Last Revision Date: August 20, 2024
This Privacy Policy of Traced Security Ltd. (“Company”, “we”, “us”, or “our”) applies to our website and to the products, services, and platforms we provide. It explains our privacy practices regarding the information we collect from users who visit our websites, https://tracedsecurity.com/ and https://tracedsecurity.io (collectively referred to as the “Website”), contact us, or use or purchase our products and services. Capitalized terms not defined in this Privacy Policy are defined in our Terms of Service
We are committed to collecting only the Personal Information necessary for legitimate purposes. We do not sell, rent, trade, or otherwise disclose your Personal Information to third parties, except as described in this Privacy Policy. We implement appropriate security measures to protect your Personal Information and respect your right to access, correct, or request the deletion of your Personal Information. If you have any questions or wish to inquire about the Personal Information we hold about you, please contact us at [email protected].
1. Collection of Personal Data
1.1. Information Provided by the User
The Company collects data that the User provides via the Site and/or the Platform, including but not limited to:
• 1.1.1. Contact details (e.g., name, email address, phone number);
• 1.1.2. IP address;
• 1.1.3. Password and other authentication and security credentials;
• 1.1.4. Communications with the Company, such as emails, phone conversations, and chat sessions.
1.2. Voluntary Submission of Data
The User is not legally obligated to provide Personal Data to the Company. However, if the User chooses not to provide Personal Data, they may not be able to register as a User or access the Site and/or the Platform fully.
1.3. Information Collected Automatically
The Company automatically collects data when the User visits, interacts with, or uses the Site and/or the Platform, including but not limited to:
• 1.3.1. Identifiers and information from cookies;
• 1.3.2. User’s settings preferences and backup information;
• 1.3.3. Uniform Resource Locators (URL) clickstream data to, through, and from the Site and/or the Platform;
• 1.3.4. Content viewed or searched for, page response times, and page interaction details (e.g., scrolling, clicks, and mouse-overs);
• 1.3.5. Network and connection information, such as IP address and information about the User’s Internet service provider;
• 1.3.6. Computer and device information, including browser type and version, operating system, time zone setting, and device location.
1.4. Information Collected by Third Parties
This Privacy Policy does not cover content created, used, processed, or stored by the User while using the Site and/or the Platform, nor does it apply to products, services, websites, links, or other content offered by third parties. Users are advised to review the privacy policies of such third parties. The Company does not control third parties’ privacy practices or technology, and Users should carefully review third-party privacy policies before using third-party products and services.
2.Data Retention and Deletion
2.1. Data Retention
We store your personal information for a period of time that is consistent with our business purposes. Specifically, we retain your personal information for the length of time needed to fulfil the purposes outlined in this Privacy Policy unless a longer retention period is required or permitted by law.
2.2. Data Deletion
When the data retention period expires for a given type of data, we will delete or destroy it. This includes securely erasing or anonymizing your personal information so that it cannot be reconstructed or read.
2.3. User Requests
You may request for your data to be deleted by contacting us at [email protected]. We will respond to such requests in accordance with applicable data protection laws and regulations.
3.Cookies
3.1. Use of Cookies
To enhance and personalize the User’s experience on the Site and/or the Platform, and to monitor usage, the Company may use cookies and other standard technologies. A cookie is a small text file stored on a User’s device that contains information about the User. Most browsers are set to accept cookies by default, but Users can adjust their browser settings to decline cookies. Please note that if Users choose to decline or delete cookies, some features of the Site and/or the Platform may not function properly.
3.2. Third-Party Cookies
When Users click on links to third-party websites or services, those third parties may place cookies on the User’s device. This Privacy Policy does not cover the use of cookies by third parties, and the Company is not responsible for the privacy policies and practices of such third parties. Users are encouraged to review the privacy policies of any third-party websites they visit.
4. The Company’s Use of Collected Information
4.1. Purposes for Processing Personal Data
The Company processes Users’ Personal Data to operate, provide, and improve the Site and/or the Platform. This includes, but is not limited to:
• 4.1.1. Creating and managing User profiles;
• 4.1.2. Providing security analysis reports and managing the Site and the Platform;
• 4.1.3. Communicating with Users regarding the Site and/or the Platform, including through phone calls, SMS, emails, or chat, and responding to inquiries;
• 4.1.4. Offering assistance and support;
• 4.1.5. Fulfilling User requests and meeting contractual or legal obligations;
• 4.1.6. Ensuring User security, such as preventing and detecting fraud;
• 4.1.7. Conducting internal operations, including troubleshooting, data analysis, testing, and statistical purposes.
4.2. Limitation of Use
The Company will use Personal Data only as necessary to provide and improve the Site and/or the Platform.
4.3. Third-Party Personal Data
If the User’s Personal Data includes information about third parties, the User represents and warrants that they have obtained any necessary consent from those third parties in accordance with this Privacy Policy.
5. Sharing User Information
5.1. Circumstances for Disclosure
The Company may disclose Personal Data, communications sent or received by Users, and any other collected or provided information without prior notice in the following circumstances:
• 5.1.1. If required by law, including but not limited to court orders or subpoenas;
• 5.1.2. To verify the information obtained by the Company;
• 5.1.3. To prevent or investigate suspected fraud or activities that may be illegal or expose the Company to legal liability;
• 5.1.4. In events involving potential threats to the physical safety of any person or property if the Company believes the User’s information is related to such a threat;
• 5.1.5. If the Company believes that the User’s conduct on or in connection with the Site and/or the Platform is inappropriate or inconsistent with generally accepted norms of behavior;
• 5.1.6. To relevant national, state, and local law enforcement authorities, who may further disclose the Personal Data;
• 5.1.7. In the event of a sale, merger, or other disposition of Company assets, Personal Data may be transferred as part of the transaction. Additionally, Personal Data may be disclosed in connection with seeking financing, investment, or funding.
5.2. Third-Party Requirements
When sharing Personal Data with third parties as outlined above, the Company requires these recipients to use the data solely in accordance with this Privacy Policy and the Company’s contractual obligations, and for no purposes other than those specified by the Company.
6. Security
The Company has implemented appropriate technical and organizational measures to protect User Personal Data from loss, misuse, unauthorized access, disclosure, alteration, destruction, and other forms of unauthorized processing. However, Users should be aware that no data security measures can guarantee 100% security.
7. Users in the European Economic Area (EEA)
7.1. Legal Basis for Processing Personal Data
The Company will process User Personal Data only if one or more of the following legal bases apply:
• 7.1.1. Contractual Necessity: Processing is necessary to enter into a contract with the User, to fulfill the Company’s contractual obligations under the Terms of Use (TOU), to provide the Platform and/or Services, to respond to User requests, or to offer customer support;
• 7.1.2. Legitimate Interest: Processing is based on the Company’s legitimate interests;
• 7.1.3. Legal Obligation: Processing is necessary to comply with applicable laws and legal obligations, including responding to lawful requests and orders;
• 7.1.4. Consent: Processing is based on the User’s consent.
7.2. User Rights Regarding Personal Data
Subject to applicable law, Users have the following rights concerning their Personal Data:
• 7.2.1.1. The right to inquire whether the Company holds Personal Data about them and to request copies of such data and information about how it is processed;
• 7.2.1.2. The right to request correction of inaccurate Personal Data;
• 7.2.1.3. The right to request deletion of certain Personal Data;
• 7.2.1.4. The right to request the Company to cease or restrict processing where the processing is deemed inappropriate;
• 7.2.1.5. The right to withdraw consent for processing Personal Data for specified purposes at any time, which will stop further processing for that purpose.
7.2.2. In certain circumstances, the Company may not be able to fully comply with a User’s request, such as if the request is frivolous or extremely impractical, jeopardizes the rights of others, or is not legally required. In such cases, the Company will notify the User of the decision.
7.2.3. Users can exercise their rights of access, rectification, erasure, restriction, objection, and data portability by contacting the Company at [email protected]. In some cases, the Company may require additional information, including Personal Data, to verify the User’s identity and the nature of the request.
8. Users in California, USA
8.1. Compliance with Applicable Data Protection Laws
The Company will comply with all applicable data protection laws, including the California Consumer Privacy Act (CCPA), and will process Personal Data solely on behalf of the User.
8.1. Use of Personal Data
The Company will:
• 8.2.1. Not collect, retain, use, or disclose Personal Data for any purposes other than those specified in the Company’s Terms of Use and the Data Processing Agreement between the Company and the User;
• 8.2.2. Not sell Personal Data, as defined under the CCPA;
• 8.2.3. Implement appropriate technical and organizational measures to protect Personal Data from unauthorized or unlawful processing, as well as accidental destruction, loss, or damage.
9. International Data Storage
Users should be aware that Personal Data collected by the Company may be transferred to, processed, and stored in jurisdictions outside of their own. Data protection laws in these jurisdictions may differ from those in the User’s own jurisdiction. By using the Site and/or the Platform, Users consent to the transfer, processing, and storage of their Personal Data outside their jurisdiction.