PRIVACY POLICY

Effective Date: 25.11.2025

Eprom Software and Automation Ltd. Co. ("Company", "we" or "our") operates the E-Guard Agent software and the www.epromguard.com website (collectively referred to as the "Service").

We are committed to protecting the privacy and security of the data of our customers and their employees. This Privacy Policy explains how we collect, use, disclose and protect your information when you use our endpoint security and monitoring software.

1. Scope and Roles

E-Guard Agent is a B2B (Business-to-Business) solution designed for corporate endpoint security and employee monitoring.

For Corporate Customers (Administrators):

We act as a Data Controller with respect to your account information, billing details and management logs.

For End Users (Employees):

We act as a Data Processor. Data collected from end-user devices through the E-Guard Desktop Agent is processed on behalf of our Customer (your employer) who is the Data Controller, and in accordance with their instructions.

2. Information We Collect

We collect various types of information to effectively provide our security and monitoring services.

A. Account and Management Data

When you register an organization or use the Web Management Panel, we collect:

  • Identity Data: Name, Surname, Company Name.
  • Contact Data: Corporate email address, phone number, physical address.
  • Authentication: Encrypted passwords (hashed with the BCrypt algorithm) and TOTP keys for 2FA.

B. Data Collected Through the Desktop Agent

The E-Guard Agent installed on target devices collects the following types of data, depending on the technical configuration:

  • Device Information: Computer name (Hostname), MAC address, Operating System details, Member and Group Codes.
  • Activity Logs: Application usage (window titles, start/end times), active process lists.
  • Web Activity: URLs visited in supported browsers (Chrome, Edge, Firefox, Opera, Brave, Safari) (domain and full path).
  • Peripheral Device Data: USB device attachment/removal logs (Device IDs).
  • Print Logs: Document names, printer names and timestamps of printing operations.
  • Visual Data (Screenshots): Screenshots of the desktop or specific applications at intervals determined by the administrator.
  • System Events: Software installation attempts, system startup/shutdown times.

3. How We Use Your Information

We use the collected data for the following purposes:

  • Service Provision: To provide real-time monitoring, reporting and dashboard visualization on www.epromguard.com.
  • Security Enforcement: To apply blocking policies defined by the organization (USB, URL, Application, Printing).
  • Authentication: To secure access using JWT (JSON Web Tokens) and 2FA (Time-Based One-Time Password).
  • Technical Support: To analyze debug logs (stored locally in the %LocalAppData% directory) and resolve system errors.
  • Updates: To distribute silent background updates and security patches through our automatic update system.

4. Data Security

We implement the latest technology security measures to protect data both at rest and in transit:

Encryption:

  • Local Storage: Data stored in the desktop agent (logs, settings, queues) is encrypted using SQLCipher (256-bit AES).
  • Data Transmission: All data transmitted between the Agent and our Cloud Servers is encrypted using TLS 1.2+ (HTTPS).
  • Passwords: All user passwords are hashed using BCrypt (work factor 11).
  • Access Control: Access to the Management Panel is protected with 2FA (Two-Factor Authentication). API access requires valid JWT tokens.
  • Data Integrity: We use license validation middleware and signature verification to ensure software integrity.

5. Data Sharing and Disclosure

We do not sell your personal information. We may share information only in the following cases:

  • Service Providers: With trusted third-party vendors who help us operate our service (e.g. cloud hosting providers, database management services).
  • Legal Compliance: When required by laws, court orders or official authorities (e.g. to comply with Turkey's Law No. 5651).
  • Business Transfers: In connection with a merger, sale of company assets or acquisition.

6. Data Retention

  • Screenshots: Retained according to the "Maximum Storage Limit" defined by the customer (default is typically 200 images per cycle). The oldest images are automatically deleted to optimize storage.
  • Logs: Activity logs are retained in accordance with the service agreement with the Customer or applicable laws.
  • Debug Logs: Local debug logs on devices are automatically cleaned up every 7 days.

7. Your Data Protection Rights

If you reside within the territory of the Turkish Republic or in the European Economic Area (EEA), you have certain data protection rights.

  • For Administrators: You can access, correct or delete your account information directly through the www.epromguard.com panel.
  • For Employees (End Users): Since we process your data on behalf of your employer who is the Data Controller, please direct your requests regarding access, correction or deletion of monitoring data to your employer (Data Controller).

8. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Effective Date" at the top.

9. Contact Us

If you have any questions about this Privacy Policy, please contact us:

Company Name: Eprom Software and Automation Ltd. Co.

Product Website: www.epromguard.com

Company Website: www.epromyazilim.com

Email: [email protected]

Address: Alibey District, Nadir Ergün Street, Barış Apartment, No:2 Apartment:6 Silivri / ISTANBUL / TURKEY

E-Guard | Enterprise Computer Management