Privacy Policy

Last Updated: November 12, 2025
Version: 1.0

1. Introduction

This Privacy Policy applies to Draco Group (“we”, “us”, “our”), a security agency providing services to clients. This policy explains how we collect, use, share and store personal information when you interact with us (e.g., via our website, service agreement, in-person consultations). By engaging with us you consent to the practices described herein.

2. Definitions & Scope2. Definitions & Scope

  • “Personal Information” means any information relating to an identified or identifiable individual.

  • “Sensitive Personal Information” means information such as racial or ethnic origin, health data, biometric data, etc., where applicable under law.

  • This policy covers personal information we collect from clients, potential clients, employees, contractors, website visitors and other individuals with whom we interact.

3. Information We Collect

We may collect the following categories of personal information:

  • Contact information (name, address, email, phone number)

  • Identification information (government ID numbers, passport numbers)

  • Employment / service relationship information (employment history, background check results)

  • Service-usage information (which security services were rendered, incident reports)

  • Payment / billing information (credit card details, bank account information)

  • Website usage information (IP address, cookies, browsing behaviour)
    We do not routinely collect sensitive personal information unless it is strictly required for a specified purpose (e.g., background screening) and in compliance with applicable law.

4. How We Collect Information

We collect personal information:

  • Directly from you when you fill out forms, sign contracts, request services, communicate with us.

  • Indirectly when you visit our website and use cookies or tracking technologies.

  • From third-party sources (for example background check services or publicly available records) where permitted by law.

5. Purposes & Legal Basis for Processing

We process your personal information for the following purposes:

  • To provide and manage our security services (including planning, staffing, incident response)

  • To handle billing, invoicing and payments

  • To comply with legal/regulatory obligations (e.g., background checks, licensing)

  • To improve our website and services (analytics, client satisfaction)

  • To communicate with you (service updates, marketing communications where permitted)
    If you are in a jurisdiction where legal basis must be stated (e.g., under GDPR), the basis will include your consent, performance of contract, legitimate interests (e.g., improving services), and compliance with legal obligations.

6. Sharing and Disclosure of Personal Information

We may share your personal information with:

  • Service providers we engage (e.g., background check vendors, IT support)

  • Affiliates or subcontractors as part of service delivery

  • Legal or regulatory authorities when required by law or to protect rights, property or safety
    We do not sell your personal information to third parties for their independent marketing purposes.

7. International Data Transfers

If we transfer personal information to recipients located outside your country, we will ensure appropriate safeguards are in place (e.g., standard contractual clauses, adequate legal regime) to protect your data.

8. Data Retention

We retain personal information only as long as necessary to fulfil the purposes set out above, including for legal, tax or regulatory obligations. Once no longer required, we securely delete or anonymise the data.

9. Security Measures

We maintain commercially reasonable administrative, technical and physical safeguards to protect personal information from loss, misuse, alteration or unauthorised access. These include encryption, access controls, backup and disaster-recovery procedures, and regular security assessments.

10. Your Rights

Where applicable (depending on your location), you may have the rights to:

  • Access the personal information we hold about you

  • Request correction or deletion of your personal information

  • Withdraw your consent to processing (where consent is the basis)

  • Object to or restrict processing of your personal information

  • Request portability of your personal information

  • Lodge a complaint with a supervisory authority
    To exercise any of these rights, please contact us using the details in Section 12 below.

11. Voluntary vs. Mandatory Provision of Information

Providing personal information to us is voluntary in many cases. However, if you do not provide certain information we may be unable to provide the requested services (e.g., background check or credentials verification). We will clearly indicate when certain information is mandatory.

12. Contact Information & Complaints

If you have any questions about this policy or wish to exercise your rights, contact us at:
Draco Group
3105 Rivermont Pkwy
Alpharetta, GA 30022
Email: [email protected]
Phone: 404-935-2760
If you are in a jurisdiction with a supervisory authority (e.g., under GDPR, CCPA), you have the right to lodge a complaint with that authority.

13. Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. When we make material changes, we will provide notice (e.g., via website or email) and update the “Last Updated” date. We review this policy at least annually.

© 2023 The Draco Group, ALL RIGHTS RESERVED.

GA Security License Number PSC002202