GRafP is providing these privacy and security policy statements to make you aware of our practices regarding the ways we collect and secure information.
If you have any questions about our Privacy Policy, please contact:

Privacy Policy

Procedures have been employed by GRafP Technologies to safeguard the security and integrity of your personal information. We use the information you provide about yourself when requesting information only to provide you with a suitable response. We do not share this information with outside parties. We use return e-mail addresses to answer the e-mail we receive, to handle complaints, to facilitate ongoing communication with our customers, and to conduct occasional marketing and technical surveys. Such addresses are not used for any other purpose and are not shared with outside parties. We never use or share the personally identifiable information provided to us online in ways unrelated to the ones described above. We will never sell or rent your personal information.

Our web site is not set up to track, collect or distribute information not entered by clients. Our site logs do generate certain kinds of non-identifying site usage data, such as the number of hits and visits to our sites for marketing purposes. This information is used for internal purposes only by technical support staff to provide better services to our clients and may also be provided to others, but the statistics contain no personal information and cannot be used to gather such information.

Security Policy

IT Risk Rating services from GRafP Technologies are delivered in a way that customer information is not shared with any third party unless formally agreed to by the customer. Upon request, nominal data collected on GRafP Technologies' servers will be destroyed on completion of an IT Risk Rating. Data used to compile statistics is sanitized and is used only for research and reporting purposes; it is not made public in any way that would compromise the confidentiality of the source.

A nondisclosure agreement may be completed by a customer who would wish to formalize the confidentiality of the data collected by GRafP Technologies as part of an IT Risk Rating. The absence of such an agreement does not mean that customers' data would be treated with any less care or concern for confidentiality.