Privacy Policy

Last Updated: March 13, 2026

1. Introduction

OTSecPro LLC ("OTSecPro," "we," "us," or "our") is an operational technology (OT) cybersecurity consulting company headquartered in Tampa, Florida. We specialize in protecting critical industrial infrastructure, including OT and industrial control systems (ICS), from cybersecurity threats.

This Privacy Policy describes how OTSecPro LLC collects, uses, stores, shares, and protects personal information obtained through our website at otsecpro.com (the "Website"), as well as through our business operations, consulting engagements, and communications. By accessing or using our Website, engaging our services, or otherwise providing personal information to us, you acknowledge that you have read and understood this Privacy Policy.

We are committed to safeguarding your privacy with the same rigor we apply to protecting our clients' critical infrastructure. If you have questions or concerns about this Privacy Policy or our data practices, please contact us using the information provided in the "Contact Us" section below.

2. Information We Collect

2.1 Information You Provide Directly

We collect personal information that you voluntarily provide to us when you interact with our Website or engage with our services. This may include:

• Contact Information: Your name, email address, phone number, and mailing address.
• Company Information: Your employer or company name, job title, and professional role.
• Inquiry Details: Information you include in contact form submissions, email correspondence, or service requests, such as the nature of your cybersecurity needs and project details.
• Engagement Records: Information generated through the course of a consulting engagement, including contractual details and project-related communications.
• Event and Resource Information: Information you provide when registering for webinars, downloading resources, or subscribing to newsletters.

2.2 Information Collected Automatically

When you visit our Website, we may automatically collect certain technical and usage information, including:

• Device and Browser Data: Your IP address, browser type and version, operating system, device type, and screen resolution.
• Usage Data: Pages visited, time spent on each page, referring URLs, click patterns, and navigation paths through the Website.
• Cookies and Similar Technologies: Data collected through cookies, web beacons, and similar tracking technologies. For full details, please see our Cookie Policy.
• Analytics Data: Aggregated and anonymized data collected through third-party analytics platforms to help us understand how visitors use our Website.
• Log Data: Server logs that record requests made to our Website, including timestamps, requested URLs, and response codes.

2.3 Information from Third Parties

We may receive personal information about you from third-party sources, such as business referral partners, industry event organizers, publicly available professional databases, or social media platforms where you have made your information publicly accessible.

3. How We Use Your Information

OTSecPro LLC uses the personal information we collect for the following purposes:

• Service Delivery: To respond to your inquiries, provide proposals, deliver our OT cybersecurity consulting services, and manage our client relationships.
• Communication: To correspond with you regarding your requests, projects, or questions, and to provide updates about our services that may be relevant to your organization.
• Website Improvement: To analyze usage patterns, diagnose technical issues, and improve the functionality, content, and user experience of our Website.
• Marketing (With Consent): To send you newsletters, industry insights, event invitations, and information about our services, where you have opted in to receive such communications. You may unsubscribe at any time.
• Security and Fraud Prevention: To protect our Website, systems, and users from unauthorized access, misuse, or other security threats.
• Legal Compliance: To comply with applicable laws, regulations, legal processes, or enforceable government requests.
• Business Operations: To manage our internal business operations, including accounting, auditing, and administrative functions.

4. Legal Basis for Processing

We process your personal information based on one or more of the following legal grounds:

• Consent: Where you have given us clear, affirmative consent to process your personal information for a specific purpose, such as subscribing to our newsletter or opting in to marketing communications.
• Contract Performance: Where processing is necessary to fulfill a contract with you or your organization, or to take pre-contractual steps at your request, such as preparing a proposal for consulting services.
• Legitimate Interests: Where processing is necessary for our legitimate business interests, provided those interests are not overridden by your rights and freedoms. Our legitimate interests include improving our services, understanding how our Website is used, and maintaining the security of our systems.
• Legal Obligation: Where processing is required to comply with a legal obligation to which OTSecPro LLC is subject, such as tax reporting, regulatory requirements, or responding to lawful requests from public authorities.

5. Information Sharing and Disclosure

OTSecPro LLC does not sell, rent, or trade your personal information to third parties. We may share your information only in the following limited circumstances:

• Service Providers: We may share personal information with trusted third-party service providers who assist us in operating our Website, conducting our business, or providing services to you. These providers are contractually obligated to use your information only for the purposes we specify and to maintain appropriate security measures.
• Professional Advisors: We may disclose information to our attorneys, accountants, insurers, and other professional advisors as necessary for them to provide their services to us.
• Legal Requirements: We may disclose your information if required to do so by law, regulation, legal process, or governmental request, or if we believe in good faith that such disclosure is necessary to protect our rights, your safety, or the safety of others, investigate fraud, or respond to a government request.
• Business Transfers: In the event of a merger, acquisition, reorganization, sale of assets, or bankruptcy, your personal information may be transferred as part of that transaction. We will notify you of any such change in ownership or control of your personal information.
• With Your Consent: We may share your information with third parties when we have your explicit consent to do so.

6. Data Security

As an OT cybersecurity consulting company, we understand the critical importance of data protection. OTSecPro LLC implements technical, administrative, and physical security measures designed to protect your personal information from unauthorized access, disclosure, alteration, destruction, or misuse. These measures include:

• Encryption of data in transit using TLS/SSL protocols and encryption of sensitive data at rest.
• Access controls that restrict personal information to authorized personnel who require it for legitimate business purposes.
• Regular security assessments and monitoring of our systems and infrastructure.
• Employee training on data protection practices and security awareness.
• Secure disposal procedures for personal information that is no longer needed.
• Incident response procedures to promptly address any suspected data breach.

While we take reasonable steps to protect your personal information, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security, but we are committed to maintaining safeguards consistent with industry best practices and applicable legal requirements.

7. Data Retention

OTSecPro LLC retains personal information only for as long as necessary to fulfill the purposes for which it was collected, including satisfying legal, accounting, or reporting requirements. The retention period for specific categories of data depends on the nature of the information and the purpose for its collection:

• Contact Inquiries: Information submitted through our contact forms is retained for up to two (2) years after our last interaction, unless a consulting engagement is established.
• Client Records: Information related to consulting engagements is retained for the duration of the business relationship and for a period of seven (7) years thereafter, or as required by applicable law.
• Marketing Data: Information used for marketing purposes is retained until you withdraw your consent or opt out of communications.
• Website Analytics: Automatically collected data is typically retained in an aggregated and anonymized form and may be kept indefinitely for analytical purposes.

When personal information is no longer required, we will securely delete or anonymize it in accordance with our data retention and disposal procedures.

8. Your Rights

Depending on your location and applicable law, you may have certain rights regarding your personal information. These rights may include:

• Right of Access: You may request a copy of the personal information we hold about you.
• Right to Correction: You may request that we correct inaccurate or incomplete personal information.
• Right to Deletion: You may request that we delete your personal information, subject to certain legal exceptions.
• Right to Opt Out: You may opt out of receiving marketing communications from us at any time by following the unsubscribe instructions in our emails or by contacting us directly.
• Right to Data Portability: Where technically feasible, you may request a copy of your personal information in a structured, commonly used, and machine-readable format.
• Right to Restrict Processing: You may request that we limit the processing of your personal information under certain circumstances.
• Right to Object: You may object to our processing of your personal information where we rely on legitimate interests as our legal basis.

To exercise any of these rights, please contact us at info@otsecpro.com. We will respond to your request within a reasonable timeframe and in accordance with applicable law. We may need to verify your identity before processing your request.

9. California Privacy Rights

If you are a California resident, you may have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA). These rights include:

• Right to Know: You have the right to request that we disclose the categories and specific pieces of personal information we have collected about you, the categories of sources from which we collected the information, the business or commercial purpose for collecting the information, and the categories of third parties with whom we share the information.
• Right to Delete: You have the right to request that we delete the personal information we have collected about you, subject to certain exceptions.
• Right to Correct: You have the right to request that we correct inaccurate personal information we maintain about you.
• Right to Opt Out of Sale or Sharing: OTSecPro LLC does not sell your personal information and does not share your personal information for cross-context behavioral advertising purposes.
• Right to Non-Discrimination: We will not discriminate against you for exercising any of your privacy rights under the CCPA/CPRA.

To submit a request under the CCPA/CPRA, please contact us at info@otsecpro.com. You may also designate an authorized agent to make a request on your behalf, provided the agent can verify their authorization.

10. Cookies and Tracking Technologies

Our Website uses cookies and similar tracking technologies to enhance your browsing experience, analyze Website traffic, and understand how visitors interact with our content. Cookies are small text files placed on your device when you visit our Website.

We use the following types of cookies:

• Strictly Necessary Cookies: Essential for the Website to function properly. These cannot be disabled.
• Analytics Cookies: Help us understand how visitors use our Website by collecting aggregated, anonymized usage data.
• Functional Cookies: Enable enhanced functionality and personalization, such as remembering your preferences.
• Marketing Cookies: Used to deliver relevant content and measure the effectiveness of our marketing efforts.

You can manage your cookie preferences through your browser settings. Most browsers allow you to block or delete cookies. However, disabling certain cookies may affect the functionality of our Website. For comprehensive information about the cookies we use and how to manage them, please refer to our Cookie Policy.

11. Third-Party Links

Our Website may contain links to third-party websites, services, or resources that are not owned or controlled by OTSecPro LLC. This Privacy Policy applies solely to information collected through our Website and services. We are not responsible for the privacy practices or content of third-party websites. We encourage you to review the privacy policies of any third-party websites you visit before providing them with personal information.

12. Children's Privacy

Our Website and services are directed toward businesses and professionals in the industrial and critical infrastructure sectors. We do not knowingly collect, solicit, or maintain personal information from anyone under the age of thirteen (13). If we learn that we have collected personal information from a child under 13, we will take prompt steps to delete that information. If you believe that a child under 13 has provided us with personal information, please contact us at info@otsecpro.com so that we can take appropriate action.

13. International Data Transfers

OTSecPro LLC is based in the United States. If you access our Website or provide personal information to us from outside the United States, please be aware that your information may be transferred to, stored in, and processed in the United States or other jurisdictions where our service providers operate. Data protection laws in these jurisdictions may differ from those in your country of residence.

By providing your personal information to us, you consent to such transfers. Where required by applicable law, we will implement appropriate safeguards to ensure that your personal information receives an adequate level of protection, regardless of where it is processed.

14. Changes to This Privacy Policy

OTSecPro LLC reserves the right to update or modify this Privacy Policy at any time to reflect changes in our data practices, legal requirements, or business operations. When we make material changes to this Privacy Policy, we will update the "Last Updated" date at the top of this page and, where appropriate, provide additional notice such as posting a prominent announcement on our Website.

We encourage you to review this Privacy Policy periodically to stay informed about how we collect, use, and protect your personal information. Your continued use of our Website or services after any changes to this Privacy Policy constitutes your acceptance of the updated terms.

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

OTSecPro LLC
Tampa, Florida
Email: info@otsecpro.com

We will make every effort to respond to your inquiry in a timely manner.