Privacy for BlackDome visitors and customers
Effective March 20, 2026. Last updated: 10 May 2026. This page summarizes how BlackDome handles website traffic, customer contact details, ThreatDrop submissions, attacker telemetry, and API usage data.
Product addendum
BlackDome is operated by Krystal Unity Pty Ltd. This BlackDome privacy addendum supplements the Krystal Unity master Privacy Policy, which contains the umbrella privacy framework, full sub-processors list, international transfer terms, GDPR/UK and CCPA rights, and Australian Privacy Principles coverage.
What we collect
We may collect contact details you submit to us, suspicious emails and files sent to ThreatDrop, API usage metadata, billing details needed to provision service, and basic website analytics used to operate and improve the public site. We also collect honeypot-derived attacker telemetry from our own infrastructure, including source IPs, payloads, session transcripts, malware indicators, and abuse patterns.
Attacker telemetry collected on BlackDome-controlled infrastructure is not customer personal data. It is retained and analyzed as threat intelligence for lawful defensive, research, enrichment, Sentinel governance, and takedown workflows.
How we use it
We use this information to run BlackDome services, analyze threats, deliver API access, respond to support and sales requests, investigate abuse, and improve product reliability. Submitted threat material may be retained for security research, enrichment, and takedown workflows.
Third-party services
BlackDome may use Krystal Unity shared infrastructure providers for hosting, transactional email, monitoring, and security operations. Stripe processes payments for paid plans and invoices where applicable. AI-assisted threat analysis may use Anthropic and OpenAI under the master sub-processor framework. The current full list is maintained at krystalunity.com/privacy.
Rights and security
Customers may request access, correction, export, or deletion of personal information subject to lawful security, abuse-prevention, and recordkeeping obligations. Security, retention, international transfer, GDPR/UK, CCPA, and Australian Privacy Principles details are handled under the master policy.
Contact
For privacy questions, data requests, or security concerns, contact security@blackdome.ai.