Microsec, Inc. respects your privacy and is committed to protecting the personal information you share with us. This Privacy Statement describes how Microsec collects, uses, shares, and secures the personal information you provide. It also describes your choices regarding use, access and correction of your personal information.
This Privacy Statement covers Microsec, Inc. and its affiliated companies and subsidiaries (collectively “Microsec”, “we”, “us”, or “our”) websites, mobile and desktop service agent applications, and services that link to or reference this Privacy Statement. When visiting any web site of Microsec (the “Site”) please review the applicable privacy policies disclosed on the Site. Microsec offers and provides a variety of services and solutions through Microsec’s Cloud Security Platform, collectively referred to throughout this document as “Services.” The term “partner” is used in these Terms in the popular sense as referring to a person or entity that has entered into a collaborative relationship with Microsec and does not imply the existence of a legal partnership. “Personal information” or “personal data” is any information that can be used to identify an individual, and may include but is not limited to first and last name, email address, telephone number, postal or other physical address, login information (User ID, account number, password), marketing preferences, social media account information, other contact information, title, occupation, work industry, and other information which you may submit to Microsec for it to provide products, services, and information to you. If we link other data with your personal information, we will treat that linked data as personal information. By proceeding to use the Site and/or the Services you consent that we may process the personal data that we collect from you in accordance with this Privacy Statement. The use of personal information collected from a customer through a Service shall be limited to the purpose of providing the Service to the customer. Please review the “Disclosures Specific to Microsec Services” section below for additional information.
Personal Information Collection
We may collect personal information from you, such as name, company, email address, and phone number. As is true of most websites, we gather certain information automatically. This information may include Internet protocol (IP) addresses, browser type, Internet service provider (ISP), referring/exit pages, the files viewed on our site (e.g., HTML pages, graphics, etc.), operating system, date/time stamp, and/or clickstream data to analyze trends in the aggregate and administer the site.
We may receive information about you from other sources, including third parties from whom we have obtained data such as name, title, company, email address, physical mailing address, phone number, and information about the advertising link clicked, information requested, or event registered for, etc. We may combine this data with information we already have about you. This helps us to update, expand and analyze our records, identify new customers, and provide products and services that may be of interest to you. If you provide us personal information about others, or if others give us your personal information, we will only use that information for the specific reason for which it was provided to us. If you believe that your personal information has been provided to us and would like to request that it be removed from our database, please contact us at the contact information below.
We collect personal information for a variety of reasons, such as:
• Processing your order for a product or services, including, but not limited to:
• Registering for information requests such as reports, white papers, or data sheets
• Registering for an online program, event, seminars, promotions or sweepstakes
• Participating in events, surveys, questionnaires, or evaluations
• Providing you with a newsletter subscription
• Sending marketing communications
• Registering as a partner
• Creating an account
• Enabling the use of certain features of our products and services
• Downloading and registering mobile applications
• Personalizing your experience.
• Providing customer support
• Managing a job application
When you download and use our Services, we automatically collect information on the type of device you use, and operating system version. We do not ask for, access or track any location-based information other than your IP address from your mobile device at any time while downloading or using our mobile applications or Services.
In some instances, like many other commercial websites, Microsec and the third parties we engage may automatically collect data through cookies, web logs, web beacons, and other similar applications. This information is used to better understand and improve the usability, performance, and effectiveness of the website and to help tailor content or offers for you. Please read the “Cookies and Other Web Technologies” section below for more information.
How We Use Personal Information Collected
Microsec may use personal information for the purposes of operating our business, providing customers and business partners with information and services, helping us better understand your needs and interests, improving our Sites and/or Services, sending marketing and other communication related to our business or Services, and for other legitimate purposes permitted by applicable law. Specifically, some of the ways we may use personal information include:
• Delivering products or services you have requested including processing and fulfilment of your order and to send you emails to confirm your order status and Service availability.
• Providing ongoing Services and related support.
• Analyzing, supporting, and improving our Services and your online experience.
• Personalizing Sites, newsletters and other communications.
• Administering and processing your training and certification exams.
• Administering and fulfilling information requests and our promotions and offers.
• Sending communications to you, including for marketing, surveys, quality assurance, or customer satisfaction purposes, either directly from Microsec or from our partners.
• Contacting you if necessary.
• Helping us learn more about your preferences.
• Analyzing trends and statistics.
• Protecting the security or integrity of our Sites and Services.
You can update your communication preferences at any time. See Your Choices below.
Access to and Accuracy of Your Personal Information
You may request that we update, change or remove information posted on or submitted through our Site or that we provide you with information about whether we hold or process any of your personal information by contacting [email protected], or by regular mail addressed to:
4701 Patrick Henry Dr.
Building 2, Ste. 170
Santa Clara, CA 95054
We will respond to these requests within a reasonable timeframe. Copies of information that you have updated, modified or deleted may remain viewable in cached and archived pages of the Site for a period of time. We may also retain your information in our business records for as long as your account is active or as needed to provide you services, comply with our legal obligations, resolve disputes and enforce our agreements.
You may sign-up to receive our newsletter or other communications and information from us related to our Services. If you would like to discontinue receiving this information, you may update your email preferences by using the “Unsubscribe” link found in each promotional email we send to you or by sending us a message through email, [email protected], or by mail to: Microsec, Inc., Attn: Privacy, 4701 Patrick Henry Dr. Building 2, Ste. 170
Santa Clara, CA 95054. Please be sure to include your name, email address, and specific, relevant information about the material you no longer wish to receive.
These choices do not apply to service notifications or other required communications that are considered part of certain Services, which you may receive periodically unless you stop using or cancel the Service in accordance with its terms and conditions.
By using our Site, Services, or otherwise providing personal information to us, you agree that we may communicate with you electronically regarding security, privacy, and administrative issues relating to your use. For example, if we learn of a security system’s breach, we may attempt to notify you electronically by posting a notice on our websites, by sending an email, or otherwise contacting you.
Personal Information Sharing and Disclosure
Your personal information may be shared with Microsec offices or partners around the world. In such case, this Privacy Statement governs the entities concerned.
Within Microsec, data is stored in controlled servers with restricted access. Your personal information may be stored and processed worldwide in Microsec data centers and by Microsec or its worldwide subsidiaries or affiliates. Unless otherwise specified in this Privacy Statement, your personal information is not shared outside Microsec without your permission. Microsec may send your personal information to other companies or people under any of the following circumstances:
• If sharing your information is necessary to provide a product, service or information you have requested; by way of example, sharing your information with a bank, logistics company, event organizer, marketing agency, etc.
• As part of a joint sales or event promotion with our business partners that promotes the Services.
• To keep you up to date on the latest Service announcements, updates, special offers or other information we think you would like to hear about either from us, through our marketing agencies or from our business partners.
• For the purpose of conducting export/trade law compliance checks, passing your information to our contracted vendors.
• With business partners, service vendors, authorized third-party agents, or contractors to provide a requested service or transaction. Examples include, but are not limited to: processing of orders and credit card transactions, hosting websites, hosting seminar registration, assisting with sales-related efforts or post-sales support, and providing customer support.
• In aggregated form which cannot reasonably be used to directly identify you.
• Choice. We will give you an opportunity to choose (opt‐in or opt‐out) whether your personal information is 1) disclosed to a third party (other than an agent or service provider doing work or providing services at our direction), or 2) to be used for a purpose that is materially different than that for which it was collected or subsequently authorized by you.
Cookies and Other Web Technologies
These tools collect certain standard information that your browser sends to our website such as your browser type and the address of the website from which you arrived at our website. They may also collect information about:
• Your Internet Protocol (IP) address. This is a number automatically assigned to your computer or device whenever you are connecting to the Internet. It allows web servers to locate and identify your device, this is a unique address assigned to your device by your Internet service provider or information systems department on a TCP/IP network.
• Clickstream behaviour. For example, the pages you view and the links you click.
These tools help make your visit to our Sites easier, more efficient, and more valuable by providing you with a customized experience and recognizing you when you return. If you prefer not to receive cookies while browsing our Sites or via HTML-formatted emails, you can set your browser to warn you before accepting cookies and refuse the cookie when your browser alerts you to its presence. You can also refuse all cookies by turning them off in your browser, although you may not be able to take full advantage of all features of the Site if you do so. In particular, you may be required to accept cookies in order to complete certain actions on a Site. To use/navigate through many parts of our Sites, you do not need to turn on cookies. There is currently no industry standard for how companies should respond to “do not track” signals, although one may develop in the future. Our Sites may not recognize and respond to all “do not track” signals at this time. If we do so in the future, we will describe how in this Privacy Statement.
Personal Information Security
Your Microsec account information is protected for your privacy in accordance with industry standards and practices that are available to Microsec on a commercial reasonable basis. Microsec safeguards the personal information you send us and takes reasonable physical, technical, and organizational measures to prevent unauthorized access, unlawful processing, and unauthorized or accidental loss, destruction, or damage to your personal information. Microsec uses industry-standard SSL-encryption to enhance the security of sensitive data transmissions in most of our Sites. While we strive to protect your personal information, we need your cooperation to ensure the security of the information you transmit to us. The Internet, however, cannot be guaranteed to be 100% secure, and we cannot ensure or warrant the security of any personal information you provide to us. We urge you to take every precaution to protect your personal information while using the Internet. You should take steps to protect against unauthorized access to your password, phone, and computer by, among other things, signing off after using a shared computer, choosing a robust password that nobody else knows or can easily guess, and keeping your login and password private. Additionally, you should use a secure up-to-date Internet browser, follow the vendor suggestion and apply updates when required. We are not responsible for any lost, stolen, or compromised passwords or for any activity on your account via unauthorized password activity.
Retention of Personal Information
We will retain your personal information as needed to fulfill the purposes for which it was collected. We will retain and use your personal information as necessary to comply with our business requirements, legal obligations, resolve disputes, protect our assets, and enforce our agreements.
Children and Privacy
Microsec encourages parents and guardians to take an active role in their children’s online activities. Microsec’s Sites and Services, ad campaigns, and marketing materials are intended to be used or viewed by adults over 18 years of age. Accordingly, we do not knowingly collect personal information from anyone we know to be under 13 years of age. If we are made aware that information is or has been submitted by or collected from a child below 13, we will immediately delete their personal information.
Third Party and Linked Websites
Our Sites may contain links to websites and services operated by other companies that are outside our control and not covered by this Privacy Statement. Some of these third-party sites may be co-branded with a Microsec logo, even though they are not operated or maintained by Microsec. Microsec does not share your personal information with those websites and is not responsible for their privacy practices. Once you have left our Site, we encourage you to review the privacy statements posted on those websites (and all websites) you visit.
Forums, Blogs, and Chat Rooms
Some of Sites allow our users to publish content via discussion forums, blogs, and other means. Any information that is disclosed in these forums becomes public information, which could be read, collected or used by other users to send you unsolicited messages. We are not responsible for the personally identifiable information you choose to submit in these forums. You should exercise caution when deciding to disclose your personal information.
Microsec may, from time to time, send emails, and/or post on our Site opinions, regarding our Services received from Site participants. Each participant’s opinion expressed is his or her own and should not be considered as reflecting the opinion of Microsec. Note also that your use of these online communication tools is subject to our Terms & Conditions. Personal information given to Microsec may be transferred across state and country borders for data consolidation, storage and simplified information management. To request removal of your personal information from our blog or community forum, contact us at [email protected]. In some cases, we may not be able to remove your personal information, in which case we will let you know if we are unable to do so and why.
Consent to Transfer, Processing and Storage of Personal Information
As Microsec is a global organization, we may transfer your personal information to Microsec in the United States of America, to any Microsec subsidiary worldwide, or to third parties and business partners as described above that are located in various countries around the world. By using our Site or Services or providing any personal information to us, where applicable law permits, you consent to the transfer, processing, and storage of such information outside of your country of residence where data protection standards may be different.
Microsec safeguards and enables the global transfer of personal information in a number of ways:
Microsec participates in and has certified its compliance with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework. We are committed to subjecting all personal data received from European Union (EU) member countries, the United Kingdom and Switzerland, respectively, in reliance on each Privacy Shield Framework, to the Framework’s applicable Principles. To learn more about the Privacy Shield Frameworks, and to view our certification, visit the U.S. Department of Commerce’s Privacy Shield List
Microsec is responsible for the processing of personal data it receives, under each Privacy Shield Framework, and subsequently transfers to a third party acting as an agent on its behalf. Microsec complies with the Privacy Shield Principles for all onward transfers of personal data from the EU and Switzerland, including the onward transfer liability provisions.
With respect to personal data received or transferred pursuant to the Privacy Shield Frameworks, Microsec is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, we may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request.
Where applicable for human resources data, in the context of employment relationship, and employee data that Microsec processes in its role as a service provider, Microsec commits to cooperation with the panel of the EU Data Protection Authorities (DPAs), the state or national data protection authority where the employee works or the Swiss Federal Data Protection and Information Commissioner (FDPIC), as applicable, to investigate unresolved complaints.
Under certain conditions, more fully described on the Privacy Shield website, you may be entitled to invoke binding arbitration when other dispute resolution procedures have been exhausted.
Your California Privacy Rights
Microsec qualifies for the alternative option. We have a comprehensive privacy statement, and provide you with details on how you may either opt-out or opt-in to the use of your personal information by third parties for direct marketing purposes. Therefore, we are not required to maintain or disclose a list of the third parties that received your personal information for marketing purposes during the preceding year.
If you are a California resident and request information about how to exercise your third party disclosure choices, please contact us at [email protected], or write us at Microsec, Inc. Attn: Privacy, 4701 Patrick Henry Dr. Building 2, Ste. 170, Santa Clara, CA 95054 Generally, Microsec processes personal data as a service provider for our customers and partners, many of whom are large enterprises who use the Services to monitor and secure their networks and communications. Microsec generally does not directly communicate or interface with customer personnel whose personal data may processed by the Services. Therefore, it is the responsibility of the enterprise customer to obtain any consents from its personnel that may be necessary for use of personal data in connection with the Services. As part of the Services, Microsec maintains transaction log data only for a limited period, after which the log data is deleted.
Right to Know
Under the CCPA, consumers that are California residents may have the right to disclosure of information about our collection, sale or disclosure for a business purpose of their personal information, including, to the extent applicable, the following:
• The categories of personal information we have collected about such consumer.
• The categories of sources from which such personal information has been collected.
• The categories of third parties with whom we have shared such personal information.
• The business or commercial purpose for collecting or selling such personal information.
• The categories of such consumer’s personal information we have sold or disclosed for a business purpose, by category for each category of third parties to whom the personal information was sold or disclosed, or we will state that we have not sold or disclosed for a business purpose such consumer’s personal information.
• The specific pieces of personal information we have collected about such consumer.
We will provide appropriate disclosures upon receipt of a verifiable request, to the extent required by law (or in our discretion if not required by law) and as permitted by our contracts, confidentiality obligations and applicable laws and regulations. We may not be able to provide all of the information requested, such as, for example: (i) if the personal information was collected for a single one-time transaction and if, in the ordinary course of business, such information was not retained; (ii) we would be required to reidentify or otherwise link any data that, in the ordinary course of business, was not maintained in a manner that would be considered personal information; (iii) the consumer used different browsers, devices or identifying information and we have not linked all such information together; or (iv) if the information was collected, sold or disclosed prior to January 1, 2019 or twelve (12) months prior to the receipt of such verifiable consumer request, whichever is later. If we receive more than two requests for disclosure from a particular consumer within a twelve (12)-month period, we may decline to respond to such additional requests to the extent permitted under applicable law and regulations.
Right to Opt-Out
Under the CCPA, consumers that are California residents may also have the right to opt out of the sale of their personal information by contacting us and providing the verification information and other details we need in order to handle the request appropriately. We may, to the extent permitted under applicable law and regulations, continue to process data: (1) that is not personal information, including aggregate information, deidentified information or publicly available information; (2) where such processing is otherwise permitted under the CCPA, including without limitation where we are acting as a “service provider” under the CCPA, or where the processing of data is otherwise exempt; (3) where such processing is required under applicable law or regulations; (4) to protect our legal rights; (5) to comply with our contractual requirements or other applicable laws or regulations; or (6) where information is not covered by CCPA or another CCPA exception applies. Due to technological limitations, we also may not be able to recognize opt-out requests if a consumer accesses our Site or our software, platforms or applications using a new browser, a new device or new or modified personal information. If you believe we are selling your personal information despite your opt-out request, please contact us at the.
Right to Deletion
Under the CCPA, consumers that are California residents have the right to request deletion of their personal information by contacting us and providing the required verification information and other details we need in order to handle the request appropriately. We may, to the extent permitted under applicable law and regulations, retain and continue to process data: (1) that is not personal information; (2) where such processing is otherwise permitted under the CCPA, including without limitation where we are acting as a “service provider” under the CCPA, or where the data or processing is otherwise exempt under the CCPA; (3) where such processing is required under applicable law or regulations; (4) to protect our legal rights; (5) to comply with our contractual requirements or other applicable laws or regulations, or (6) where another CCPA exception applies.
Right to Non-Discrimination
Under the CCPA, consumers that are California residents have the right not to receive discriminatory treatment for exercising any of the privacy rights conferred by the CCPA, except as permitted under the CCPA. If you believe you have received discriminatory treatment for exercising your CCPA privacy rights, please contact us using the information provided in the “How to Contact Us” section below.
Disclosures Specific to Microsec Services
Microsec may collect some personal information under the direction of its customers and has no direct relationship with the individuals whose personal data it processes. If you are an employee, contractor or user of one of our customers that use our Service, please contact the customer that you interact with directly. Personal information collected through our application can include, but is not limited to User IDs (which can include email addresses), IP addresses, operating system, access methods, applications and cloud services accessed, File Object (like file name or email subject), length of connection, etc. We process the information included in file/social media/website/SaaS service contents to scan for threats, for data loss prevention and other security related functions. We store log records about the results of this processing which does not include any of the contents other than the file name. We do not share or transfer information collected through our application with third parties for advertising/marketing purposes or otherwise unless aggregated and non-directly identifying, to help Microsec perform industry benchmarking of service usage, product usage trending, and for projecting business and operational scaling. We may transfer personal information to companies that help us provide our services. Transfers to subsequent third parties are covered by the service agreements with our customers.
An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data should direct his query to the Microsec’s data privacy representative at the address below (the data controller). Upon receiving a request to remove data from a customer, Microsec will respond within a reasonable timeframe. Microsec will retain personal data we process on behalf of our customers for as long as needed to provide services to our customer. Microsec will retain this personal information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
How to Contact Us
We value your opinions. Should you have questions or comments related to this Privacy Statement or our collection, use, or disclosure of your personal information please contact our privacy team: 4701 Patrick Henry Dr. Building 2, Ste. 170 Santa Clara, CA 95054 [email protected]
Updates to this Microsec Privacy Statement
We may update this Privacy Statement from time to time. If we modify our Privacy Statement, we will post the revised version here, with an updated revision date. You agree to visit these pages periodically to be aware of and review any such revisions. If we make material changes to our Privacy Statement, we may also notify you by other means prior to the changes taking effect, such as by posting a notice on our websites or sending you a notification. By continuing to use our website after such revisions are in effect, you accept and agree to the revisions and to abide by them.