Privacy Policy

Privacy & Data Protection at Helxon

We built Helxon on Microsoft’s security stack so your telemetry stays in your tenant. This page explains what we collect, how we use it, and the safeguards we apply across helxon.com, VorXOC, and our security services.

Last updated: January 4, 2026Applies to helxon.com, VorXOC, marketing, and support operations.

Information we collect

  • Contact and account details (name, business email, phone number, company, role) when you request a demo or engage with our team.
  • Usage information from helxon.com and VorXOC, including pages viewed, device data, IP address, and service telemetry needed to keep the platform secure and reliable.
  • Security and compliance records such as authentication logs, alert data, incident response actions, and audit trails generated within your Microsoft tenant.
  • Communications you send us—support requests, call notes, and feedback—so we can respond and improve the service.
  • Commercial details tied to orders, subscriptions, statements of work, and billing history.

How we use your information

  • Deliver and improve Helxon services, including SOC operations, detection content, automation playbooks, and customer success.
  • Provide support, schedule demos, and send important service notices about security, availability, or feature changes.
  • Operate analytics that help us understand adoption, prevent abuse, and harden the platform (we limit identifiers and aggregate where possible).
  • Meet legal, compliance, and audit requirements, including security investigations and enforcement of our agreements.
  • Protect our users, infrastructure, and Microsoft-based environment from fraud, abuse, or unauthorized access.

Cookies, analytics, and controls

We use essential cookies to operate the site and analytics cookies (such as Google Analytics) to understand performance and improve the experience. You can manage cookies in your browser settings; blocking some cookies may limit site functionality. Marketing emails always include an unsubscribe option.

Data sharing

  • Within Microsoft Azure, Sentinel, and Defender services you authorize—customer data stays in your tenant; we do not sell or rent personal data.
  • With vetted sub-processors that support communications, analytics, or billing under strict confidentiality and security terms.
  • With partners or advisors who help deliver the service to you under contract-bound confidentiality.
  • When required by law, subpoena, or legal process, or to protect the rights and safety of Helxon, our customers, or the public.
  • During a business transaction (merger, acquisition, or asset sale) where protections and notice will be provided.

Security and retention

  • Customer data remains in your Microsoft tenant with role-based access, encryption in transit and at rest, and audit logging.
  • Access is limited to authorized personnel with least-privilege controls, background checks (where appropriate), and confidentiality obligations.
  • We retain personal data only as long as needed for the purposes described here, to meet legal requirements, or as defined in applicable statements of work and contracts.
  • Aggregated and de-identified insights may be kept to improve our security analytics without identifying individuals.

Your privacy rights

Depending on your location, you may have the rights listed below. We will respond consistent with applicable law and our contractual commitments.

  • Access, correct, or update your contact and account details.
  • Request deletion of personal data where applicable, subject to legal and contractual obligations.
  • Object to or restrict certain processing, including marketing communications.
  • Receive a copy of personal data you provided in a portable format where required by law.
  • Lodge a complaint with your local data protection authority if you believe your rights are not respected.

To exercise these rights or ask questions about your data, contact us using the details below. We may need to verify your identity before fulfilling a request.

International data transfers

Helxon primarily operates within Microsoft’s cloud regions. Cross-border transfers follow contractual protections and, where required, Standard Contractual Clauses or similar safeguards.

Children's privacy

Our services are designed for business users and are not directed to children under 16. We do not knowingly collect personal data from children.

Changes to this policy

We may update this policy to reflect operational, legal, or regulatory changes. If the changes are material, we will provide reasonable notice and update the “Last updated” date above.

Contact us

If you have questions about how Helxon handles your data or want to submit a privacy request, reach out to us anytime.

Email: contact@helxon.com

Phone: +1-604-499-5973

Helxon Inc., North Vancouver, BC