JANUS Software Inc., Privacy Policy

Updated: January 7, 2026

At JANUS Software, Inc. (“JANUS,” “we,” “us,” or “our”), we are committed to protecting your privacy and maintaining the trust that forms the foundation of our relationships with clients and website visitors. This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal information when you visit our website (www.JANUSAssociates.com) and use our services.

We will never sell, rent, or share your personal information with third parties for sales, marketing, or other commercial purposes.

Because we are cybersecurity experts, we understand the sensitivity of data and hold ourselves to the highest standards of privacy protection, the same standards we recommend to our clients.

1. Information We Collect

We collect information in two primary categories:

1.1 Information You Provide Voluntarily

When you interact with JANUS, you may voluntarily provide personal information including:

  • Contact Information: Name, email address, phone number, company name, job title, and business address
  • Communication Data: Content of emails, contact form submissions, and inquiries you send to JANUS
  • Service Request Information: Details provided when requesting consultations, assessments, or other services
  • Account Information: Login credentials and user preferences (if you create an account or register for services)
  • Professional Information: Industry details, compliance frameworks, and security challenges you share for assessment purposes

1.2 Information Collected Automatically

When you visit our website, we automatically collect certain technical information:

  • Device Information: Browser type, operating system, device type, and device identifiers
  • Browsing Behavior: Pages visited, duration of visits, referring URL, and navigation patterns
  • Network Information: IP address and approximate geolocation based on IP (city/state level only)
  • Cookies and Tracking Technologies: Session identifiers, preference settings, and analytics data (see Section 6)

Note: Automatically collected information alone does not identify you personally, and collection is not intended to do so unless combined with voluntarily provided information.

1.3 Third-Party Information

We may receive personal information about you from third parties, including:

  • Business Partners and Referral Sources: Companies that refer potential clients to JANUS
  • Public Records and Databases: Publicly available business information used for legitimate business purposes
  • Marketing and Lead Generation Platforms: Data obtained through legitimate channels to enhance service delivery

2. Legal Basis for Processing

We process your personal information based on the following legal foundations:

Processing Activity Legal Basis Purpose
Responding to your inquiries Contract Performance / Consent Provide information you requested
Delivering services and consultations Contract Performance Fulfill your service requests
Marketing communications and updates Legitimate Interests / Consent Inform you of relevant services, promotions, and industry insights
Site security and fraud prevention Legitimate Interests Protect JANUS and user security
Compliance with legal obligations Legal Obligation Comply with law enforcement requests, regulations
Analytics and site improvement Legitimate Interests / Consent Understand user behavior and enhance website functionality

 

We rely on consent for marketing communications and legitimate interests for analytics. We will obtain explicit consent before processing sensitive personal data or conducting high-risk processing activities.

We provide transparency about data practices and offer mechanisms to exercise your consumer rights (see Section 8).

3. How We Use Your Information

JANUS uses collected personal information for the following purposes:

3.1 Primary Service Delivery

  • Responding to inquiries and providing requested information
  • Delivering cybersecurity assessments, compliance audits, and consulting services
  • Facilitating case studies, webinars, and thought leadership content (with your consent)
  • Managing service agreements and billing

3.2 Communications & Marketing

  • Sending periodic email communications about services, webinars, compliance updates, and industry insights
  • Providing security alerts and best practice recommendations relevant to your industry
  • Notifying you of policy changes and service updates
  • Marketing Preference: You may opt out of promotional communications at any time while remaining on our essential communications list

3.3 Website Improvement & Analytics

  • Analyzing website traffic and user behavior to improve functionality and user experience
  • Identifying technical issues and security vulnerabilities
  • Personalizing content recommendations based on your interests
  • Measuring marketing campaign effectiveness

3.4 Security, Compliance & Legal Obligations

  • Detecting, preventing, and addressing fraud, abuse, and security incidents
  • Enforcing this Privacy Policy and other agreements
  • Protecting the rights, property, and safety of JANUS, our users, and the public
  • Complying with applicable laws, regulations, and legal process (CCPA, HIPAA, etc.)

3.5 Aggregated & De-Identified Data

  • Creating anonymized, aggregated insights for industry benchmarking and threat analysis
  • Publishing anonymized case studies and research that do not identify you

4. Data Sharing & Third-Party Processors

JANUS does not sell your personal information. However, we share information with trusted third parties as follows:

4.1 Service Providers & Processors

JANUS uses carefully vetted third-party vendors and data processors to support service delivery:

  • Email Marketing Platform: Manages email communications, lead tracking, and CRM functions under a Data Processing Agreement (DPA) with strict confidentiality obligations
  • Hosting & Infrastructure: Secure hosting and website management with encryption in transit and at rest
  • Cloud Storage & Backup Services: Secure data storage with industry-standard encryption and access controls
  • Analytics Platforms: Website analytics and performance monitoring (with privacy-compliant settings)
  • Business Communication Tools: Secure video conferencing, project management, and collaboration platforms

All third-party processors are contractually obligated to:

  • Use your information only as necessary to perform contracted services
  • Maintain confidentiality and implement appropriate security measures
  • Comply with applicable data protection regulations
  • Not disclose information to unauthorized parties
  • Assist with your data subject rights requests

4.2 Legal & Regulatory Disclosure

JANUS may disclose personal information when required or permitted by law:

  • Law Enforcement: In response to lawful requests from government agencies, court orders, or subpoenas
  • Legal Proceedings: To enforce our terms of service and other agreements
  • Public Safety: To prevent harm, protect the rights and safety of JANUS, our users, or the general public
  • Regulatory Compliance: To comply with industry-specific regulations

4.3 Corporate Transactions

In the event of a merger, acquisition, bankruptcy, or sale of substantially all of JANUS’s assets or business line, your personal information may be transferred as part of that transaction. You will be notified of any such change and any choices you may have regarding your information.

4.4 No Third-Party Marketing

We do not share your information with unaffiliated third parties for their own marketing purposes.

5. Data Retention & Deletion

5.1 Retention Schedule

JANUS retains personal information based on business necessity and legal requirements:

  • Service-Related Data: Retained for the duration of the service engagement plus 7 years for compliance, audit, and legal purposes
  • Contact Information: Retained while you remain an active client or subscriber; 3 years post-relationship termination
  • Analytics Data: Retained for 13 months for website analytics; identifiers are pseudonymized or deleted thereafter
  • Legally Required Data: Retained as long as required by applicable law (tax records: 7 years; regulatory files: varies by requirement)

5.2 Data Deletion Rights

You have the right to request deletion of your personal information, subject to legal and contractual requirements:

  • Right to Erasure (GDPR): You may request deletion when data is no longer necessary for stated purposes
  • Consumer Deletion Rights (CCPA): California residents may request deletion of personal information we collected
  • Limitations: We may retain data if required by law, for legal proceedings, or to fulfill contractual obligations

To request deletion, contact us at info@janusassociates.com with the subject line “Data Deletion Request.”

6. Cookies, Tracking Technologies & Consent

6.1 Cookies & Local Storage

Our website uses cookies and similar tracking technologies to:

  • Session Management: Remember your login status and preferences
  • Analytics: Track website performance and user behavior (Google Analytics with anonymized IP)
  • Marketing: Measure campaign effectiveness and track conversions
  • Security: Detect and prevent fraud and unauthorized access

6.2 Cookie Types

Cookie Type Purpose Consent Required
Essential / Functional Site functionality, security, session management No (legally required to function)
Analytics Understanding user behavior and site performance Yes (opt-in via cookie banner)
Marketing / Advertising Tracking conversions, personalized ads, retargeting Yes (opt-in via cookie banner)
Third-Party Google Analytics, HubSpot Yes (privacy policy terms)

6.3 Cookie Consent & Management

  • First Visit: You will see a cookie consent banner explaining cookie usage
  • Opt-In: You must affirmatively consent to non-essential cookies (analytics, marketing)
  • Opt-Out: You can disable cookies via browser settings
  • Do Not Track: If your browser sends a “Do Not Track” signal, we will respect your preference for marketing cookies

6.4 Third-Party Tracking

Our website may include third-party pixels and tracking from:

  • Google Tag Manager: Google Analytics, Google Search Console (anonymized IP addresses)
  • HubSpot: Lead tracking and marketing analytics

You can opt out of Google Analytics using the Google Analytics Opt-Out Browser Add-on.

7. Data Security & Protection

7.1 Security Measures

JANUS implements robust, industry-standard security controls to protect your personal information:

  • Encryption: All data transmitted to/from our website uses SSL/TLS encryption (HTTPS)
  • Access Controls: Strict role-based access controls limit employee access to personal data
  • Authentication: Multi-factor authentication (MFA) for employee accounts with access to personal data
  • Network Security: Firewalls, intrusion detection/prevention systems, and DDoS protection
  • Regular Audits: Periodic security assessments, penetration testing, and vulnerability scans
  • Incident Response: Documented incident response procedures for breach detection and notification

7.2 Security by Design

  • Minimizing data collection to necessary information only
  • Implementing pseudonymization and anonymization where feasible
  • Enforcing data protection impact assessments (DPIAs) for high-risk processing
  • Maintaining audit trails for compliance and forensic purposes

7.3 Limitations

While JANUS employs rigorous security practices, no security system is 100% foolproof. We cannot guarantee absolute security of information transmitted over the internet. You assume all risk associated with information you voluntarily provide.

8. Your Rights & Consumer Choices

8.1 CCPA Rights (California Residents)

If you are a California resident, you have the following rights under CCPA:

Right Description How to Exercise
Right to Know Know what personal data is collected, used, and shared Email info@janusassociates.com with “CCPA Knowledge Request”
Right to Delete Request deletion of personal information collected Email info@janusassociates.com with “CCPA Deletion Request”
Right to Opt-Out Opt out of the “sale” or “sharing” of personal data JANUS does not sell or share any personal data.
Right to Correct Request correction of inaccurate data Email info@janusassociates.com with corrections
Right to Limit Limit use and disclosure to necessary business purposes Email info@janusassociates.com with “CCPA Limitation Request”

Response Timeframe: We will respond to CCPA requests within 45 days of receipt. We will verify your identity before fulfilling requests.

8.3 Communication Preferences

  • Marketing Emails: Unsubscribe by clicking the “Unsubscribe” link in any promotional email or via your subscription management account preferences
  • Email Notifications: Manage notification settings in your subscription dashboard

8.4 Children’s Privacy

JANUS does not knowingly collect personal information from individuals under 18 years of age. If we become aware that we have collected information from a minor, we will delete it promptly. If you are under 18, please do not provide personal information to JANUS.

9. Third-Party Links & Services

Our website may contain links to third-party websites, social media platforms, and external services. JANUS is not responsible for the privacy practices of third parties. When you click external links, you are subject to that third party’s privacy policy, not this policy.

Before sharing information with third parties, review their privacy policies carefully.

Examples of linked services:

  • Social media platforms
  • Industry resources and compliance frameworks
  • Partner vendor websites
  • Guest blog platforms and content distribution networks

10. Data Retention & Disposal

JANUS retains personal information consistent with business, legal, and regulatory requirements:

  • Active Clients: Throughout the engagement plus 7 years for audit/compliance/legal purposes
  • Prospective Clients: 7 years from last contact
  • Website Visitors (Analytics Data): Pseudonymized after 13 months
  • Legally Required Data: As mandated by applicable law

11. Policy Changes & Updates

JANUS reserves the right to modify this Privacy Policy at any time. Changes become effective immediately upon posting to the website. We will notify you of material changes via email or a prominent notice on our website.

Your continued use of the JANUS website and services constitutes acceptance of the updated Privacy Policy. We encourage you to review this policy regularly for any changes.

12. Data Protection Officer & Privacy Contact

For privacy-related questions, data subject rights requests, or concerns about our privacy practices:

Data Privacy Contact:
Lyle Liberman

Email:
lylel@janusassociates.com

Mailing Address:
JANUS Software, Inc.
Attn: Chief Operating Officer
1200 High Ridge Rd
Stamford, CT 06905

Phone: 203.251.0200

Response Timeframe: We will acknowledge your inquiry within 48 business hours and provide a substantive response within 10 business days.

13. Your Right to Complaint

For California Users (CCPA):
You may file a complaint with the California Attorney General’s office or consumer protection agencies.

14. Compliance Frameworks

JANUS commits to compliance with portions of industry-recognized cybersecurity and privacy frameworks:

  • CCPA (California Consumer Privacy Act) – California state data privacy law
  • HIPAA (Health Insurance Portability and Accountability Act) – Healthcare data confidentiality
  • NIST Cybersecurity Framework – U.S. federal cybersecurity standards
  • ISO 27001/27701 – International information security and privacy standards
  • CIS Controls – Critical security controls framework

Acknowledgment

By accessing and using the JANUS Associates website and services, you acknowledge that you have read, understood, and agree to this Privacy Policy. If you do not agree with these terms, please do not use our website or services.