Privacy Policy

CYGILANT PRIVACY POLICY

This policy discloses the privacy practices for www.cygilant.com owned and operated by Cygilant Inc. (“Cygilant”). Cygilant wants to demonstrate its commitment to your privacy and this policy informs you about what personal information is gathered and tracked from this Web Site, how that information is used and your choices regarding use, access, and collection of such information.

Changes We make to this Privacy Policy will be made by updating this page. If the Privacy Policy is updated, We will place the modified version here along with an updated revision date. By continuing to use Our Website, attending Our events, or providing your information for sales and marketing purposes after such revisions are in effect, you accept and agree to the revisions.

Summary

We are committed to safeguarding the privacy of Our website visitors and service users. This privacy policy will explain how Our organization uses the personal data We collect from you when you use Our website.

This policy applies where We are acting as a data controller with respect to the personal data of Our website visitors and service users; in other words, where We determine the purposes and means of the processing of that personal data.

We use cookies on Our website. Insofar as those cookies are not strictly necessary for the provision of Our website and services, We will ask you to consent to Our use of cookies when you first visit Our website.

Our website incorporates privacy controls which affect how We will process your personal data. By using the privacy controls, you can specify whether you would like to receive direct marketing communications and limit the publication of your information. You can access the privacy controls via URL.

In this policy, “we”, “us” and “our” refer to Cygilant.

Topics: (referred to the section on the web page)

 

What Data Do We Collect

Our company collects the following data:

  • Personal identification information (name, email address, telephone number, title, company, country, state, department or job role, IP address, or device ID)
  • Information concerning your company or business, and the nature of your request.

You may choose not to provide information to Us but doing so may limit Our ability to communicate with you or fulfill your requests.

How do we collect your data?

You directly provide Our Company with most of the data We collect. We collect data and process data when you:

  • Use or view Our website via your browser’s
  • Voluntarily complete a customer survey or provide feedback on any of Our message             boards or via
  • Register online or place an order for any of Our products or services.
  • Sign up to a contract that means We provide a service to your organization or otherwise directly communicate with Us.

Our Company may also receive your data indirectly from the following sources:

  • Through the use of third-party partner products that are being used by Our Security Operations team to deliver a service based on the contract committed.
  • We automatically get it when you use, or your device uses, Our Products or Services. For example, We use network tools to collect information like the web browsing information We describe in this Policy.
  • We get it from outside sources like credit reports, marketing mailing lists, and commercially available geographic and demographic information, along with other available information, such as public posts to social networking sites.

How will we use your data?

In this Section We have set out:

(a)    the general categories of personal data that We may process;

(b)    in the case of personal data that We did not obtain directly from you, the source and specific categories of that data;

(c)    the purposes for which We may process personal data; and

(d)    the legal bases of the processing.

We may process data about your use of Our website and services (“usage data“). The usage data may include your IP address, geographical location, browser type and version, operating system, referral source, length of visit, page views and website navigation paths, as well as information about the timing, frequency and pattern of your service use. The source of the usage data is Google Analytics and the website CMS. This usage data may be processed for the purposes of analysing the use of the website and services. The legal basis for this processing is consent OR Our legitimate interests, namely monitoring and improving Our website and services OR contractual where the servicing of client accounts is concerned.

We may process your account data (“account data“). The account data may include your name and email address. The source of the account data is you or your employer. The account data may be processed for the purposes of operating Our website, providing Our services, ensuring the security of Our website and services, maintaining back-ups of Our databases and communicating with you. The legal basis for this processing is consent OR Our legitimate interests, namely the proper administration of Our website and business OR the performance of a contract between you and Us and/or taking steps, at your request, to enter such a contract.

We may process your information included in your personal profile on Our website (“profile data“). The profile data may include your name, address, telephone number, email address, profile pictures, gender, date of birth, relationship status, interests and hobbies, educational details and employment details. The profile data may be processed for the purposes of enabling and monitoring your use of Our website and services. The legal basis for this processing is consent OR Our legitimate interests, namely the proper administration of Our website and business OR the performance of a contract between you and Us and/or taking steps, at you request, to enter such a contract.

We may process your personal data that are provided in the course of the use of Our services (“service data“). The service data may include name, email address, IP, asset ID, location. The source of the service data is you or your employer. The service data may be processed for the purposes of operating Our website, providing Our services, ensuring the security of Our website and services, maintaining back-ups of Our databases and communicating with you. The legal basis for this processing is consent OR Our legitimate interests, namely the proper administration of Our website and business OR the performance of a contract between you and Us and/or taking steps, at your request, to enter such a contract.

We may process information that you post for publication on Our website or through Our services (“publication data“). The publication data may be processed for the purposes of enabling such publication and administering Our website and services. The legal basis for this processing is consent OR Our legitimate interests, namely the proper administration of Our website and business OR the performance of a contract between you and Us and/or taking steps, at your request, to enter such a contract.

We may process information contained in any enquiry you submit to Us regarding goods and/or services (“enquiry data“). The enquiry data may be processed for the purposes of offering, marketing and selling relevant goods and/or services to you. The legal basis for this processing is consent.

We may process information relating to Our customer relationships, including customer contact information (“customer relationship data“). The customer relationship data may include your name, your employer, your job title or role, your contact details, and information contained in communications between Us and you or your employer. The source of the customer relationship data is you or your employer. The customer relationship data may be processed for the purposes of managing Our relationships with customers, communicating with customers, keeping records of those communications and promoting Our products and services to customers. The legal basis for this processing is consent OR Our legitimate interests, namely the proper management of Our customer relationships.

We may process information relating to transactions, including purchases of goods and services, that you enter into with Us and/or through Our website (“transaction data“). The transaction data may include your contact details, your card details and the transaction details. The transaction data may be processed for the purpose of supplying the purchased goods and services and keeping proper records of those transactions. The legal basis for this processing is the performance of a contract between you and Us and/or taking steps, at your request, to enter such a contract and Our legitimate interests, namely the proper administration of Our website and business.

We may process information that you provide to Us for the purpose of subscribing to Our email notifications and/or newsletters (“notification data“). The notification data may be processed for the purposes of sending you the relevant notifications and/or newsletters. The legal basis for this processing is consent OR the performance of a contract between you and Us and/or taking steps, at your request, to enter such a contract.

We may process information contained in or relating to any communication that you send to Us (“correspondence data“). The correspondence data may include the communication content and metadata associated with the communication. Our website will generate the metadata associated with communications made using the website contact forms. The correspondence data may be processed for the purposes of communicating with you and record-keeping. The legal basis for this processing is Our legitimate interests, namely the proper administration of Our website and business and communications with users.

We may process your personal data. This data may include your name, email address, telephone number, address, age, professional title. The source of this data is subscribing to Our mailing lists or as a client of Cygilant. This data may be processed for marketing of products and services and to inform you of Our latest news and blog articles. The legal basis for this processing is consent OR Our legitimate interests, namely as Our existing clients OR the performance of a contract between you and Us and/or taking steps, at your request, to enter such a contract.

We may process any of your personal data identified in this policy where necessary for the establishment, exercise or defence of legal claims, whether in court proceedings or in an administrative or out-of-court procedure. The legal basis for this processing is Our legitimate interests, namely the protection and assertion of Our legal rights, your legal rights and the legal rights of others.

We may process any of your personal data identified in this policy where necessary for the purposes of obtaining or maintaining insurance coverage, managing risks, or obtaining professional advice. The legal basis for this processing is Our legitimate interests, namely the proper protection of Our business against risks.

In addition to the specific purposes for which We may process your personal data set out in this section, We may also process any of your personal data where such processing is necessary for compliance with a legal obligation to which We are subject, or to protect your vital interests or the vital interests of another natural person.

Please do not supply any other person’s personal data to Us, unless We prompt you to do so.

When Our Company processes your order, it may send your data to, and use the resulting information from, credit reference agencies to prevent fraudulent purchases.

Notice Regarding California Consumer Privacy Act (CCPA)

To the extent you disclose personal information or personal data of California consumers or households to Us to provide Services to you, We may be considered a “service provider” as defined in the CCPA Section 1798.140(v). We acknowledge and agree that you disclose personal information and personal data to Us solely for: (i) a valid business purpose; and (ii) for Us to perform or provide Our services as set forth in an agreement by and between you and Us. We are prohibited from: (i) selling personal information and personal data if the California consumer or household has opted out of the sale of their personal information or personal data; (ii) retaining, using, or disclosing personal information or personal data for a commercial purpose other than providing services to you; (iii) retaining, using, or disclosing the personal information or personal data outside of the direct business relationship between Us and you; or (iv) using the personal information or personal data to provide services to another person or entity.  We hereby certify that We understand and will comply with these obligations and restrictions in accordance with the CCPA. Furthermore, We agree to reasonably assist you in responding to any requests from a California consumer or household exercising their rights under the CCPA. For purposes of this Notice, “Personal Information” is defined in CCPA Section 1798.140(o). Further, this Notice is effective for the term of the Agreement by and between you and Us.

International transfers of your personal data

In this Section, We provide information about the circumstances in which your personal data may be transferred to countries outside the European Economic Area (EEA).

We and Our other group companies have offices and facilities in the UK and US. Transfers to each of these countries will be protected by appropriate safeguards.  We may store, access or use your personal data in the United States or in any other country where We or Our service providers do business or maintain facilities. Therefore, We may transfer personal data between different jurisdictions. We transfer personal data in compliance with the General Data Protection Regulation and other applicable law. For example, We may use standard contractual clauses issued by the European Commission for data transfers to data controllers and data processors established outside of the European Union, European Economic Area, Switzerland, and the UK.

The hosting facilities for Our website are situated in the US. The European Transfers to each of these countries will be protected by appropriate safeguards, namely the use of standard data protection clauses.

We have several professional partners located in both the United States and the United Kingdom and are serviced under the USA and UK Laws, respectively.  For a full list, please visit: https://www.cygilant.com/cygilantpdf/Cygilant%20Third%20Party%20Software.pdf.

You acknowledge that personal data that you submit for publication through Our website or services may be available, via the internet, around the world. We cannot prevent the use (or misuse) of such personal data by others.

Retaining and deleting personal data

This Section sets out Our data retention policies and procedure, which are designed to help ensure that We comply with Our legal obligations in relation to the retention and deletion of personal data.

Personal data that We process for any purpose or purposes shall not be kept for longer than is necessary for that purpose or those purposes.

We will retain your personal data as follows:

(a)    Your personal data, including your name, email address, telephone number, address, age, professional title will be retained for a minimum period of 12 months following your initial enquiry on Our website, and for a maximum period depending on the nature of Our processing requirements. For example, if you subscribe to any of Our mailing lists you will remain subscribed until such times as you unsubscribe or request that your data be deleted.

In some cases, it is not possible for Us to specify in advance the periods for which your personal data will be retained. In such cases, We will determine the period of retention based on the following criteria:

(a)    the period of retention of your personal data will be determined based on your subscription preferences. You will remain subscribed to the Cygilant emails, blogs, offers and any other emails We offer a subscription to, until such times as you actively unsubscribe from one or all of the above.

Notwithstanding the other provisions of this Section, We may retain your personal data where such retention is necessary for compliance with a legal obligation to which We are subject, or in order to protect your vital interests or the vital interests of another natural person.

Amendments

We may update this policy from time to time by publishing a new version on Our website.

You should check this page occasionally to ensure you are happy with any changes to this policy.

We may notify you of significant changes to this policy by email.

Your data protection rights?

Our company would like to make sure you are fully aware of all your data protection rights. Every user is entitled to the following:

The right to access – You have the right to request Our company for copies of your personal data. We may charge you a small fee for this service.

The right to rectification – You have the right to request that Our company correct any information you believe is inaccurate. You also have the right to request Our Company to complete information you believe is incomplete.

 The right to erasure – You have the right to request that Our company erase your personal data, under certain conditions.

The right to restrict processing – You have the right to request that Our company restrict the processing of your personal data, under certain conditions.

The right to object to processing – You have the right to object to Our company’s processing of your personal data, under certain conditions.

The right to data portability – You have the right to request that Our company transfer the data that We have collected to another organization, or directly to you, under certain conditions.

If you make a request, We have one month to respond to you. If you would like to exercise any of these rights, please contact Us at Our email:

Call Us at: 1-877-564-7787
Or email us: privacy@cygilant.com

About cookies

Cookies are text files placed on your computer to collect standard Internet log information and visitor behavior information. When you visit Our websites, We may collect information from you automatically through cookies or similar technology.

Cookies may be either “persistent” cookies or “session” cookies: a persistent cookie will be stored by a web browser and will remain valid until its set expiry date, unless deleted by the user before the expiry date; a session cookie, on the other hand, will expire at the end of the user session, when the web browser is closed.

Cookies do not typically contain any information that personally identifies a user, but personal information that We store about you may be linked to the information stored in and obtained from cookies.

For further information, visit allaboutcookies.org.

How do we use cookies?

Our Company uses cookies in a range of ways to improve your experience on Our website, including:

  • Cookie consent
  • Keeping you signed in
  • Understanding how you use Our website
  • Security
  • Advertising: Google Analytics

What types of cookies do we use?

There are several different types of cookies, however, Our website uses:

  • Functionality – Our Company uses these cookies so that We recognize you on Our website and remember your previously selected These could include what language you prefer and location you are in. A mix of first-party and third-party cookies are used.
  • Advertising – Our Company uses these cookies to collect information about your visit to Our website, the content you viewed, the links you followed and information about your browser, device, and your IP address. Our Company sometimes shares some limited aspects of this data with third parties for advertising purposes. We may also share online data collected through cookies with Our advertising partners. This means that when you visit another website, you may be shown advertising based on your browsing patterns on Our website.

How to manage cookies

You can set your browser not to accept cookies, and the above website tells you how to remove cookies from your browser.

Most browsers allow you to refuse to accept cookies and to delete cookies. The methods for doing so vary from browser to browser, and from version to version. You can however obtain up-to-date information about blocking and deleting cookies via these links:

(a)    https://support.google.com/chrome/answer/95647?hl=en (Chrome);

(b)    https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences (Firefox);

(c)    http://www.opera.com/help/tutorials/security/cookies/ (Opera);

(d)    https://support.microsoft.com/en-gb/help/17442/windows-internet-explorer-delete-manage-cookies (Internet Explorer);

(e)    https://support.apple.com/kb/PH21411 (Safari); and

(f)     https://privacy.microsoft.com/en-us/windows-10-microsoft-edge-and-privacy (Edge).

Blocking all cookies will have a negative impact upon the usability of many websites.

If you block cookies, you will not be able to use all the features on Our website.

Privacy policies of other websites

Our website and other Cygilant services may include links and/or may allow you to link the solutions to third-party sites, products or services. Please note that your access to and use of these third-party sites, products or services may result in the collection of or sharing of your information, including Personal Information. These third-parties have separate and independent privacy policies, and We are not responsible or liable for your interactions with such third-parties (as further described in Our Terms of Service). The option to link to such third-party sites, products or services from any Cygilant services is not an endorsement or representation regarding any third-party sites, products or services, and We encourage you to review and understand such third-parties privacy policies.

How to contact us

If you have any questions about Our company’s privacy policy, the data We hold on you, or you would like to exercise one of your data protection rights, please do not hesitate to contact Us.

Email Us at: privacy@cygilant.com
Call us:  1-877-564-7787
Or write to Us at: Cygilant Inc., 2400 District Avenue, Suite 320, Burlington, MA, United States

Data protection officer

Cygilant is not legally required to have a Data Protection Officer, however We do take adherence to the policies of the GDPR seriously and have provided a dedicated email request service that you can use to make a data request.

To enquire about your data please use the contact form below.

 

Privacy Policy

Name(Required)