Azeria Labs Privacy Policy

We are dedicated to treating your personal information with care and respect. Our privacy policy is designed to provide transparency into our privacy practices and principles in a form that you can read and understand.

If you choose to use our Services, then you agree to the collection and use of information in relation with this policy.

We will not use or share your information with anyone except as described in this Privacy Policy.

If you have any questions or concerns about our policy or practices with regards to your personal information on any of our Services, please contact us using the information at the end of this policy.

Who we are

When we refer to "Azeria Labs", "Azeria", "we", or "us" in this policy, we mean Azeria Labs UG (haftungsbeschränkt), which provides Azeria Labs websites and services, and which is the data controller for our sites and your information.

Azeria Labs provides security trainings courses and online applications designed to train and help security engineers understand and improve the security of software applications. We also own a number of websites and related services, like support. We refer to all of these products, along with their associated support services, apps, and websites as "Services" in this policy.

What we collect

We collect two basic types of information: personal information, which relates to you as an individual, and anonymous information that contains raw machine information that does not relate directly to you, but which helps us improve our Services. We also use these two types of information to create aggregate information.

Information you Directly Provide to Us

We collect information you directly provide to us when you use the Services. This includes:

Content you affirmatively submit to us. We collect the content you submit to the Services. This includes information submitted via feedback forms, and information provided directly to Azeria Labs websites. This content may include text, links, contact information, or any other content you affirmatively submit to us.

Direct communications with us. If you engage in direct communications with us via any of our Services, by email, or in other ways, these communications may be collected and used in ways covered by this privacy policy.

Transaction and purchase information. If you make a purchase through any of our Services, we may collect and store information associated with that purchase. Our Services do not collect or store any direct payment information such as credit-card information. This information is collected by our third-party payment providers, and is governed by their respective privacy policies.

Information We Collect Automatically

When you access or use our Services, we may also collect anonymized machine information about your visit and usage of our Services. This includes:

Logs and usage data. Our Services may log basic information about your access and use of our sites to help maintain our Service to you. This may include your IP address, user-agent string, browser type, browser version, operating system, referral URLs, device information, date and time of visit, pages visited, links clicked, and other statistics.

Security logs. We may additionally track security-relevant information, such as security alerts and authentication attempts to help us maintain the security of our own site and the privacy of your and other users' information.

Error collection. When one of our Services malfunctions, we may record information about the error in order to help our engineers correct the defect and improve our Service.

Location information. Although we do not directly collect location information, we may collect information such as IP addresses to approximate your location in order to provide a more localized experience and to improve network performance when you use our services.

Cookies

Cookies are small files containing a small amount of data that allows our Services to associate actions taken on different pages with the same user. This allows us to track your visit across our site, and give you a consistent experience as you browse from page to page, or access different Services.

Most web-browsers are designed to accept cookies by default; however, you have the option to accept or refuse these cookies, which you can do by configuring your browser's settings to disable cookies. Deleting or disabling cookies on our Services can affect the availability and functionality of our Services.

How We Use Information About You

We use information about you to:

  • Provide, and deliver our Services;
  • Maintain, improve, and measure the performance of our Services;
  • Research and develop new Services;
  • Provide a more personalized service to you;
  • Process any orders or requests you make using our Services;
  • Protect our Services, our users, and the public, which includes blocking spammers, defeating hackers, and enforcing our policies;
  • Send you technical notices, updates, security alerts, and administrative messages;
  • Provide customer service to you;
  • Communicate with you about products, services, offers, promotions, and events, or other news and information we think may be of interest to you, if you have opted into these communications; and
  • Monitor and analyze trends, usage and activities across our Services.

How Information About You Is Shared

Generally, information about you is not shared with any third parties, except as follows:

With your consent. We may share information about you with your consent or at your direction.

With our employees, vendors, administrators and contractors. We may share information with vendors, consultants, and other service providers who need access to that information to carry out work for us. Such information will always be subject to appropriate confidentiality and security contracts.

To enforce our policies and rights. We may share information to the extent necessary to protect our site, our users, and to enforce our policies.

For legal reasons. In exceptional circumstances, we may be required to provide information about you in response to legal demands for data. We will only do so when we believe that doing so is legally required. To the extent that the law allows, we will always provide you with advance notice of such requests if they relate to your information, and will publish as much detail about such requests as we can in a transparency report as soon as possible afterwards.

In an emergency. We may share information if we believe it's necessary to prevent imminent and serious harm to any person. If we take any such action, we will publish details of it in a transparency report as soon as possible afterwards.

In anonymized aggregate form. We may share information about you that has been aggregated or anonymized so that it cannot reasonably be used to personally identify you. For example, we may show the number of times a page has been visited without identifying who the visitors were.

Service Providers

We may employ third-party companies, vendors, or individuals to collect and analyze data for the following reasons:

  • To facilitate our Services;
  • To provide our Services, or parts of our Services on our behalf;
  • To perform Service-related services; or
  • To help us analyze how our Service is being used;

These third-parties may, during the course of their activities, collect and analyze your personal information. They are, however, obligated not to disclose that information, or to use it for any other purpose.

Azeria Labs does not—and will not— directly share information about you with advertisers, and requires that our contractors, vendors and third-parties do not share information provided to them with advertisers.

Some of our Services make use of Google Analytics to help us analyze usage and network traffic. Google Analytics stores this information in accordance with the Google Analytics privacy policy.

Information Security

We value your trust in providing us your Personal Information, and take the security of that information extremely seriously. We take advanced proactive measures to help protect information about you from loss, theft, misuse, and unauthorized access, disclosure, modification or destruction. For example, using encryption when information is transmitted to or between our services, and using technology to minimize any exposure of information held in our databases to third-parties or unauthorized entities. Please be aware that, despite our best efforts, no security measures are perfect or impenetrable.

If you believe you have identified a security vulnerability in one of our Services, please contact our security team via contact@azeria-labs.com.

Links to Other Sites

Our Services may contain links to other sites. These sites are not operated by us, and we cannot assume any responsibility for those sites' content, privacy policies, or practices of these third-party sites.

Data Retention

In general, we store the information we collect only for as long as is necessary to fulfil the purpose(s) under which it was originally collected in this policy, unless a longer retention period is required or permitted by law.

International Data Transfers

We maintain servers around the world, and your information may be processed on servers in countries outside of the country where you live, depending on a number of factors. Different countries have different data protection laws, which may affect your rights. Wherever your data is processed, we apply the same protections described in this policy. We also comply with certain legal frameworks relating to the transfer of data, such as the EU-US Privacy Shield Frameworks.

Children

Our Services are not targeted at children under the age of 13 and we do not knowingly collect or process information relating to children under the age of 13. Children under the age of 13 are not allowed to use the Services. Additionally, if you are in the EEA, you must be over the age required by the laws of your country to use the Services.

Your Rights

Residents of the European Union

If you are a resident of the European Union, you may have certain additional rights under Chapter 3 of the General Data Protection Regulation in relation to how your information is stored and processed by us:

The right to be informed. You have the right to request a copy of this privacy policy, informing you about how we store and process your information.

The right to access. You have the right to request a copy of any personal data we may hold about you.

The right to rectification. You have the right to request that we correct any material information we hold about you which you believe is inaccurate, or to complete any information you believe is incomplete.

The right to erasure. You have the right to request that we erase some or all personal data that we hold about you, under certain conditions.

The right to restrict data processing. You have the right to request that we restrict the processing of certain categories of personal data we hold about you, under certain conditions.

The right to object to data processing. You have the right to object to our processing of certain categories of personal data we hold about you, under certain conditions.

The right to data portability. You have the right to request that we transfer the data we have collected to another organization, under certain conditions.

Rights relating to automated decision making and profiling. If you believe you have been adversely affected by an automated decision on one of our Services, you may request a manual review of the decision, under certain conditions.

To exercise any of these rights, please contact us using the contact information at the end of this policy. Please be aware that there may be circumstances in which the law does not require or allow removal or alteration of data even if requested.

Residents of the EEA

If you are in the European Economic Area (EEA), we collect and process information about you only when we have a legal basis for doing so under applicable EU laws. The exact legal basis depends on the Services you use and how you use them.

This means we collect and use your information only where:

We need it to provide the Services, including to provide customer support, to protect the safety and security of the Services, as well as to operate the Services.

Where there is a legitimate interest, such as research and development, to market and promote the Services, to protect our legal rights and interests, and to monitor the performance of the Services.

Where you give us consent to use the information for a specific purpose; or

To comply with a legal obligation.

If you have consented to our use of information about you for a specific purpose, you have the right to change your mind, but this will not affect any processing that has already taken place.

Where we are using your information because we or a third party (such as your employer) have a legitimate interest in doing so, you have the right to object to that use, however this will usually mean you must stop using the Services.

Residents of California

If you are a California resident, you may have certain additional rights under California Civil Code Section 1798.83 and California Business and Professions Code Section 22581.

Information about third-party direct marketing. California Civil Code Section 1798.83(c)(2) permits you to request information regarding the disclosure of your personal information by us to third parties for the third parties' direct marketing purposes. Regardless of the location or residency of our users, we do not and will not provide information of any of our users to third parties for direct marketing purposes without your consent.

Request or removal of public information. California Business and Professions Code Section 22581 permits you to request and obtain removal of consent or information you have publicly posted.

To exercise any of these rights, please contact us using the contact information at the end of this policy. Please be aware that there may be circumstances in which the law does not require or allow removal or alteration of data even if requested.

Changes to This Policy

We may change this Privacy Policy from time to time to accommodate new services, technologies, industry practices, regulatory requirements, or for other reasons. We will notify you by updating this page and revising the date at the top of this policy. If we make a change to this policy that, in our view, materially reduces your rights under this policy, we will provide you with an additional notice and obtain your consent. We encourage you to review this policy whenever you access or use any of our Services to stay informed about our information practices and the ways you can help protect your privacy. By continuing to use our Services after the Privacy Policy changes go into effect, you agree to be bound by the revised policy.

Contact Us

If you have any questions about this Privacy Policy, please contact us at contact@azeria-labs.com.