Current-state privacy boundary

Privacy without pretending the trust center is finished.

Status: This is a current-state product privacy notice for a development-production environment. It is not a final legal privacy policy, certification statement, or external-audit artifact.

What we collect today

UltimateReady's public site may collect request-access form details that a visitor chooses to provide: name, work email, company, role, organization size, reason for interest, optional notes, and submission timestamp. Authenticated product data is tenant-scoped and should be treated as confidential security posture information.

How we use it

Request-access information is used to evaluate cohort fit and respond by email. Product security data is used to provide posture, evidence, activity, findings, and readiness workflows for the authorized tenant.

What we do not claim yet

Do not treat this page as a GDPR, HIPAA, SOC 2, ISO, PCI, DORA, NIS2, SLA, data-processing-addendum, or external-audit claim. Those require separate validated proof artifacts before public launch.

Contact

For privacy questions during this preview phase, use the request-access path on the public site and include “privacy” in the notes.