. Data Storage and Retention

Your personal data is stored by Artemis on its servers, and on the servers of the cloud-based database management services Artemis engages, located in the United States (AWS US-East region). Artemis retains data according to the following schedule: (i) Customer Data for the duration of the Customer relationship and 90 days post-termination unless otherwise specified in the Customer Agreement; (ii) service and support data for three (3) years after last interaction; (iii) prospect and marketing data for three (3) years after last contact or until opt-out is requested; and (iv) job applicant data for two (2) years after the conclusion of the recruitment process, except where longer retention is required by law or agreed upon by the applicant. All personal data that Artemis controls may be deleted upon verified request from Data Subjects or their authorized agents, subject to legal retention obligations and legitimate business needs (e.g., financial recordkeeping, litigation holds).

Customer Data stored in the Platform is available for export upon request. Customers may request a data export by contacting us at contact@artemissecurity.com prior to the termination of their agreement with Artemis. Upon termination, Customer Data will be deleted in accordance with our data retention policies and applicable contractual obligations.

For more information on where and how long your personal data is stored, and for more information on your rights of erasure and portability, please contact us at: contact@artemissecurity.com

14. Job Applicant Data

Where you apply for a position at Artemis, we will collect and process personal data you provide in your application, including your name, contact details, employment history, educational background, references, and any other information included in your CV or resume. We may also collect information from recruitment platforms (e.g., LinkedIn, Greenhouse) or referees, where applicable.

Legal Basis: We process applicant data on the basis of (i) our legitimate interest in evaluating candidates and managing our recruitment process; (ii) for the performance of pre-contractual steps at your request; and (iii) where necessary, to comply with legal obligations (e.g., employment verification, equal opportunity monitoring where required by law).

Retention: Applicant data for unsuccessful candidates is retained for two (2) years after the conclusion of the recruitment process, unless you request earlier deletion or we are required to retain it longer by applicable law. Data for successful candidates becomes part of employment records and is governed by our employee data retention policies.

Your Rights: Job applicants have the same data subject rights described in Section 10, including the right to access, correct, or request deletion of your application data. To exercise these rights, please contact us at contact@artemissecurity.com.

15. Children’s Data

Our services are not directed to children. We do not knowingly collect, solicit, or receive personal information from children under 16 (or such different age as required by applicable law). If we learn that we have collected personal data from a child below the applicable age threshold, we will take steps to promptly delete that information. If you believe we have inadvertently collected data from a child, please contact us immediately.

16. Questions, Concerns, or Complaints

If you have questions, concerns, complaints, or would like to exercise your rights, please contact us at:

Artemis Global Technologies, Inc.
Attn: Data Protection Officer
New York, NY

Contact: contact@artemissecurity.com
Website: https://artemissecurity.com
Trust Center: https://trust.goartemis.ai

 

© 2026 Artemis Global Technologies, Inc. All rights reserved

Table of contents