Software as a service (SAAS) services featuring software for cybersecurity compliance and regulatory risk assessment, namely, analyzing metadata and anonymized data to identify legal and regulatory notification obligations and compliance exposure associated with cybersecurity incidents and data breaches, excluding the collection, storage, or processing of personally identifiable information (PII), protected health information (PHI), or payment card data.