Revision Date: April 28, 2022
1. About AttackIQ
AttackIQ, Inc. (“AttackIQ”) is a Delaware corporation located at 171 Main Street, Suite 656, Los Altos, CA 94022. Full company details of AttackIQ and AttackIQ affiliates that may process your personal information can be found here.
AttackIQ and our affiliates (“we”, “us”, or “our”) are committed to protecting and respecting your personal information and privacy.
This policy gives details of what information we may collect from you or that you may provide to us, and how we may store and use this information. Such information may be collected or provided when you communicate with us or use our mobile apps, websites or any of our products.
Please read the following carefully to understand how we collect and use your information. If you have any questions about this policy or our use of your information, you can contact us at [email protected] or one of our local offices.
Changes we may make to this policy will be made by updating this page and, where appropriate, notified to you by email. Please check back frequently to see any updates or changes to this policy.
3. Where We Store Your Information
We are a global organization and so the information that we collect from you may be transferred to, and stored at, a destination other than the country in which the information was collected (information is frequently transferred to the United States because that is where we are headquartered). AttackIQ abides by the U.S.-EU Safe Harbor Framework and the U.S.-Swiss Safe Harbor Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information. Further details on our Safe Harbor compliance can be found here.
Your information may also be processed by our staff at any of our locations around the world or by the staff of our suppliers at any of their locations around the world. Such staff may be engaged in, among other things, the fulfillment of your order, the processing of your payment details and the provision of support services.
Information you provide to us may be stored on our servers or those of our third party service providers. Where we have given you (or where you have chosen) a password that enables you to access certain parts of our website, you are responsible for keeping this password confidential. You should not share your password with anyone.
4. AttackIQ Products
Some of our products may be used by our customers to collect information that is or could be personal information. We may have no direct relationship with the individuals whose personal information we process on behalf of our customers. An individual who seeks access, or who seeks to correct, amend or delete inaccurate data controlled by one of our customers should direct its query to our customer (the data controller). We use and disclose such information as specified in the agreement(s) between our customer and us and/or as required by law.
5. Information We May Collect From You
(a) Information you give to us: You may provide us with certain categories of personal information, which is information that could reasonably be used to identify you personally, including but not limited to, your name, email address and company information. We may collect this information through forms that you complete on our mobile apps and websites, by subscribing to our services (such as newsletters or white papers), using community forums on our website, attending training sessions, following us on social media, by attending our events or by corresponding with us by phone, email, social media or otherwise. This includes information you provide when you purchase products from us, contact our support helpdesk, participate in forums or other social media functions on our website, enter a competition, promotion or survey and when you report a problem with our website.
(b) Information when you use our mobile apps: When you use our mobile apps we may automatically collect the following information:
(i) Device information: We may collect information about the device including, where available, the device’s unique device identifiers, operating system, browser type and, if a mobile device, mobile network information as well as the device’s telephone number;
(ii) Location information: If you use any location-enabled services that we may offer, we may collect and process information about your actual location. Some of these services may require your personal data for the feature to work. If you wish to use the particular feature, you will be asked to consent to your information being used for this purpose; and
(iii) Unique application numbers: when you install or uninstall an app containing a unique application number or when such a service searches for automatic updates, that number and information about your installation, for example, the type of operating system, may be sent to us.
(c) Information from visits to our websites: Each time you visit our website we may automatically collect the following information:
(i) technical information, including the Internet protocol (“IP”) address used to connect your computer to the Internet (which may allow us to identify your geographic location), your login information, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform; and
(ii) information about your visit, including the full Uniform Resource Locators (“URL”) clickstream to, through and from our website (including date and time); page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), and methods used to browse away from the page and any phone number used to call our customer service number.
(d) Information from your use of our products: If you use our software, we may automatically collect metrics on your activities, such as web pages visited, length of visit, which of your users log into our software, which features of our products you use and how often, and other information about your technology environment and devices used (including unique device identifiers, operating system, browser type and mobile network information). If you configure or use our products in a manner that collects information about your customers, then we will also receive that information.
Our products also collect metrics that relate to the performance, health and resource of servers, databases applications and other technology, as well as their components (transactions, code libraries) and the related infrastructure (nodes, tiers) that service those components.
(e) Information we receive from other sources: We work closely with third parties (for example, business partners, resellers, sub-contractors in technical, payment and delivery services, advertising networks, analytics providers, search information providers and credit reference agencies) and may receive information about you from them. Please remember that the manner in which such third party platforms use, store and disclose your information is governed by the policies of such third parties, and we will have no liability or responsibility for the privacy practices or other actions of any such platforms.
7. How We Use Your Information
We may use the information held about you to:
(a) carry out our obligations arising from any contracts entered into between you and us and to provide you with the information, products and services that you request from us;
(b) provide you with information about other products and services we offer;
(c) respond to your requests and questions;
(d) notify you about changes to our company, products or services, and changes to our terms and conditions; and
(e) ensure that content from our websites is presented in the most effective manner for you and for your device.
(f) administer our website and products, and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes;
(g) improve our website and products and to ensure that content is presented in the most effective manner for you and your device;
(h) allow you to participate in interactive features of our website, products and services when you choose to do so, including but not limited to sweepstakes, contests and social media engagements;
(i) help keep our website, products and services safe and secure;
(j) measure and understand the effectiveness of advertising we serve to you and others, and to deliver relevant advertising to you;
(k) make suggestions and recommendations to you and other users of our website about products or services that may interest you or them;
(l) notify you about changes to our company or services; and
(m) comply with applicable legal requirements, relevant industry standards and our policies.
We also may use the information in other ways for which we provide specific notice at the time of collection.
8. Marketing to you
We may use information held about you to provide you, or permit selected third parties to provide you, with information about products or services we feel may interest you. This may be by contacting you by phone or by email.
If you do not want us to use your information in this way, or to pass your details on to third parties for marketing purposes, you can unsubscribe from such emails using the link provided in emails, tell your AttackIQ contact, email us at [email protected] or check the relevant box on the form in which we are collecting your information. Note that you may still receive administrative emails (for example, regarding updates to our terms) or transactional emails (for example, related to a purchase you make) from us.
9. Aggregated Information
In an ongoing effort to better understand and serve the users of our websites and products, we often conduct research on customer demographics, interests and behavior based on the personal information and other data provided to us. This research may be compiled and analyzed on an aggregate basis, and we may share this aggregated data with our affiliates, agents and business partners. This aggregated information does not identify you personally.
We may also disclose aggregated user statistics in order to describe our products to current and prospective business partners, and to other third parties for other lawful purposes.
10. Disclosure of Your Information
We will never sell your information for marketing purposes. However, there may be times when we need to share your personal information, as detailed below.
We may share your personal information with any of our affiliates if necessary for the legitimate business purposes of the disclosing company or company receiving the information.
We may also share your information with selected third parties including:
(a) our affiliates, business partners, resellers, suppliers and sub-contractors for the performance of any contract we enter into with them or you. When we employ another company to perform a function of this nature, we strive to provide them with the minimum information that they need to perform their specific function;
(b) partners and service providers with whom we have a strategic relationship or that perform work for us to provide the products to you. These third parties may help us host and/or analyze data, process information, fulfill orders, deliver products or information, manage and enhance user data, provide customer service, assess your interest in products or conduct user research and surveys. These companies are obligated to protect your personal information and may have their own privacy policies if you link to or access their websites or systems; and
(c) analytics and search engine providers that assist us in the improvement and optimization of our website.
We may disclose your personal information to third parties:
(a) in the event that we sell or buy any business or assets, in which case we may disclose your information to the prospective seller or buyer of such business or assets;
(b) if substantially all of our assets are acquired by a third party, in which case information held by us about our customers will be one of the transferred assets; or
(c) if we are under a duty to disclose or share your information in order to comply with any legal obligation, or in order to enforce any agreements with you or to protect the rights, property, or safety of us, our customers, or others. This includes exchanging information with other companies and organizations for the purposes of fraud protection and credit risk reduction.
We take commercially reasonable steps to protect the personal information we receive from loss, misuse, and unauthorized access, disclosure, alteration, or destruction. However, no Internet or email transmission is ever fully secure or error-free. In particular, email sent to or from us may not be secure. Therefore, you should take special care in deciding what information you send to us via email. Please keep this in mind when disclosing any personal information to us.
We ask that you not send us, and you not disclose, any sensitive personal information to us directly or through our products (such as protected health information, passwords and authentication/authorization credentials for other services, credit card numbers or other financial information other than for the purpose of making payment to us, drivers license numbers, passport numbers, social security numbers or information related to racial or ethnic origin, political opinions, religion or other beliefs, health, criminal background or trade union membership).
12. Your Rights
Subject to applicable law, you can request to review, change, or delete your personal information by contacting us at [email protected].
13. Withdrawing your consent to us using your information
You may withdraw any consent you previously provided to us for the processing of your personal information by contacting us at [email protected]. As required by applicable law, we will apply your preferences going forward, within a reasonable amount of time. Even where you withdraw your consent, we may still process your personal data for limited purposes, for example, to give effect to your request or to safeguard our business. In some circumstances, withdrawing your consent to our use or disclosure of your personal information will mean that you cannot use some of our products or services.
We do not knowingly collect personal information from children under the age of 13. If you are under the age of 13, please do not submit any personal information through our websites or products. We encourage parents and legal guardians to monitor their children’s Internet usage and to help enforce our policy by instructing their children never to provide personal information through our websites or products without their permission. If you have reason to believe that a child under the age of 13 has provided personal information to us through our websites or products, please contact us, and we will endeavor to delete that information from our databases.
15. Your California Privacy Rights
Applicable California privacy legislation permits visitors who are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. To make such a request to access such information, please contact us as follows: [email protected]. Within 30 days after receiving such a request, we will provide a list of the categories of personal information disclosed to third parties for third party direct marketing purposes during the immediately preceding calendar year, along with the names and addresses of these third parties. This request may be made no more than once per calendar year. We reserve our right not to respond to requests submitted other than to the address specified in this paragraph.
16. Third Party Links
Our website may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these third parties. Please check these policies before you submit any information to these websites.
17. Public Forums
Our website offers publicly accessible blogs or community forums. You should be aware that any information you provide in these areas may be read, collected and used by others who access them. To request removal of your personal information from our blog or community forum, contact us at [email protected]. In some cases, we may not be able to remove your personal information, in which case we will let you know if we are unable to do so and why.
Questions, comments and requests regarding this policy are welcomed and should be addressed to [email protected].