Privacy Policy

Last Updated: April 22, 2023

Cybersecurity Insiders (“Company,” “we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and disclose personal information when you access or use our website and services (collectively, the “Services”).

By accessing or using our Services, you acknowledge that you have read, understand, and agree to the practices described in this Privacy Policy and our Terms of Use, which is incorporated into this Privacy Policy by reference. If you do not agree with this Privacy Policy or our Terms of Use, you must not access or use our Services.

  1. Information We Collect
  1. Information You Provide: We collect personal information that you voluntarily provide when you register for an account, subscribe to newsletters, or otherwise communicate with us. This information may include your name, email address, mailing address, and any other information you choose to provide.
  2. Usage Information: We collect information about your use of our Services, including the pages you view, the links you click, and the time you spend on our website.
  3. Device and Technical Information: We collect information about the device you use to access our Services, such as your IP address, browser type, operating system, and other technical information.

2. How We Use Your Information

We use your personal information to:

  1. Provide and maintain our Services, including to register and manage your account; b. Communicate with you, including sending newsletters, marketing materials, and other information related to our Services or third-party partner promotions; c. Improve and personalize our Services, including analyzing usage data and user preferences; d. Ensure the security and integrity of our Services, including detecting and preventing fraud and unauthorized access; e. Comply with legal obligations and respond to legal requests.

3. How We Share Your Information

We may share your personal information with:

  1. Service providers that perform services on our behalf, such as hosting providers, email service providers, and analytics providers; b. Third-party partners for marketing purposes, if you have consented to receive marketing communications from such partners; c. Law enforcement or other governmental authorities when required by law or in response to a valid legal request.

We will not sell, rent, or share your personal information with third parties for their own marketing purposes without your explicit consent.

4. Security

We implement reasonable security measures to protect your personal information from unauthorized access, use, or disclosure. However, no method of transmission over the Internet or method of electronic storage is 100% secure, and we cannot guarantee the absolute security of your personal information.

5. Your Rights and Choices

Depending on your jurisdiction, you may have certain rights regarding your personal information, including the right to access, correct, delete, or restrict its processing. To exercise any of these rights, please contact us at info@cybersecurity-insiders.com

If you no longer wish to receive our newsletters or marketing emails, you may opt out by following the unsubscribe instructions provided in those emails.

6. International Data Transfers

If you are accessing or using our Services from outside the United States, your personal information may be transferred to, stored, and processed in the United States or other countries where our servers or service providers are located. By using our Services, you consent to the transfer, storage, and processing of your personal information in accordance with this Privacy Policy and applicable data protection laws.

7. Compliance with EU Law

If you are accessing or using our Services from a member state of the European Union, you have certain rights and protections under the General Data Protection Regulation (GDPR) and other applicable laws. We process your personal information in accordance with the GDPR by relying on one or more of the following legal bases:

a. Your consent, which you may withdraw at any time by contacting us at info@cybersecurity-insiders.com ; b. The performance of a contract or the need to take steps at your request prior to entering into a contract; c. Our legitimate interests, such as improving and personalizing our Services or communicating with you about our Services; d. Compliance with legal obligations.

Under the GDPR, you have the following rights in relation to your personal information:

a. The right to access, correct, or delete your personal information; b. The right to object to or restrict the processing of your personal information; c. The right to data portability, which allows you to receive a copy of your personal information in a structured, commonly used, and machine-readable format; d. The right to withdraw your consent to the processing of your personal information, where consent is the legal basis for processing; e. The right to lodge a complaint with a supervisory authority.

To exercise any of these rights, please contact us at info@cybersecurity-insiders.com

8. Children’s Privacy

Our Services are not intended for use by children under the age of 16, and we do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete such information as soon as possible.

9. Changes to This Privacy Policy

We reserve the right to update or modify this Privacy Policy at any time. We will provide notice of any changes by posting the updated Privacy Policy on our website. It is your responsibility to review this Privacy Policy periodically for changes. Your continued use of our Services after the posting of any changes to this Privacy Policy constitutes your acceptance of those changes.

10. Contact Information

If you have any questions about this Privacy Policy or our privacy practices, please contact us at info@cybersecurity-insiders.com

11. California Privacy Rights

If you are a California resident, you have certain rights under the California Consumer Privacy Act (CCPA). These rights include:

  1. The right to know what personal information we collect, use, disclose, and sell; b. The right to request the deletion of your personal information, subject to certain exceptions; c. The right to opt out of the sale of your personal information, if applicable; d. The right to not be discriminated against for exercising any of your CCPA rights.

To exercise any of these rights, please contact us at info@cybersecurity-insiders.com . Please note that we may need to verify your identity before responding to your request.

12. Data Retention

We retain your personal information for as long as necessary to provide our Services, comply with our legal obligations, resolve disputes, and enforce our agreements. The retention period may vary depending on the type of information and the specific purpose for which it was collected.

13. Third-Party Links

Our Services may contain links to third-party websites, products, or services, which are not under our control. This Privacy Policy does not apply to the information practices of those third-party websites or services. We encourage you to review the privacy policies of any third-party websites or services that you visit or interact with.

14. Cookie Policy

We use cookies and similar technologies to improve and personalize your experience on our Services, analyze usage data, and provide relevant advertising. By using our Services, you agree to our use of cookies and similar technologies in accordance with this Privacy Policy and our Cookie Policy, which is available on our website.

15. Contact Us

If you have any questions or concerns about this Privacy Policy, our privacy practices, or your rights under applicable data protection laws, please contact us at info@cybersecurity-insiders.com

We will respond to your inquiry as soon as possible and in accordance with applicable data protection laws.

  1. Updates to This Privacy Policy for EU Users

In addition to the general updates to this Privacy Policy as mentioned in section 9, we will also inform our EU users of any significant changes that may affect their rights under the GDPR or other applicable EU data protection laws. We will notify EU users via email or through a prominent notice on our website.

  1. Data Protection Authority

If you are located in the European Union and believe that we have not adequately addressed your concerns regarding the processing of your personal information, you have the right to lodge a complaint with your local data protection authority.

For a list of contact details for EU data protection authorities, please visit the European Data Protection Board’s website at: https://edpb.europa.eu/about-edpb/board/members_en

Please note that this Privacy Policy is provided for informational purposes only and is not intended to constitute legal advice or replace the advice of a qualified attorney. If you have specific questions about how the GDPR or other data protection laws apply to your business, we recommend that you consult with legal counsel familiar with these matters.

This Privacy Policy is a part of, and is governed by, the same terms and conditions that apply to our Terms of Use. In the event of any conflict or inconsistency between this Privacy Policy and our Terms of Use, the provisions of this Privacy Policy shall prevail to the extent of the conflict or inconsistency.

  1. International Users

Our Services are intended for users located in the United States and the European Union. If you access or use our Services from a location outside these jurisdictions, please be aware that your personal information may be processed in countries that have different data protection laws and regulations than your country of residence. By accessing or using our Services, you consent to the transfer, storage, and processing of your personal information in accordance with this Privacy Policy and applicable data protection laws.

  1. Data Protection Officer

We have appointed a Data Protection Officer (DPO) to oversee our data protection strategy and ensure compliance with the GDPR and other applicable data protection laws. If you have any questions about our data processing practices or your rights under the GDPR, you may contact our DPO at info@cybersecurity-insiders.com

  1. Privacy by Design

We have implemented a “Privacy by Design” approach, which means that we consider data protection and privacy issues at every stage of our Services’ development and operation. We strive to minimize the collection, use, and disclosure of personal information and to implement appropriate technical and organizational measures to ensure a level of security that is appropriate to the risks associated with the processing of personal information.

  1. Data Breach Notification

In the event of a personal data breach, we will notify the relevant supervisory authority and affected individuals without undue delay and, where feasible, within 72 hours of becoming aware of the breach. We will also take all necessary measures to mitigate the potential adverse effects of the breach and to prevent any further breaches.

  1. Privacy Impact Assessments

Where appropriate, we conduct Privacy Impact Assessments (PIAs) to evaluate and mitigate the risks associated with our data processing activities. PIAs help us to ensure compliance with applicable data protection laws and to promote privacy best practices throughout our organization.

  1. Staff Training and Awareness

We provide regular training and updates to our staff on data protection and privacy matters to ensure that they are aware of their responsibilities and the best practices for handling personal information.

By accessing or using our Services, you acknowledge and agree to the practices described in this Privacy Policy. If you have any questions or concerns about this Privacy Policy or our data processing practices, please do not hesitate to contact us at the email address provided above.

  1. Third-Party Processors

We may engage third-party processors to process personal information on our behalf. When doing so, we ensure that these processors are contractually obligated to implement appropriate technical and organizational measures to protect the personal information they process for us and to process the personal information only in accordance with our instructions.

  1. Privacy Shield Compliance

For transfers of personal information from the European Union to the United States, we comply with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce. We commit to cooperating with EU data protection authorities (DPAs) and the Swiss Federal Data Protection and Information Commissioner (FDPIC) and comply with the advice given by such authorities with regard to personal information transferred from the EU and Switzerland.

  1. Records of Processing Activities

We maintain records of our processing activities in accordance with the requirements of the GDPR and other applicable data protection laws. These records include information about the categories of personal information we process, the purposes for which we process the personal information, the recipients or categories of recipients to whom we disclose the personal information, the security measures we implement to protect the personal information, and any other relevant information required by applicable laws.

  1. Data Protection Impact Assessments

When required by the GDPR or other applicable data protection laws, we carry out Data Protection Impact Assessments (DPIAs) to assess the risks associated with our data processing activities and to determine appropriate measures to mitigate those risks. DPIAs help us to ensure compliance with applicable data protection laws and to promote privacy best practices throughout our organization.

  1. Legal Basis for Processing Personal Information

We process personal information only on a lawful basis, which may include obtaining your consent, fulfilling our contractual obligations to you, complying with legal requirements, or pursuing our legitimate interests. We will always provide you with clear and transparent information about the specific legal basis on which we process your personal information and will inform you if that legal basis changes.

  1. Changes to This Privacy Policy

We reserve the right to modify this Privacy Policy from time to time to reflect changes in our data processing practices, the features of our Services, or applicable laws. We will provide notice of any material changes to this Privacy Policy by posting the updated Privacy Policy on our website and, where appropriate, by notifying you via email or other means. Your continued use of our Services following the posting of any changes to this Privacy Policy constitutes your acceptance of those changes.

  1. Privacy Policy Interpretation

In the event of any ambiguity, discrepancy, or conflict between the provisions of this Privacy Policy and any other statements, notices, or communications related to our privacy practices, the provisions of this Privacy Policy shall prevail. If any provision of this Privacy Policy is found to be invalid or unenforceable by a court of competent jurisdiction, the remaining provisions shall continue in full force and effect.

  1. Language

This Privacy Policy is written in English. In the event of any inconsistency or discrepancy between the English version and any translation of this Privacy Policy, the English version shall prevail.

  1. Contacting Us

If you have any questions, concerns, or complaints about this Privacy Policy, our privacy practices, or your rights under applicable data protection laws, please do not hesitate to contact us at the email address provided above. We will make every effort to respond to your inquiry promptly and in accordance with applicable data protection laws.

  1. Governing Law and Jurisdiction

This Privacy Policy, as well as any disputes arising from or relating to this Privacy Policy, shall be governed by the laws of the United States, without regard to their conflict of law principles. Any disputes arising from or relating to this Privacy Policy shall be subject to the exclusive jurisdiction of the courts located in the state of Maryland, United States.

  1. No Waiver

No failure or delay by us in exercising any right, power, or remedy under this Privacy Policy shall operate as a waiver of any such right, power, or remedy, nor shall any single or partial exercise of any such right, power, or remedy preclude any other or further exercise thereof or the exercise of any other right, power, or remedy.

We hope this Privacy Policy has provided you with a clear understanding of our privacy practices and your rights under applicable data protection laws. We are committed to protecting your privacy and ensuring that your personal information is processed in accordance with the highest standards of data protection. If you have any questions or concerns about this Privacy Policy or our privacy practices, please do not hesitate to contact us.

The previous model used in this conversation is unavailable. We’ve switched you to the latest default model

  1. Effective Date

This Privacy Policy is effective as of April 22, 2023 and replaces any previous privacy policies or statements issued by Cybersecurity Insiders.

CONTACTING US

Please also feel free to contact us if you have any questions or complaints about our Privacy Policy or practices. You may contact us at info@cybersecurity-insiders.com