Who is Info Security Index?
Info Security Index is a fully integrated, data-fueled, demand generation engine that helps B2B organizations drive full-funnel results.
Our registered address is:
300 Washington Street, Suite 850
Newton, MA 02458
Info Security Index values and respects the privacy of your personal information, and as such we have taken numerous exhaustive measures to safely and securely process and store your information. Personal information is any information that can be used to identify you, such as your name and contact details.
How do you collect information about me, and what information do you collect?
There are various ways that we collect information about you, including:
Information that you provide to us
– Your name, personal and/or business contact details including your phone number(s), email address, and any other information required to validate your identity;
– Information about our services you use, have used or request information on, including billing and other account information;
Information we collect automatically
Information we receive from third parties
– Occasionally we may attain personal information about you from third-party sources (including third-party websites, data brokers or credit reference agencies), but only where we have checked that these third parties either have your consent or are otherwise legally permitted or required to disclose your personal information to us. The personal information we attain may include your name, business contact details including your job title, business phone number(s), business email address and business address, and cookie information.
How do you use my personal information?
Where we have a legitimate interest
Primarily, Info Security Index collects, receives and processes personal information of individuals, exclusively in a business context, in order to contact them about goods and services in which their business may be interested. This information is processed by Info Security Index in accordance with its (and its customer’s) legitimate interests.
Based on your role and responsibilities within your organization, as well as being a decision maker, recommender or influencer within your organization, we may contact you occasionally with marketing offers or useful educational information relevant to you directly as well as on behalf of our Customers. You will always have the right to opt out of receiving marketing offers from us and we will always ensure that we screen any databases against the Corporate Telephone Preference Service prior to contacting you.
We are happy to share our Legitimate Interest Assessment (LIA) with you should you wish to see it.
To provide a specific service when requested contractually by you
If you are our Customer, we would need to keep you updated regularly on campaigns we are running on your behalf.
Where we have your explicit consent
If you have requested that we keep you updated on any offers or updates, we may contact you occasionally.
If you would like to opt out of any marketing communications from us or limit the channels in which we contact you (such as email, phone or post only), please contact us at [email protected]. Please note that even if you opt out of receiving marketing offers from us, we may still receive your details from third parties and our Customers in relation to specific campaigns and you may, therefore, need to notify our Customers in order to opt out.
How long do you store my information for?
We will not keep your personal data that we process for longer than is necessary for that purpose or those purposes, and never longer than 3 years from the last contact.
We cannot always specify in advance the periods for which your personal data will be kept. In these cases, we will determine the period of retention based on the following criteria:
The period of retention of personal data for prospective Customers and our Customers’ prospective Customers will be determined based on legitimate interest.
The period of retention of personal data for partners will be determined based on consent.
The period of retention of personal data for Customers will be determined based on consent.
Notwithstanding the other provisions of this section, we may retain your personal data where such retention is necessary for compliance with a legal obligation to which we are subject, or to protect your vital interests or the vital interests of another natural person.
Who do you share my personal details with?
We share your personal information with our other Group companies for internal reasons, primarily for business and operational purposes. As we continue to develop our business, we may sell or purchase assets. If another entity acquires us or merges with us your personal information will be disclosed to such entity. Also, if any bankruptcy or reorganization proceeding is brought by or against us, all such information will be considered an asset of ours and as such it is possible they will be sold or transferred to third parties.
What would happen if I did not want to provide you with my personal information, or I chose to not allow continued processing of my personal information for marketing purposes?
– Should you choose not to provide your personal details to us as a Customer, where we would require these in order to carry out the work requested, we would be unable to provide you with our service.
– Should you choose not to allow us to continue processing your information for marketing purposes, you will no longer receive useful and relevant offers and/or educational content from us.
What information is collected about me when using cookies?
Info Security Index’s platform delivers and reports advertising based on your usage patterns across many third-party websites. Info Security Index records page views and collects information for the purpose of delivering advertising or providing advertising-related services, including providing a specific advertisement based on your browser, specific time of day, location, specific date or date range, statistics in connection with the activity of a website and tracking ads served during a specific time frame and/or to specific audience. Information collected may include personal contact information and other such identifiable information provided to Info Security Index by the users, including through certain means and tracking data including but not limited to cookies and other technologies to track and correlate data, as it is or may become available to Info Security Index.
Do you run any auto-decision making or profiling on me?
No, we do not.
Will my information ever be transferred internationally?
– We may transfer your personal information outside of your country when it is required that we do so.
– The data may be transferred safely and securely using adequate safeguards to our office in the United States. Your data may also, only when required, be transferred to our offices in the United Kingdom, Romania, and Ukraine using the same secure and adequate safeguards.
What if I would like my personal information removed/erased from your databases?
Under the GDPR, you have the right to request that your personal information is removed from our databases. In order to make this request, you may complete your request using our digital form found here, email us at [email protected], as well as call or write to us using our contact details found at the bottom of this page.
Please note, should you request us to erase your information, in order to ensure that we no longer process your information in the future, we will need to retain your corporate email address(‘s) to use for suppression.
Should you use multiple corporate email addresses, please ensure that you make this request using all variations.
What are my rights?
You have many rights relating to your personal information. Additional information on your rights can be requested directly from the data protection regulator within your country.
1. The right to object to processing
You have the right to object to certain types of processing, including processing for direct marketing.
2. The right to be informed
You have the right to be provided with clear, transparent, and easily understandable information about how we use your information and your rights (such as the information provided in this Policy).
3. The right of access
You have the right to obtain access to your information and certain other information relevant to how your information is attained and used.
4. The right to rectification
You are entitled to have your information corrected/amended if it’s inaccurate or incomplete.
5. The right to erasure
This is also known as ‘the right to be forgotten’, and allows you to request your information is permanently deleted/removed if you feel that you no longer want us to keep and use it. There can be exceptions to this dependent upon the situation. You can request to have your information erased from our databases by making a request here.
6. The right to restrict processing
You have rights to ‘block’ or suppress the further use of your information. When processing is restricted, we can still store your information, but may not use it further. We keep lists of people who have asked for further use of their information to be ‘blocked’ to make sure the restriction is respected in future.
7. The right to data portability
You have rights to obtain and reuse your personal information for your own purposes across different services. For example, if you decide to switch to a new provider, this enables you to move, copy or transfer your information easily between our IT systems and theirs safely and securely, without affecting its usability.
8. The right to lodge a complaint
You have the right to lodge a complaint about the way we handle or process your personal information with your national data protection regulator.
9. The right to withdraw consent
If you have given your consent to anything we do with your personal information, you have the right to withdraw your consent at any time (although if you do so, it does not mean that anything we have done with your personal information with your consent up to that point is unlawful). This includes your right to withdraw consent to us using your personal information for marketing purposes.
What methods would you use to contact me?
We may contact you by phone, email or social media. Should you have any preferences on the manner in which we contact you, please let us know using the details below.
How can I contact you?
If you have any inquiries you may contact our Data Protection Officer (DPO) using the following details:
Vice President & DPO
Or you can write or call us at:
300 Washington Street, Suite 850
Newton, MA 02458
This policy may be updated or revised from time to time. It is the responsibility of the user to periodically review the policy statement to determine if there are any substantive changes.