Privacy Policy

Introduction

When it comes to your Personal Data (“Personal Data”), Silent Security Solutions, Inc (“Silent Security Solutions”, “we”, “us”), as well as our employees, contractors and service providers are committed to providing you with transparency and choice. Silent Security Solutions is committed to providing reliable and trustworthy information to our customers using a variety of means, which are supported by a comprehensive privacy program.

This Privacy Statement (“Statement”) provides an overview of how Silent Security Solutions, via our websites, products and services, handle privacy, and how we protect your Personal Data.

This Privacy Statement applies to our websites, products and services that link to or reference this Statement and describes how we handle Personal Data and the choices available to you regarding collection, process, access, and how to update, correct and delete your Personal Data. Additional information on our Personal Data practices may be provided in offer descriptions, contractual terms, supplemental privacy statements, or notices provided prior to or at the time of data collection. Certain Silent Security Solutions products and services may have additional specific privacy notices that describe how we handle Personal Data for those products and services. If any other privacy notice conflicts with this Privacy Statement, such specific notice will take precedence.

What this statement covers

This Statement describes the following general aspects of our collection and processing of Personal Data

concerning you. Please refer to our complementary product and service privacy notices for additional detail specific to those products and services.

• Personal Data we collect;
• Legal bases and purposes for processing your Personal Data;
• How we disclose your Personal Data;
• Cross-border transfers of Personal Data;
• How we protect your Personal Data;
• Children’s privacy
• How long we retain your Personal Data;
• Your rights;
• Contact us; and
• Changes to this statement.

Personal Data We Collect

When you visit and use our websites, products and services, we may collect data or ask you to provide certain data, including Personal Data, about you as you use our websites, products and services and interact with us, for the purpose of helping us manage our relationship with you. "Personal Data" is any data relating to an identified or identifiable individual, and may include name, address, email address, phone number, login (account number, password), marketing preferences, social media account, or payment card number. If we link other data with your Personal Data, we will treat that linked data as Personal Data. We also collect Personal Data from trusted third-party sources and engage third-parties to collect Personal Data to assist us. This data may include:

• Contact details, such as name, mailing address, email address and      phone number;
• Shipping and billing data, including credit card and payment data;
• Your transaction history;
• Data you provide to us to receive technical assistance or during      customer service interactions;
• Data about other people that you may referred to us in regard to any      program or services we provide;
• Data about your computer or device, including browser type and      settings, IP address and traffic data relating to your Internet      connection; and

When you choose to provide us with Personal Data about third-parties, we will only use this data for the specific reason for which you elect to provide it. It is your responsibility to ensure that when you disclose to Silent Security Solutions Personal Data of individuals other than yourself – such as your contacts, your users or other third-parties – you abide by applicable privacy and data security laws, including informing users and third-parties that you are providing their Personal Data to Silent Security Solutions, informing them of how it will be transferred, used, or processed, securing appropriate legal permissions and safeguards required for such disclosures, transfers and processing. If you choose to provide Silent Security Solutions with a third-party's Personal Data (such as name, email, and phone number), you represent that you have the third-party's permission to do so. Examples include forwarding reference or sending job referrals. You also acknowledge that when we interact with such third-party individuals whose Personal Data you share with us, it is our duty to inform them that we obtained their Personal Data from you. Where applicable, third-parties may unsubscribe from any future communication following the link provided in the initial message or as indicated in the “Contact Us” section of this Statement. If you believe that one of your contacts has provided us with your Personal Data and you would like to request that it be removed from our database, please contact us at Privacy@silentsecurity.net

If applicable, for more information about what Personal Data we process on a product basis, please refer to the relevant product and service privacy notices accessible below.

Legal Bases and Purposes For Processing Your Personal Data

We use your Personal Data for the purposes outlined below as well as in the relevant product notices on the following grounds:

On the basis of fulfilling our contract with you or entering into a contract with you on your request, in order to:

• Create and manage your account with us when needed to access      communications and services;
• Verify your identity and entitlement to products or services, when you      contact us or access our services;
• Update you on the status of your orders;
• Manage your subscriptions; and
• Provide you with technical and customer support.

On the basis of your consent, in order to:

• Subscribe you to our blog, send product updates or technical alerts;
• Send you marketing communications and information on new products,      services and assets;
• Communicate with you about, and manage your participation in contests,      offers or promotions;
• Solicit your opinion or feedback, provide opportunities for you to      test software; and
• Provide you with interest-based ads on sites other than our own.

On the basis of legal obligations, we are obligated to, for instance, keep records for tax purposes or answer compelling court orders and provide information to public authorities.

On the basis of our legitimate interest in the effective delivery of our products, services and communications to you as well as to our other customers and partners, in order to:

• Communicate commercial promotions and provide quotes for our products      and services;
• Research and implement product improvements and product updates;
• Evaluate and improve the performance and quality of our products,      services and websites;
• Provide you with a customized experience when you visit our websites;
• Allow interoperability within our applications;
• Secure our systems and applications;
• Allow for the provisioning of services;
• Enforce our legal rights; and
• Share your data with partners for sales conversions and lead      generation.

On the basis of our legitimate interest, we and our third-party partners, may combine the data we collect from you over time from our websites, products and services with data obtained from other sources. We combine your data with other sources to improve user experience on our websites and services we provide. In some instances, Silent Security Solutions and the third-parties we engage may automatically collect data through cookies, web logs and other similar applications. This data is used to better understand and improve the usability, performance, and effectiveness of our websites, products and services to help tailor content or offers for you. Please reference the "Tracking Technologies, Cookies & Do-Not-Track" section below for more information.

On the basis of legitimate interest, we process Personal Data for network and information security purposes. Pursuant to Recital (49) of the EU General Data Protection Regulation (“GDPR”), organizations have a recognized legitimate interest in collecting and processing Personal Data to the extent strictly necessary and proportionate for the purposes of ensuring network and information security. According to said Recital (49), network and information security means the ability of a network or of an information system to resist events, attacks or unlawful or malicious actions that could compromise the availability, authenticity, integrity and confidentiality of stored or transmitted data, or the security of the related services offered by, or accessible via those networks and systems.

Both as an organization in our own right, and as a provider of cybersecurity technologies and services which may include hosted and managed computer emergency and security incident response services, it is in our legitimate interests as well as in our customers’, as laid down in Article 6(1)(f) of the GDPR, to collect and process Personal Data to the extent strictly necessary and proportionate for the purposes of ensuring the security of our own, and of our customers’ networks and information systems. This includes the development of threat intelligence resources aimed at maintaining and improving on an ongoing basis the ability of networks and systems to resist unlawful or malicious actions and other harmful events (“cyber-threats”). The Personal Data we process for said purposes includes, without limitation, network traffic data related to cyber-threats such as:

• database activity logs (e.g., of cyber-threats and unauthorized      activities);
• sender email addresses (e.g., of sources of SPAM);
• recipient email addresses (e.g., of victims of targeted email      cyberattacks);
• reply-to email addresses (e.g., as configured by cybercriminals      sending malicious email);
• filenames and execution paths (e.g., of malicious or otherwise harmful      executable files attached to emails);
• URLs and associated page titles (e.g., of web pages broadcasting or hosting      malicious or otherwise harmful contents); and/or
• IP addresses (e.g., of web servers and connected devices involved in      the generation, distribution, conveyance, hosting, caching or other      storage of cyber-threats such as malicious or otherwise harmful contents).

Depending on the context in which such data is collected, it may contain Personal Data concerning you or any other data subjects. However, in such cases, we will process the data concerned only to the extent strictly necessary and proportionate to the purposes of detecting, blocking, reporting (by removing any personally identifiable elements) and mitigating the cyber-threats of concern to you, and to all organizations relying on our products and services to secure their networks and systems. When processing Personal Data in this context, we will not seek to identify a data subject unless strictly indispensable to the remediation of the cyber-threats concerned, or required by law.

If you believe that your Personal Data was unduly collected or is unduly processed by Silent Security Solutions for such purposes, please refer to the “Your Rights” and “Contact Us” sections below. Please be aware that if it is determined that Personal Data concerning you is processed by Silent Security Solutions because it is necessary for the detection, blocking or mitigation of convicted cyber-threats, in line with GDPR Article 21(1), objection, rectification or erasure requests may be rejected. It is our compelling legitimate interests to protect our organization and our customers from cyber threats, and therefore our interest may override your objection, rectification or erasure requests until you demonstrate the measures necessary to dissociate your Personal Data from any identified cyber-threat.

Marketing

Silent Security Solutions has a legitimate interest in promoting our commercial offerings and to optimize the delivery of communications to that effect to our customers and audiences that are most likely to find them relevant. We will therefore collect and process data to that end as explained below. However, where we are legally required to obtain your consent to provide you with certain marketing materials, we will only provide you with such marketing materials where we have obtained such consent from you. You can unsubscribe to any marketing materials we provide by send us an email to privacy@silentsecurity.net.

Messages

In addition to the purposes described above, we may, in compliance with applicable legal requirements, use your Personal Data to provide you with advertisements, promotions and information about products and services tailored to you and your needs. This may include demographic data or trend data provided by third-parties, where permitted. Contact details, including phone numbers, mail and email addresses, may be used to contact you. If you do not want us to use your Personal Data in this way, you can simply choose not to consent to such use of your data on the webpages and/or forms through which such Personal Data is collected. You can also exercise this right at any time by contacting us as explained below.

Interest-based ads

We may provide your data including the data about your interests in our products to Third-Parties for the purposes of serving you more relevant ads. Where we provide you with interest-based ads on a site other than our own, we do not track your other activities on that site. If you click on our ads, we will know only the domain you came from. For more information, please see the Tracking Technologies, Cookies & Do Not Track section below.

Tracking technologies, cookies & do-not-track

Cookies

A cookie is a commonly used automated data collection tool. Cookies are small text files that are placed on your computer or device by websites that you visit or HTML-formatted emails you open, to make websites work, or work more efficiently. We and our partners may use cookies, web beacons, pixel tags, scripts or other similar technologies on our websites or emails to:

• Ensure the proper functioning of our websites and the proper delivery      of legitimate electronic communications;
• Tailor information presented to you based on your browsing      preferences, such as language and geographical region;
• Collect statistics regarding your website usage;
• Provide us with business and marketing information; and
• In some cases, to enable a third-party to deliver future advertising      for our products and services to you when you visit certain websites owned      by third-parties.

We use different kinds of cookies:

• Essential cookies are      necessary to provide you with services and features available through our      websites. Without these cookies, services you may need, cannot be      provided.
• Analytics or customization cookies collect data that is either used in aggregate form to help us      understand how the website is being used or how effective our marketing      campaigns are, or to help us customize the website for you.
• Advertising cookies and tracking scripts are used to make advertising messages more relevant to you. They      perform functions like preventing the same ad from continuously      reappearing, ensuring that ads are properly delivered and, in some cases,      featuring ads based on your interests. If your website includes a cookie      management tool, you will find a hover button at the bottom of your      screen.

If you do not wish to receive cookies you may be able to refuse them by not agreeing to the use of them upon entering the website. If you do so, we may be unable to offer you some of our functionalities, services or support. If you have previously visited our websites, you may also have to delete any existing cookies from your browser.

We gather certain data automatically and store it in log files. This data may include internet protocol (IP) addresses, browser type, internet service provider (ISP), referring/exit pages, operating system, date/time stamp, and/or clickstream data. We may combine this log data with other data we collect about you. We do this to improve services we offer you, to improve marketing, analytics, or site functionality.

Do-Not-Track

There are different ways you can prevent tracking of your online activity. One of them is setting a preference in your browser that alerts websites you visit that you do not want them to collect certain data about you. This is referred to as a Do-Not-Track (“DNT”) signal. Please note that our websites may not recognize or act in response to DNT signals from web browsers. There is currently no universally-accepted standard for what a company should do when a DNT signal is detected. In the event a final standard is established, we will assess how to appropriately respond to these signals. For more detailed information about cookies, Do-Not-Track and other tracking technologies, please visit www.allaboutcookies.org and https://allaboutdnt.com.

Third-party data collection

Cookies may also be placed by third-parties to deliver tailored information and content which may be of interest to you, such as promotions or offerings, when you visit third-party websites after you have left our websites. We do not permit these third-parties to collect Personal Data about you beyond such cookies (e.g., email address) on our site.

Social media features and widgets

Our websites include social media features. These features are usually recognizable by their third-party brand or logo and may collect your IP address, which page you are visiting on our websites, and set a cookie to enable the feature to work properly. Social media features and widgets are either hosted by a third-party or hosted directly on our site. Your interactions with any such third-party feature is governed by the privacy policy of the company providing it.

We also use third-party analytics services on this site, such as those of Google Analytics. The analytics providers that administer these services use technologies such as cookies, web server logs and web beacons to help us analyze your use of our Sites. The information collected through these means (including IP address) may be disclosed to these analytics providers and other relevant third parties who use the information, for example, to evaluate use of the Sites. To learn more about these analytics services and how to opt out, please visit the following sites and any sites contained in the country-specific addenda: Google Analytics: https://tools.google.com/dlpage/gaoptout

How We Disclose Your Personal Data

We do not sell, lease, rent or give away your Personal Data. We only disclose your Personal Data within Silent Security Solutions, with our partners, with service providers that process data on our behalf and with public authorities, and/or as required by applicable law. Processing is only undertaken for the purposes described in this Statement and the relevant product and service privacy notices. If we disclose your Personal Data, we require its recipients to comply with adequate privacy and confidentiality requirements, and security standards.

Service providers processing data on our behalf

We may use contractors and service providers to process your Personal Data on our behalf for the purposes described in this Statement and the relevant product and service privacy notices accessible below. We contractually require service providers to keep data secure and confidential and we do not allow our data processors to disclose your Personal Data to others without our authorization, or to use it for their own purposes. However, if you have an independent relationship with these service providers their privacy statements will apply to such relationships. Such service providers may include in particular contact centers, payment card processors and marketing/survey/analytics suppliers.

Public authorities

In certain instances, it may be necessary for Silent Security Solutions to disclose your Personal Data to public authorities or as otherwise required by applicable law. No Personal Data will be disclosed to any public authority except in response to:

• A subpoena, warrant or other process issued by a court or other public      authority of competent jurisdiction;
• A legal process having the same consequence as a court-issued request      for data, in that if Silent Security Solutions were to refuse to provide      such data, it would be in breach of local law, and it or its officers,      executives or employees would be subject to liability for failing to honor      such legal process;
• Where such disclosure is necessary for Silent Security Solutions to      enforce its legal rights pursuant to applicable law;
• A request for data with the purpose of identifying and/or preventing      credit card fraud; or
• Where such disclosure of Personal Data is necessary to prevent or      lessen a serious and imminent threat of bodily or other significant harm      to the data subject or other individuals potentially concerned.

Cross-Border Transfers of Personal Data

To conduct our business, and in accordance with this Statement, your Personal Data may be transferred to Silent Security Solutions in the United States, and to subsidiaries and third-party vendors of Silent Security Solutions located worldwide. All transfers will occur in compliance with data transfer requirements of applicable laws and regulations. Where Personal Data originating from the European Economic Area is transferred to Silent Security Solutions entities or to third-party vendors engaged by Silent Security Solutions to process such Personal Data on our behalf who are located in countries that are not recognized by the European Commission as offering an adequate level of Personal Data protection, such transfers are covered by alternate appropriate safeguards, specifically standard data protection clauses adopted by the European Commission. If applicable to you, you may obtain copies of such safeguards by contacting privacy@silentsecurity.net.

How We Protect Your Personal Data

Safeguards

We take reasonable and appropriate administrative, technical, organizational, and physical security and risk management measures in accordance with applicable laws to ensure that your Personal Data is adequately protected against accidental or unlawful destruction, damage, loss or alteration, unauthorized or unlawful access, disclosure or misuse, and all other unlawful forms of processing of your Personal Data in our possession.

Securing Personal Data is an important aspect of protecting privacy. Our security organization applies policies, standards and supporting security controls at the level appropriate to the risk level and the services provided. In addition, appropriate security controls are communicated to application owners and technology teams across the business to support secure development of products and a secure operating environment.

We pay specific attention to the protection of Personal Data and the risks associated with processing this data.

Breach responses

Silent Security Solutions takes every reasonable measure to prevent Personal Data breaches. When these do occur, we have a process in place to take swift action within our responsibilities. These actions will be consistent with the role we have in relation to the products, services or processes affected by the breach. In all cases, we will work together with affected parties to minimize effects, to make all notifications and disclosures that are required by applicable law or otherwise warranted, and to take action to prevent future breaches. We systematically outline responsibilities in case of Personal Data breaches in our contracts, both with customers as well as with our vendors.

Storage of your personal data

The data we collect from you may be stored, with risk-appropriate technical and organizational security measures applied to it, on in-house as well as third-party servers in the United States, as well as anywhere Silent Security Solutions or our vendors operate.

Links to other websites

Our websites may contain links to other websites, which are owned or operated by other companies. If you choose to visit any linked websites, we encourage you to review their privacy statements carefully, as they may differ from ours. We are not responsible for the content or privacy practices of websites that are owned by companies that are not within Silent Security Solutions Corporation. Our websites may also link to co-branded websites that are maintained by Silent Security Solutions and one or more of our business partners, who are collecting your Personal Data pursuant to their own privacy practices. We encourage you to read the privacy statements on any co-branded site to which you link for information on the privacy practices of that site.

Children’s Privacy

Our websites are not directed to, nor do we knowingly collect data from, children under 13 years of age, except where explicitly described otherwise in the privacy notices of products and services designed specifically to assist you by providing child online protection features. In such cases, we will only collect and process Personal Data related to any child under 13 years of age which you choose to disclose to us or otherwise instruct us to collect and process. Please refer to the specific applicable notices for important additional information.

How Long We Retain Your Personal Data

We will hold your Personal Data on our systems for the longest of the following periods: 1. As long as necessary to maintain our ongoing business relationship with you; 2. For as long as necessary for the purpose for which we collected it or for which you supplied it to us in accordance with any product or service relevant activity or process; 3. Any retention period that is necessary to comply with our legal obligations, to resolve disputes, to enforce our agreements; or 4. The end of the period in which litigation or investigations might arise in respect of our business relations or other interactions with you.

If applicable, for more information about how your Personal Data may subsequently be retained on a per product basis, please refer to the product and service specific supplemental information.

Your Rights

Subject to applicable laws, as an individual data subject, you may have the right:

a. to ask us to provide you with information regarding the Personal Data we process concerning you;

b. to rectify, update or complement inaccurate or incomplete Personal Data concerning you;

c. to delete or request the erasure of Personal Data concerning you;

d. in certain circumstances to obtain of us that we restrict the way in which we process Personal Data concerning you;

e. to withdraw any consent, you may have given for us to process Personal Data concerning you;

f. to object to our processing of Personal Data concerning you on the basis of our, or of third-parties’ legitimate interests;

g. to request us to transfer your Personal Data to another data controller; and

h. in the European Economic Area, to lodge a privacy complaint with a supervisory authority if you are unhappy with the way we have handled your Personal Data or any privacy query or request that you have raised with us. Where your exercise of any of the rights above is dependent on Silent Security Solution’s action, we will abide by our legal obligation to take reasonable measures to ascertain your identity and the legitimacy of your request, and may ask you to disclose to us any information necessary for that purpose.

Contact Us

To exercise any of your rights, or if you have any other questions or complaints about our use of your Personal Data and its privacy.

Email us: privacy@silentsecurity.net

Changes to This Statement

We reserve the right to revise or modify this Statement. In addition, we may update this Privacy Statement to reflect changes to our data practices. If we make any material changes we will notify you by email (sent to the email address specified in your account) or by means of a notice on this website prior to the change becoming effective. We encourage you to periodically review this page for the latest information on our privacy practices.