What is dark web monitoring?

Dark web monitoring is a cybersecurity service that continuously scans hidden parts of the internet for compromised credentials, leaked data, and security threats related to your organization.

How often are scans performed?

We offer both weekly and monthly scanning options depending on your security requirements and risk profile.

What happens when a breach is detected?

You receive immediate email alerts with detailed breach information, severity scoring, and actionable remediation steps to secure your accounts.

Privacy Policy — DarkScan Pro

Effective date: 2025-10-11

Operator: Phenicie Business Management d/b/a DarkScan Pro (“DarkScan Pro”, “we”, “us”, “our”)
Contact: tech@phenicie.com — Text ‘SECURE’ to +1 (406) 382-9207

Summary — short version

We collect data necessary to run scans, deliver reports, and communicate with you. We do not sell your personal data. You control what you upload and can request deletion as described below.

What we collect

Account info: name, business name, contact email, phone.
Identifiers for scanning: domains, IP addresses, emails, usernames, API keys you authorize us to check.
Scan artifacts: findings from third-party intelligence (dark web posts, leaked credentials hashes, malware indicators) and resulting risk metadata.
Usage & logs: site usage, API request logs, system logs, IP of requesters, timestamps.
Billing info: processed by our payment processor — we do not store raw card numbers on our servers.

How we use data

Provide monitoring, scans, reports, and notifications.
Triage and escalate incidents to authorized contacts.
Improve service, troubleshoot, and maintain security.
Comply with legal obligations.

Legal bases (if GDPR relevant)

Performance of contract (deliver scans/reports), legitimate interest (security operations), consent (marketing), legal obligations.

Sharing & third parties

We may share data with: security vendors (Huntress/Atera/etc.), cloud providers, forensic partners, and legal authorities when required. We use subprocessors — we’ll list them in our DPA upon request. We will not sell your personal data.

Data transfers

Data may be stored in the U.S. or other countries where our providers operate. We protect transfers with standard contractual protections where required.

Retention

Default retention: scan artifacts and findings retained for 2 years after last scan unless client requests different retention. (See Data Retention Policy.) — editable per client contract.

Your rights

Access, rectification, deletion, export, objection to processing, and complaint to regulators. Contact: brady@phenicie.com.

Security

We maintain administrative, technical, and physical safeguards appropriate to the risk. See our Security & Incident Response summary.

Children

Service is not for children under 13. We don’t knowingly collect their data.

Changes

We’ll post updates here with an updated effective date.