F

Privacy Policy

Last updated: March 9, 2026

Forti365 ("Company," "we," "us," or "our") operates the website forti365.com (the "Website"). This Privacy Policy describes how we collect, use, store, disclose, and protect your personal information when you visit our Website, use our services, or otherwise interact with us. By accessing our Website or engaging our services, you consent to the practices described in this Privacy Policy.

1. Information We Collect

1.1 Information You Provide Directly

We collect personal information that you voluntarily provide to us, including:

  • Name, email address, and company name when you submit a contact form, book a consultation, or download a resource
  • Details about your AWS environment that you share during the booking or consultation process
  • Email address when you subscribe to our newsletter or request access to guides and checklists
  • Any other information you choose to provide in communications with us

1.2 Information Collected Automatically

When you visit our Website, certain information may be collected automatically by our hosting infrastructure, including:

  • IP address and approximate geographic location
  • Browser type, version, and operating system
  • Pages visited, time spent on pages, and referring URLs
  • Device type and screen resolution

This information is collected through standard web server logs maintained by our hosting provider (Amazon CloudFront and Amazon S3) and is used solely for website performance monitoring and security purposes.

1.3 Information We Do Not Collect

We do not collect payment card information, Social Security numbers, or other sensitive financial information through our Website. Payment processing, if applicable, is handled through separate, secure channels discussed during the consultation process.

2. How We Use Your Information

We use the personal information we collect for the following purposes:

  • To respond to your inquiries, schedule consultations, and communicate with you about our services
  • To deliver requested resources such as guides, checklists, and other downloadable materials
  • To send periodic emails regarding AWS tips, updates, and service offerings if you have opted into our newsletter
  • To perform and deliver our consulting services as agreed upon
  • To improve our Website, services, and user experience
  • To detect, prevent, and address technical issues, fraud, or security concerns
  • To comply with applicable legal obligations

3. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or other jurisdiction that requires a legal basis for processing personal data, we process your information based on:

  • Your consent (e.g., when you subscribe to our newsletter or submit a form)
  • Performance of a contract (e.g., when you engage our consulting services)
  • Our legitimate business interests (e.g., improving our services, website analytics, and fraud prevention), provided these interests do not override your fundamental rights
  • Compliance with legal obligations

4. Data Sharing and Disclosure

We do not sell, rent, trade, or otherwise share your personal information with third parties for their marketing purposes. We may share your information only in the following limited circumstances:

  • With service providers who assist us in operating our Website and delivering our services (e.g., Amazon Web Services for hosting and data storage), subject to confidentiality obligations
  • If required by law, regulation, subpoena, court order, or other valid legal process
  • To protect the rights, property, or safety of Forti365, our clients, or the public
  • In connection with a merger, acquisition, or sale of all or a portion of our business, in which case you will be notified of any change in ownership or use of your personal information

5. Data Storage and Security

Your personal data is stored securely using Amazon Web Services (AWS) infrastructure located in the United States, including Amazon DynamoDB for form submissions and lead data. We implement industry-standard technical and organizational security measures to protect your information, including:

  • Encryption in transit using TLS/HTTPS for all data transmitted between your browser and our servers
  • Encryption at rest for stored data
  • Access controls limiting data access to authorized personnel only
  • Regular review of our data collection, storage, and processing practices

While we take reasonable measures to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security of your data.

6. Data Retention

We retain your personal information only for as long as reasonably necessary to fulfill the purposes for which it was collected, including to satisfy any legal, accounting, or reporting requirements. Specifically:

  • Contact form submissions and lead data: retained for up to 24 months from the date of submission
  • Newsletter subscriber information: retained until you unsubscribe or request deletion
  • Client engagement data: retained for up to 36 months following completion of services, or longer if required by law
  • Website server logs: retained for up to 90 days

Upon expiration of the applicable retention period, or upon your valid request, we will securely delete or anonymize your personal information.

7. Cookies and Tracking Technologies

Our Website uses minimal cookies that are necessary for basic website functionality. We do not use third-party advertising cookies, tracking pixels, or behavioral analytics tools. No personal data is stored in cookies. Our Website does not respond to "Do Not Track" browser signals, as we do not engage in cross-site tracking.

8. Your Rights and Choices

Depending on your jurisdiction, you may have the following rights regarding your personal information:

  • Right of Access: Request a copy of the personal data we hold about you
  • Right to Rectification: Request correction of inaccurate or incomplete personal data
  • Right to Erasure: Request deletion of your personal data, subject to certain legal exceptions
  • Right to Restrict Processing: Request that we limit how we use your data
  • Right to Data Portability: Request a copy of your data in a structured, machine-readable format
  • Right to Object: Object to our processing of your personal data based on legitimate interests
  • Right to Withdraw Consent: Withdraw your consent at any time where processing is based on consent
  • Right to Opt Out of Marketing: Unsubscribe from our newsletter at any time using the unsubscribe link in any email

To exercise any of these rights, please contact us through our contact page. We will respond to your request within 30 days, or within the timeframe required by applicable law.

9. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), including the right to know what personal information we collect, the right to request deletion, and the right to opt out of the sale of personal information. We do not sell your personal information. To exercise your California privacy rights, please contact us through our contact page.

10. International Data Transfers

Your personal information may be transferred to and processed in the United States, where our servers and service providers are located. If you are accessing our Website from outside the United States, please be aware that your information may be transferred to, stored, and processed in a jurisdiction where data protection laws may differ from those in your country of residence. By using our Website or providing your information, you consent to such transfers.

11. Children's Privacy

Our Website and services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18, we will take steps to promptly delete such information. If you believe we have collected information from a child, please contact us immediately.

12. Third-Party Links

Our Website may contain links to third-party websites or services. We are not responsible for the privacy practices or content of these third-party sites. We encourage you to review the privacy policies of any third-party websites you visit.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. Any material changes will be posted on this page with an updated revision date. We encourage you to review this Privacy Policy periodically. Your continued use of our Website after any changes constitutes your acceptance of the revised policy.

14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us through our contact page.