This page is maintained by Kronos Vault to answer common security, privacy and legal questions about our service. Last updated 3 July 2026.
Kronos Vault operates kronos-vault.com, a unified CVE intelligence feed aggregating public vulnerability data from NVD, MITRE, GHSA and CISA KEV. This center summarises the terms under which the service is offered, how personal data is processed and the security measures we apply.
The following sections describe our platform capabilities and the shared responsibilities between Kronos Vault, our infrastructure providers and you as a customer. Nothing on this page constitutes a certification or independent audit.
Kronos Vault operates the application layer. Underlying hosting, database and email delivery are provided by third-party infrastructure vendors (see Subprocessors). You are responsible for safeguarding your account credentials and access tokens.
Report suspected security issues to security@kronos-vault.com. Please provide reproduction steps and allow reasonable time for triage before public disclosure.
Effective 3 July 2026.
You may request access, correction, deletion, restriction, portability, or object to processing by writing to privacy@kronos-vault.com. You may also lodge a complaint with your local data protection authority.
Account data is retained for the life of the account plus a reasonable period for billing and legal obligations. Logs are rotated on a rolling basis. Deleted accounts are purged from active systems within 30 days.
Some subprocessors operate outside the EEA. Where applicable we rely on Standard Contractual Clauses or equivalent safeguards.
Effective 3 July 2026.
By creating an account or using kronos-vault.com you agree to these Terms. If you do not agree, do not use the service.
Kronos Vault aggregates publicly available vulnerability information for informational purposes. The service is provided on an "as-is" and "as-available" basis and is not a substitute for professional security advice.
You are responsible for the accuracy of your account information and for all activity under your account. You must not share credentials or attempt to circumvent access controls.
Paid plans are billed in advance via our payment provider. Except where required by law, fees are non-refundable. You may cancel at any time; access continues until the end of the paid period.
Source data remains subject to the licences of its original publishers. Our aggregation, deduplication and analysis outputs are provided under a limited, non-transferable licence for your internal use.
To the maximum extent permitted by law, Kronos Vault disclaims all implied warranties. Our aggregate liability for any claim arising from the service is capped at the fees paid in the twelve months preceding the claim.
We may suspend or terminate accounts for material breach of these Terms. You may terminate at any time from your account settings.
These Terms are governed by the laws of the jurisdiction in which Kronos Vault is established, without regard to conflict-of-laws rules.
We may update these Terms; material changes will be notified by email or in-app. Continued use after the effective date constitutes acceptance.
Where Kronos Vault processes personal data on your behalf as a data processor (for example, end-user identifiers you upload into watchlists), the following terms apply in addition to the Terms of Service.
To execute a signed DPA, contact privacy@kronos-vault.com.
We rely on the following categories of subprocessors to operate the service:
| Provider | Purpose | Region |
|---|---|---|
| Cloud application hosting | Serving the kronos-vault.com application | Global edge |
| Managed database & authentication | Account, product and log storage | EU |
| Transactional email delivery | Activation, password reset, notifications | EU / US |
| Payment processing | Checkout, invoicing, tax | EU / US |
Specific vendor names and locations are provided on request under NDA to customers with a signed DPA.
Legal & general: legal@kronos-vault.com
Privacy & data protection: privacy@kronos-vault.com
Security disclosures: security@kronos-vault.com