We build developer tools for encrypted computing (YUENIX-FHE) and AI agent monitoring (PulseAgent) and hold ourselves to a high standard when handling your data. This Privacy Policy explains what information CryptoMinds Lab Limited ("CryptoMinds", "we", "us", or "our") collects, how we use it, and the choices available to you.

Information We Collect

We only collect information that helps us respond to legitimate business enquiries and improve our services:

  • Business Contact Details: Name, email address, organisation, and role when you request a briefing, join our newsletter, or participate in pilots.
  • Operational Context: Details you choose to share about your infrastructure, timelines, and security requirements so we can scope engagements responsibly.
  • Usage Analytics: Anonymised telemetry about how our website is accessed (browser, device type, approximate geography) to improve performance and defend against abuse.
  • Cookies: Minimal functional cookies that maintain session state and remember preferences. We do not run ad-tech tracking.

How We Use Your Information

Your information is used to:

  • Respond to enquiries, schedule technical briefings, and manage proof-of-concept engagements.
  • Distribute research notes, firmware updates, and operational advisories to subscribers.
  • Improve our website security posture and user experience through aggregated analytics.
  • Meet legal and regulatory obligations applicable to cryptography exporters in Hong Kong SAR and the regions where we operate.

How We Share Information

CryptoMinds does not sell personal information. We share data only when necessary to deliver our services:

  • Trusted Processors: Infrastructure providers (hosting, email delivery, secure file transfer) under contractual obligations to protect the data they handle.
  • Legal Requirements: Regulators or authorities when disclosure is required by law or to defend our rights and the safety of others.

Data Security

Our operational security mirrors the standards we recommend to clients:

  • Transport Layer Security with modern cipher suites across all web properties.
  • Role-based access controls, hardware security modules, and audit logging for internal systems.
  • Regular penetration testing and vulnerability assessments.

No internet transmission is entirely risk-free, but we continuously monitor and improve our defences.

Your Rights

You may request to access, update, or delete the personal data we hold about you, and you can opt out of communications at any time. Contact us using the details below and we will respond within 30 days.

Retention

We retain personal information only for as long as necessary to fulfil the purposes described above or to meet legal obligations. Non-essential information shared during scoping can be purged upon request once engagements conclude.

International Transfers

Data may be processed by our teams and infrastructure partners in jurisdictions outside your own. We use contractual safeguards and secure transfer mechanisms to protect your information wherever it is processed.

Updates to This Policy

We will update this Privacy Policy when our practices evolve or regulations require it. The revised policy will be posted here with a new "Last Updated" date.

Contact Us

For privacy questions or requests, reach out securely: