{

Privacy Policy

We are big fans of privacy. Obviously.

Our Privacy Philosophy

Effective Date: August 20, 2018

Critical Informatics, Inc. d/b/a CI Security (“CI”, “we”, “us”, “our”) is committed to protecting the privacy of our site visitors and the data subjects whose personal information we may be exposed to in performing our services. This Privacy Policy explains how we collect information about you, how we use it, and how you can request that this information be updated, corrected or removed or its use modified. We reserve the right to amend or otherwise modify this Privacy Policy at any time, so please re-visit this page periodically to check for updates. Revisions to this Privacy Policy will be effective when posted on this site. The date of last revision is shown at the top of the front page of this document. In addition, we may supplement our current Privacy Policy with additional notices of our information practices specific to certain programs or activities.

Contents



Collection of Information

We collect information when, for example, you use our website or mobile features, purchase managed detection and response or consulting services from us, register for promotions, events and newsletters we sponsor (together, “Services”) or otherwise provide us information about yourself. The type of information we collect may include:

  • Account information we may collect includes your name, postal and e-mail address, phone number, social media username(s), and any information you may share about your interests and preferences.
  • Transaction information we may collect includes account information as well as your transaction history, if any.
  • Login credentials we may collect include your user name, password and other authentication data elements.

We may also automatically collect information about you when you access or use our Services. Automatically collected data may include log-in information (browser type, access date & time, publisher IP-address, etc.), device information (hardware type/model, operating system and CI-site browsing history) as well as your location information, if required. In addition, we may use cookies, web beacons, and other tracking technologies to collect information about you and your interaction with our Services, including information about your behavior on our website and other interaction with our Services. We use this information in one or more of the ways described in the "Use of Information" section below. Most web browsers are set to accept cookies by default, but typically you can change your browser settings to remove or reject cookies.

Use of Information

The information we collect is generally used to provide you with the Services, personalize them to you and maintain and improve their quality, monitor and analyze your use, and understand your needs so that we can serve you better. From users who are required to login to gain access to particular website features or Services, we collect and use usernames, passwords and other login credentials to verify user authorization. We may also use your information to contact you about changes, additions and updates to Service features and opportunities, as well as to provide any notices required by applicable law. If you prefer not to receive communications from us, we make it easy for you to let us know. You can contact us at any time via the process noted in Contact Us below to request an update to or removal of your personal information on file or modification of our use of your information (see, Your Choices below).

Sharing of Information

We may share certain personal information you provide us outside of the CI family. For example:

  • We may permit certain trusted third parties to track usage and analyze data such as the source address of a page request, the related IP address or domain name, the date and time of the page request, the referring website (if any) and other parameters in the URL. This is collected in order to better understand our Service usage and enhance performance of our Services. We may also use third parties to host or operate various Service features, deploy emails, analyze data, provide search results and enable links among other things.
  • We may also provide access to data that include your personal information in connection with a contemplated or actual banking, capitalization, insuring, sale or other strategic initiative or transaction affecting title in or ownership of all or part of our business or assets, including for the purposes of determining whether to proceed with the transaction or fulfilling any records or other reporting requirements to relevant third parties. In the event of any such transaction, our title in and/or possession of your personal information, among other things, may be transferred or assigned.
  • We also may share your information when you specifically ask or authorize us to do so, or when we conclude disclosure is reasonably necessary to comply with any applicable law, regulation, legal process or governmental request, to enforce our agreements and policies, and where circumstances otherwise warrant doing so.

Social Sharing Features

The Services may offer social sharing features or other integrated tools, which let you share actions you take on the Services with other media, and vice versa.  The use of such features enables the sharing of information with your friends or the public, depending on the settings you establish with the third-party providers of the social sharing features you select.  Your use of social sharing features offered by the Services, if any, is governed by our Terms of Use and this Privacy Policy. For more information about the purpose and scope of data collection and processing in connection with third-party social sharing platforms, please visit the third-party providers’ privacy policies.

Security

We take robust technical and organizational measures to secure, administer and store your personal information to reduce the risk of loss, misuse, unauthorized access, disclosure or alteration. Some of the safeguards we use are firewalls and data encryption, physical access controls, and information access authorization controls. That said, data transmission over the Internet is not 100% secure. Although we use robust measures, which in no event are less than industry standard security measures, we do not guarantee against the loss, misuse or alteration of any information during its delivery or under our control. We thus urge you to always take care how you handle and disclose your personal information over the Internet. If you suspect that the security of your personal data has been compromised, please report your concerns to us via the process noted in the Contact Us section below. And of course, we will also notify such customers and authorities as required by applicable national laws of a security incident without undue delay after becoming aware of the security incident.

Data Controller and Data Protection Officer

We collect, process and store the personal information you provide us on servers located in the United States of America. In some instances, we may be the processor of your data under applicable national laws, in others we serve as the data controller under such laws. In all instances, you are engaging with Critical Informatics, Inc., 100 S. King Street, Suite 280, Seattle, WA 98104. We have appointed a data protection officer who may be contacted via the contact information noted in the Contact Us section below

Internet Technologies Used

Cookies, web beacons and other relevant Internet technologies are used on our Services to allow us to accomplish the uses set out in this Privacy Policy as well as to deliver Service elements and to keep track of your information. These small pieces of program code or “files” reside on your computer hard drive and browser and can be removed. If you desire to remove the technologies you may do so, but this may compromise your use of our Services. You can opt out of cookies or other Internet technologies used by disabling these features in your browser program or device settings. Consult your browser’s “Help” menu, or your device’s settings menu, for assistance in changing cookie settings or removing cookie files.

Children’s Privacy

We are very sensitive to the issue of children’s privacy. Our Services are neither developed for, nor directed at, children under the age of consent according to applicable national laws. If you believe your child has provided us with personal information, or otherwise registered with one of our Services and would like to have this information removed, please contact our data protection officer via the process noted in the Contact Us section below for assistance.

Our Services may contain links to third-party owned or operated websites. When you access these external websites, the providers of the websites may have access to certain information about you. Please be aware that once you have left our Services, we are not responsible for the privacy practices or the content of any websites we do not control directly, and the collection, use and disclosure of information about you by these entities will be subject to the privacy policies of those other websites.

Your Choices

Your Information. You have choices about how we use your personal information to communicate with you, to send you relevant information, how we provide you with Services, and whether you want to continue as a user of our Services.

  • You have the right to know what personal information we maintain about you
  • We will provide you with a copy of your personal information in a structured, commonly used and machine-readable format on request
  • If your personal information is incorrect or incomplete, you have the right to ask us to update it
  • You have the right to object to our processing of your personal information
  • You can also ask us to delete or restrict how we use your personal information, but this right is determined by applicable law and may impact our delivery of and your access to some or all of our Services

You are responsible for providing truthful and accurate personal information when requesting a particular Service offering, if any, that requires such information. Please keep in mind that once you submit a Service request, you may not be able to change or remove the information once it has been processed and delivered to an intended destination that is beyond our control.

We will honor any regulatory right you might have to access, modify or erase your personal information. To request access, please contact us following the instructions in the Contact Us section below. Where you have a regulatory right to request access or request the modification or erasure of your personal information, we can still withhold that access or decline to modify or erase your personal information in some cases in accordance with applicable national laws.

If you request that we stop processing some or all of your personal information or you withdraw (where applicable) your consent for our use or disclosure of your personal information for purposes set out in this Privacy Policy, we might not be able to provide you some or all of the Services and customer support that we offer our users and are authorized under this Privacy Policy.

Newsletter Communications. You may opt out of receiving newsletter communications from CI by following the instructions in those communications or by contacting CI customer support at privacy@criticalinformatics.com. If you opt out of receiving promotional communications, we may still send you non-promotional emails that, for example, relate to your account or to Service alerts.

Location Information. You also have the ability to turn location-based services, if any, on and off by adjusting the settings of your Internet browser or mobile device, or by following the standard uninstall process and removing all CI applications, if any, from your mobile device.

Notwithstanding the foregoing or any other provision in this Privacy Policy, you may not be permitted by applicable national laws to withdraw your permission or consent to certain necessary uses and disclosures of your personal information, which may include without limitation, providing Services and/or product safety and recall announcements and services, maintaining reasonable business and transaction records, and disclosures required by applicable laws. In addition, we may be required or permitted under various national laws to collect, use or disclose your information without your consent, for example, to comply with a valid subpoena, court order or governmental inquiry, or to collect a debt owed to us. We expressly reserve all rights under applicable national laws described in this paragraph.

Third Party Analytics

We allow third parties to provide analytics services. These third parties may use the same or similar technologies as us to collect the same or similar information that we collect in order to analyze and track data, determine the popularity of certain content, align content with your interests and to better understand, generally, your online activity. This Privacy Policy does not apply to, and we are not responsible for, third party technologies and we encourage you to check the privacy policies of these third parties to learn more about their privacy practices.

Your California Privacy Rights

California law permits residents of California to request certain details about how their information is shared with third-parties for direct marketing purposes. We do not sell, license, rent or otherwise share your information with third-parties for purposes of direct marketing.

Changes to this Privacy Policy

CI may change this Privacy Policy from time to time in its sole discretion. Each time changes are made, we revise the Effective Date above. We encourage you to periodically review the Privacy Policy to insure you have the most current version and to stay informed about our information practices and the ways you can help protect your privacy.

Contact Us

If you want to update or access to your personal information, if you have a question or complaint about this Privacy Policy, our global privacy standards, or our information handling practices, or if you have any questions, comments or concerns about any other data- or privacy-related matter, please contact our data protection officer at privacy@criticalinformatics.com. You may also direct your data- or privacy-related requests, comments or questions to the following address:

CI Security by Critical Informatics
100 S. King Street, Suite 280
Seattle, WA 98104
Attention: Data Protection Officer