Privacy

The data controller responsible for this website is Securesil. For questions about this policy or to exercise your privacy rights, contact hello@securesil.com.

This policy covers the Securesil marketing website, careers applications submitted through it, and the email enquiries you send to us. It does not cover paid engagements: any AI security assessment, red team, or secure-delivery program is governed by a separate engagement letter or Master Services Agreement and, where personal data is processed on your behalf, a Data Processing Agreement. Where you have signed a non-disclosure agreement (NDA) with Securesil, that NDA governs the technical and commercial information you share with us.

This website is hosted by Vercel, Inc. When you visit, Vercel collects data necessary to run the site and protect its platform, including:

• Information about your browser, network, and device
• Links you clicked to reach this site
• Pages you visit
• Your IP address

Vercel uses this data to operate the website and improve its services. Data is analysed in de-personalised form where possible. Legal basis (UK/EU): Legitimate interest (operating and securing the website). Retention:As described in Vercel's policy. See Vercel's privacy policy.

Functional and required

This site uses cookies set by Vercel that are required for the site to function and to be served securely. Legitimate interest (essential operation). See cookies Vercel uses.

Analytics, advertising, and tracking

This site does not currently use analytics, advertising, or other non-essential cookies, and does not embed third-party trackers. If we add analytics in the future, this policy will be updated and (where required) consent will be requested before any non-essential cookies are set.

The contact options on this site are mailto links that open your email client (for example, hello@securesil.com). When you email us, we typically receive:

• Your name and email address
• Your role and organisation (if you choose to share them)
• Any context you include, which may describe your AI systems, vendors, architectures, security posture, or commercial plans

We treat the contents of these enquiries as confidential by default. We use them only to respond to you, prepare proposals or scoping notes, and discuss a possible engagement. We do not add you to a marketing list, newsletter, or contact rotation. We do not sell, rent, or share your information for advertising. Legal basis (UK/EU): Legitimate interest (responding to business enquiries) or, where applicable, consent and steps prior to entering a contract.

When you apply for a role on our careers pages, you may complete an application form and submit it on our website. Depending on what you provide, we may receive:

• Contact details (first and last name, email, phone, city, and country or region)
• Employment and education background (student status, recent school and degree, and whether you were previously employed by Securesil)
• The role you applied for and your written answers to application questions
• Portfolio or work sample links and profile links (for example LinkedIn or GitHub)
• Whether you may need UK visa sponsorship
• Your resume, CV, or cover letter when you upload them with your application

Resume autofill in your browser

If you use “Autofill from resume,” your PDF or Word file is read on your device to suggest values for form fields. That parsing happens in your browser. We do not receive your resume file through the website until you submit the completed application form.

How applications are sent

When you submit the form, your answers and uploaded files are sent securely to our careers inbox at careers@securesil.com. We send a confirmation email to the address you provide. Email delivery is handled by our email provider; their terms and privacy policy apply to that delivery.

How we use candidate data

We use application information only to assess your candidacy, communicate with you about the role or other relevant openings, keep records of our recruitment process, and meet legal obligations. We do not sell candidate data or use it for unrelated marketing.

If you tick “I agree” on the application form, you consent to us contacting you about job opportunities for up to two years from the date we receive your application, unless you withdraw consent sooner. Legal basis (UK/EU): Consent (ongoing recruitment contact where you agree) and legitimate interest (evaluating and administering applications). Where applicable, steps prior to entering an employment contract.

Hiring decisions are made by people at Securesil. We do not use solely automated processing on this website that produces legal or similarly significant effects in recruitment.

Confidentiality is core to how a security and trust engineering firm operates. Where you have signed an NDA with Securesil, the technical and commercial information you share is governed by that NDA. Even without a signed NDA, we treat sensitive technical details about your systems, including architecture diagrams, vendor lists, vulnerabilities, model interactions, and incident context, as confidential and access them on a need-to-know basis within Securesil.

Fonts

This site uses the Inter font via Next.js's next/font. Fonts are self-hosted at build time; no request is made to Google when you load a page.

Embedded content

This site does not embed third-party iframes or trackers by default. If embedded content is added later, those providers may collect data when you view or interact with it; we will update this policy and link their privacy terms.

We use the following processors to operate this marketing site. Each processes data in accordance with their privacy policies:

• Vercel: Hosting and platform-level security
• Google Workspace: Deliver careers application and confirmation emails from our company mailbox
• Email providers: Deliver general enquiries you send to us via contact links on this site

Subprocessors used during paid engagements (for example, for collaboration tooling or testing infrastructure) are disclosed in the engagement letter or DPA for that engagement, not on this page.

Data may be transferred to and processed in countries outside your jurisdiction, including the United States, where our service providers (Vercel) operate. Transfers from the UK and EU/EEA are made using appropriate safeguards such as adequacy decisions, standard contractual clauses, or other mechanisms as described in each provider's privacy policy.

Retention periods vary by processing activity:

• When you visit:Per Vercel's policy
• Business enquiries: Retained as needed to respond and for a reasonable follow-up period; if an engagement progresses, retention is governed by the engagement contract
• Job applications: Retained for up to two years from receipt if you consented to recruitment contact, or for a shorter period if you ask us to delete your data sooner. If you are hired, retention of employee records is governed by employment law and separate notices, not this page alone
• Applications we do not hire: We delete or anonymise candidate records when they are no longer needed for recruitment, subject to any legal hold or dispute requirement

Security is what Securesil sells, so the bar we hold ourselves to is the bar we recommend to clients. For this marketing site we:

• Use a reputable hosting provider (Vercel) with platform-level protections including HTTPS by default and DDoS mitigation
• Collect only the data required to operate the site and respond to enquiries
• Keep dependencies current and apply security updates routinely
• Welcome coordinated disclosure of any vulnerability. See the corresponding section in our Terms of Use for how to report issues responsibly

For paid engagements, additional security commitments, including encryption-at-rest for client artefacts, access controls, and incident response, are set out in the engagement letter and any associated DPA.

This site is a B2B marketing site directed at engineering, product, and security professionals. It is not directed at children under 16 (or 13 in the US), and we do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us and we will delete it promptly.

Depending on where you live, you may have rights to access, correct, delete, or restrict processing of your personal data. For example:

• UK / EU / EEA: Rights under the UK GDPR and EU General Data Protection Regulation (e.g. access, rectification, erasure, data portability, objection to processing, restriction). You also have the right to lodge a complaint with your local data protection supervisory authority (e.g. the ICO in the UK, or your national authority in the EU/EEA).
• California: Rights under the CCPA/CPRA (e.g. know what data we collect, delete, correct, opt out of sale or sharing). We do not sell or share your personal information for cross-context behavioural advertising.

To exercise your rights or ask questions about this policy, contact hello@securesil.com. We will respond within the timeframes required by applicable law. For data held by third parties (e.g. Vercel), you may also need to contact them directly or use their privacy tools.

We do not use automated decision-making or profiling on this website that produces legal effects or similarly significantly affects you.

This policy may be updated from time to time. The “Last updated” date at the top will be revised when changes are made. Material changes will be noted; we encourage you to review this page periodically. Your continued use of the site after the effective date of changes indicates your acceptance of the updated policy, except where applicable law requires a different standard (e.g. fresh consent for expanded processing).

This policy is provided for informational purposes and does not constitute legal advice. For your specific situation, consider consulting a qualified legal professional.