RedRadar publishes its commitments in writing.
The documents below describe how we handle data, who we choose to work with, what conduct we require from clients, and the standards we hold ourselves to. They are written in plain language, kept current, and designed to be read by procurement counsel, compliance teams, prospective clients, and anyone evaluating whether RedRadar is the right partner for serious work.
We update these documents as our practices, our scale, and the legal environment evolve. Where a change is material, the updated date at the top of each document reflects when the change was made.
If you have a question that isn't answered here, or if you need additional documentation as part of a procurement or due-diligence process, contact us.
How we collect, use, and protect personal data when you visit our website, contact us, subscribe to our blog, purchase or attend training, or engage with us as a client, partner, or candidate. Covers US state privacy laws. Includes the controller / processor distinction that governs platform use by clients.
How our websites use cookies and similar technologies, including the categories we use, the legal basis for each, how long they remain, and how to control them. Documents what we do not use — no advertising cookies, no cross-context behavioral tracking, no social media pixels.
How we handle personal data about job applicants and candidates — what we collect, why, how long we keep it, and the rights candidates have over their data. Covers identity verification, background checks, and clearance processes for roles that require them.
How we think about human rights in the context of what we build, who we build it for, and where we draw lines. Describes our commitments under the UN Guiding Principles on Business and Human Rights and the OECD Guidelines for Multinational Enterprises, our client-evaluation process, and the controls we use to mitigate the risk of misuse.
The conduct expected of clients, authorized users, and other parties who access or use the RedRadar platform. Sets the minimum baseline alongside the Master Services Agreement and other contractual terms. Covers permitted use, prohibited use, client responsibilities, and enforcement.
A current list of material subprocessors such as hosting, infrastructure, identity management, payment processing, other services, is available on request to clients and prospective clients under appropriate confidentiality terms. We notify clients of material changes to our subprocessor list in accordance with applicable agreements.
We evaluate any potential vendors against criteria including jurisdiction, ownership, and security posture. We do not engage vendors whose ownership, jurisdiction, or compliance posture would create unacceptable risk for the missions our clients support. Vendor changes affecting client engagements are notified in accordance with applicable agreements.
Our approach to information security — principles, architecture, data handling, vendor posture, personnel, incident response, compliance, and threat awareness. A public overview suitable for procurement evaluation, with detailed documentation provided privately on request.
© 2026 RedRadar Technologies Inc. Delaware, USA. All rights reserved.