Security Innovation, Inc. is committed to respecting the privacy of our users. We strive to provide a safe, secure user experience. This Privacy Statement sets forth the online data collection and usage policies and practices that apply to the Security Innovation content, subscription and websites (sometimes referred to herein as the “Security Innovation Sites”).
Your data will be stored and processed in the United States.
The Security Innovation Sites contain links to 3rd Party websites over which we have no control. We are not responsible for the privacy policies or practices of 3rd Party websites to which you choose to link from our Sites. We encourage you to review the privacy policies of those linked websites, so you can understand how they collect, use and share your information.
What Information do we Collect and How Is It Used?
When you place an order, we ask for your contact and/or billing information which is used for internal operations and/or to provide you with updated information on our products.
On our website we offer additional information relevant to the application security industry. To receive this additional information, we request you to fill-out a form that includes your contact data. Additional information form requests may be attached to document downloads, requests for more information, requests for demos, webinar registrations, blog and newsletter subscriptions and at times other types of information not currently listed. By filing out these forms you are stating a “Legitimate Interest” in our services and agree to provide your personal data in reference to future communications from Security Innovation.
In addition, there are areas on our website where you may elect to provide feedback on our products, services or programs. This information becomes our property, which we may use for marketing purposes or to contact you for further information.
We may also forward your contact information to a registered Security Innovation value-added reseller who may contact you. Other than for the aforementioned reasons, we do not sell, trade, or rent your personal information to others.
Information we collect are within the lawful basis of our relationship with you as “Legitimate Interests” and are within the guidelines of GDPR.
You may opt-out of receiving marketing email communications from Security Innovation at any time by clicking on the Unsubscribe links provided in the bottom of all marketing related emails.
Security Innovation uses a set of cookies to help us tailor your experience and provide products and services that will resonate with our customers. We have partnered with Google, and Optimizely to help with these goals.
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorized way, altered or disclosed. We limit access to your personal data only to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data per our instructions and they are subject to a duty of confidentiality.
We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
Security Innovation will only keep your personal data for as long as necessary to fulfil the purposes we collected it for, including any legal, accounting, or reporting requirements.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
By law we have to keep basic information about our customers (including Contact, Identity, Financial and Transaction Data) for six years after their contract ends for tax purposes.
In some circumstances you may ask us to delete your data. Please contact us for further information.
In some circumstances we may anonymize analytical data associated with your personal data (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you.
Your Legal Rights
If the General Data Protection Regulation applies to you because you are in the European Union, you have rights under data protection laws in relation to your personal data:
- The right to be informed – Your right to be informed how we use your personal data.
- The right of access – Your right to access your data through a “data subject access request”
- The right to rectification – If the data we hold or collect from you is inaccurate this is your right to correct that information.
- The right to erasure – Your right to have any data we collect from you to be deleted. This is also called the “right to be forgotten”
- The right to restrict processing – Your right to limit how we use or process your data.
- The right to data portability – Your right to export the data we have collected in a human or computer readable format.
- The right to object – Your right to change how we use or process your data.
- Rights in relation to automated decision making and profiling – Your right for us to be transparent about how we make our decisions and profiling.
No fee will be requested or collected for you to exercise the rights enumerated above.
The official GDPR website does a good job of explaining each of these items further. Please visit this site for more information: https://www.eugdpr.org
We may disclose your information if necessary to protect our legal rights or if the information relates to actual or threatened harmful conduct. Disclosure may be required by law or if we receive legal process.
Opting-Out or Changing Your Contact Information
Users may opt-out of receiving future mailings or update their existing contact information at any time.