Purpose and who we are
What You Agree to by Using Our Site
What Information We Collect
We gather two types of information about users through the Site:
Information relating to your use of our Site. When users come to our Site, we may track, collect and aggregate information indicating, among other things, which pages of our Site were visited, the order in which they were visited, when they were visited, and which hyperlinks were “clicked.” We also collect information from the URLs from which you linked to our Site. Collecting such information may involve logging the IP address, operating system and browser software used by each user of the Site. We may be able to determine from an IP address a user’s Internet Service Provider and the geographic location of his or her point of connectivity.
Personally Identifiable Information provided directly by you or via third parties. We collect Personally Identifiable Information that you provide to us when you register for an event, update or change information for your registration, purchase products or services, complete a survey, sign-up for email updates or other of our online competitions, participate in our public forums, send us email messages, and/or participate at our events or other services on our Site. We may use the Personally Identifiable Information that you provide to respond to your questions, provide you the specific commercial offers and/or services you select, send you updates about events offered by DefCamp or other CCSIR events, and send you email messages about Site maintenance or updates.
Account Registration. If you register for an account on our Site, you may be required to provide us with Personally Identifiable Information such as your name and email address.
Updates. DefCamp may offer you the ability to receive updates either via email or by posting on portions of the Site only accessible to registered users. In order to subscribe to these services, you may be required to provide us with Personally Identifiable Information such as your name and email address.
Participation at our events. DefCamp offers users the opportunity to participate to different offline or online cyber security event on or through the Site. If you desire to participate in a course, you will be asked to provide us with certain information necessary to conduct such a course. This information may include, among other things, your name and email address.
If you participate in an offline event, we may collect from you certain event-generated content, such as time of check-in/check-out, what are your favorite topics, event feedback, quizzes, exams, surveys and others. You should not include any Personally Identifiable Information or other information of a personal or sensitive nature, whether relating to you or another person, on events, assignments, exams, or surveys, except for information required to participate or submit such events, assignments, exams, or surveys.
Communications with DefCamp. We may receive Personally Identifiable Information when you send us an email message or otherwise contact us.
Third Party Sites. We may receive Personally Identifiable Information when you access or log-in to a third party site, e.g., Facebook, from our Sites. This may include the text and/or images of your Personally Identifiable Information available from the third party site.
Surveys. We may receive Personally Identifiable Information when you provide information in response to a survey operated by us. This may include details about your race, your education history, and your employment.
Partner sites. Partner sites providing cyber security & conference related tools and services to DefCamp users may collect nonfinancial individual level user data regarding the individual’s use of that partner site while engaged with such related activities, and the partner sites may share that data with DefCamp for the purpose of improving DefCamp’s services, the partner site’s services, and the individual’s education experience. This data includes information such as the amount of time spent on the partner site and pages viewed.
Third Party Credit Card Processing. DefCamp provides you with the ability to pay for our events and other services using a credit card through a third party payment processing service provider. Please note that our service provider – not DefCamp – collects and processes your credit card information.
How We Use the Information
Information relating to your use of our Site. We use information relating to your use of the Site to build higher quality, more useful services by performing statistical analyses of the collective characteristics and behavior of our users, and by measuring demographics and interests regarding specific areas of our Site. We may also use this information to ensure the security of our services and the Site.
Providing the Site and our services. We use Personally Identifiable Information which you provide to us in order to allow you to access and use the Site and in order to provide any information, products or services that you request from us.
Updates. We use Personally Identifiable Information collected when you sign-up for our various email or update services to send you the messages in connection with the Site or an event. We may also archive this information and/or use it for future communications with you, where we are legally entitled to do so.
Forums. You should not post any Personally Identifiable Information or other information of a personal or sensitive nature, whether relating to you or another person, within a Forum post. If you choose to post Personally Identifiable Information, such Personally Identifiable Information may be collected during your use of the Forums. We may publish this information via extensions of our Platform that use third-party services, like mobile applications. We also reserve the right to reuse Forum posts that contain Personally Identifiable Information in future versions of the courses we offer, and to enhance future course offerings. We may archive this information and/or use it for future communications with you and/or your designee(s), and/or provide it to the University partner, business partner, or the instructor(s) associated with the courses you have taken. We may also use or publish posts submitted on the Forums without using Personally Identification Information.
Participation at events. We use the Personally Identifiable Information that we collect from you when you participate in an event through the Site for processing purposes, including but not limited to tracking attendance, interests of events, tracks and activities. We may also share your Personally Identifiable Information and your performance in a statistical way with our partners, or other individuals which can assist us to the creation, modification or operation of the logistics of the event, and with the institution or institutions with which they are affiliated. Also, we may archive this information and/or use it for future communications with you, where we are legally entitled to do so.
Identity Verification. For services that require identity verification, we use the Personally Identifiable Information that we collect for verifying your identity, and for authenticating that submissions made on the Site were made by you. This service may be provided through a third-party identity verification vendor. Your photo identification document will be deleted after successful verification of your profile information.
Communications with DefCamp Business Partners. We may share your Personally Identifiable Information with CCSIR partners and other business partners of DefCamp so that CCSIR partners and other business partners may share information about their products and services that may be of interest to you where we are legally entitled to do so.
Research. We may share general course data (including quiz or assignment submissions, grades, and forum discussions), information about your activity on our Site, and demographic data from surveys operated by us with CCSIR partners and other business partners so that CCSIR partners and other business partners may use the data for research related to cyber security.
Disclosure to CCSIR Operations and Maintenance Contractors. We use various service providers, vendors and contractors (collectively, “Contractors”) to assist us in providing our products and services to you. Our Contractors may have limited access to your Personally Identifiable Information in the course of providing their products or services to us, so that we in turn can provide our products and services to you. These Contractors may include vendors and suppliers that provide us with technology, services, and/or content related to the operation and maintenance of the Site or the Events. Access to your Personally Identifiable Information by these contractors is limited to the information reasonably necessary for the contractor to perform its limited function for us.
Disclosure to Acquirers. CCSIR may disclose and/or transfer your Personally Identifiable Information to an acquirer, assignee or other successor entity in connection with a sale, merger, or reorganization of all or substantially all of the equity, business or assets of CCSIR to which your Personally Identifiable Information relates.
Retention of Personally Identifiable Information
If you reside or are located in the EEA, we keep your Personally Identifiable Information for no longer than necessary for the purposes for which the Personally Identifiable Information is processed. The length of time we retain Personally Identifiable Information for depends on the purposes for which we collect and use it and/or as required to comply with applicable laws and to establish, exercise or defend our legal rights.
Confidentiality & Security of Personally Identifiable Information
Updating or Deleting Your Personally Identifiable Information
You have certain rights in relation to your Personally Identifiable Information. You can access your Personally Identifiable Information and confirm that it remains correct and up-to-date or choose whether or not you wish to receive material from us or some of our partners by logging into the Site and visiting your user account page.
If you would like further information in relation to your rights or would like to exercise any of them, you may also contact us via [email protected]. If you reside or are located in the EEA, you have the right to request that we:
- provide access to any Personally Identifiable Information we hold about you;
- prevent the processing of your Personally Identifiable Information for direct-marketing purposes;
- update any Personally Identifiable Information which is out of date or incorrect;
- delete any Personally Identifiable Information which we are holding about you;
- restrict the way that we process your Personally Identifiable Information;
- provide your Personally Identifiable Information to a third party provider of services; or
- provide you with a copy of any Personally Identifiable Information which we hold about you.
We try to answer every email promptly where possible, and provide our response within the time period stated by applicable law. Keep in mind, however, that there will be residual information that will remain within our databases, access logs and other records, which may or may not contain your Personally Identifiable Information. Please also note that certain Personally Identifiable Information may be exempt from such requests in certain circumstances, which may include if we need to keep processing your Personally Identifiable Information to comply with a legal obligation.
When you email us with a request, we may ask that you provide us with information necessary to confirm your identity.
Questions, Suggestions and Complaints
If you have any privacy-related questions, suggestions, unresolved problems, or complaints you may contact us via [email protected].
If you reside or are located in the EEA, our Data Protection Officer and Privacy Team may assist with all queries regarding our processing of Personally Identifiable at [email protected].
If you reside or are located in the EEA, you may also make a complaint to our supervisory body for data protection matters (namely the UK Information Commissioner’s Office) or seek a remedy through local courts if you believe that your rights have been breached.
No Information from Children Under 13
DefCamp strongly believes in protecting the privacy of children. In line with this belief, we do not knowingly collect or maintain Personally Identifiable Information on our Site from persons under 13 years of age, and no part of our Site is directed to persons under 13 years of age. If you are under 13 years of age, then please do not use or access this Site at any time or in any manner. We will take appropriate steps to delete any Personally Identifiable Information of persons less than 13 years of age that has been collected on our Site without verified parental consent upon learning of the existence of such Personally Identifiable Information.