We at Corax Cyber Security Inc. (Corax,” “we,” “us,” or “our”) created this Privacy Policy (“Privacy Policy”) because we know that you care about how information you provide to us is used and shared.  This Privacy Policy relates to the information collection and use practices of Corax in connection with our online services (“Services”), which are made available to you through our website located at https://www.coraxcyber.com/ (the “Website”).

Description of Users and Acceptance of Terms

This Privacy Policy applies to visitors to the Website, who view only publicly-available content (the “Visitors”) and subscribers (the “Subscribers”) who have signed up to access and use our Services.

By visiting our Website, Visitors are agreeing to the terms of this Privacy Policy and the accompanying Terms of Use. By signing up, accessing, and/or using the Services, each Subscriber is agreeing to the terms of this Privacy Policy and the accompanying Corax Terms and Conditions.

Capitalized terms not defined in this Privacy Policy shall have the meaning set forth in our Terms of Use (when such term concerns Visitors), or the Corax Terms and Conditions (when such term concerns Subscribers).

Information We Collect and/or Receive

In the course of operating the Website and providing the Services, Corax will collect (and/or receive) the following types of information. You authorize us to collect and/or receive such information and assume contractual responsibility for obtaining all consents as required under the applicable laws and regulations.

Contact Information: When you sign up to become a Subscriber, you will be asked to provide us with certain personal information, such as your name, company name, job title, e-mail address, telephone number, and the industry in which your company provides products and services (“Contact Information”). The Contact Information is used to provide the required Services, for internal record keeping, and to contact Subscribers and Visitors for purposes of direct marketing of our current and future Services.

Business Information: When you sign up to become a Subscriber, you will be asked to provide us with some information about your business, including but not limited to, the cyber risks associated with your business, financial information about your business and the types of data held by your business (“Business Information”). The Business Information is used to provide the Services to Subscribers.

Billing Information: We may collect billing and payment related information which may include a credit card number, expiration date, billing zip code, activation code, and similar information (collectively, the “Billing Information”). Billing Information is collected and processed by our third-party payment operating as our agent (See, Onward Transfers to Third Parties). Corax does not directly obtain or process any Billing Information.

Subscriber Materials: In using the Services, Subscribers may provide us Subscriber Materials (as defined in the Corax Terms and Conditions). We use the Subscriber Materials only in our performance of the Services in accordance with the terms and conditions of the Corax Terms and Conditions.

Other Information:

In addition to the Contact Information, Business Information and Subscriber Materials, we may collect or receive the following information:

  • From Your Activity. In an ongoing effort to improve the Website and the Services, we automatically collect certain information when Visitors visit the Website and when Subscribers use the Services. This information consists of IP addresses, browser type and language, referring and exit pages and URLs, date and time, amount of time spent on particular pages, what sections of the Website Visitors visit, and similar information concerning your use of the Website and the Services (“Activity Information”).
  • From Cookies. We also collect Activity Information by using “cookie” technology. Our cookie policy is available at here. Cookies are small packets of data that a website stores on the hard drive of your computer or mobile device to “remember” information about your visit. We may use session cookies (which expire once you close your web browser) and persistent cookies (which stay on your computer/device until you delete them). If you do not want us to place a cookie on your hard drive, you may be able to turn that feature off on your computer or mobile device. Please consult your Internet browser’s documentation for information on how to do this and how to delete persistent cookies. However, if you decide not to accept cookies from us, the Website and the Services may not function properly.
  • Google Analytics. We use Google Analytics to evaluate your use of the Website and the Services, compile reports on activity (based on Google’s collection of IP addresses, Internet service provider, browser type, operating system and language, referring and exit pages and URLs, data and time, amount of time spent on particular pages, what sections of the Website you visit, number of links clicked while on the Website, search terms and other similar usage data), and analyze performance metrics. This information is collected automatically and anonymized by Google Analytics. By accessing and using the Website and/or the Services, you consent to the processing of data about you by Google Analytics in the manner and for the purposes set out in this Privacy Policy. For more information on Google Analytics, including how to opt out from certain data collection, please visit https://www.google.com/analytics. Please be advised that if you opt out of any service, you may not be able to use the full functionality of the Website and the Services.

Aggregate Data: In an ongoing effort to better understand our users and the products and services of Corax, we may analyze your information in aggregate form to operate, maintain, manage, and improve the Website and the Services. This aggregate data does not identify you personally. We may share this aggregate data with our affiliates, agents, and business partners. We may also disclose aggregated user statistics in order to describe our Services and the Website to current and prospective business partners and to third parties for other lawful purposes.

Additional Uses: We also use Contact Information, Business Information, Subscriber Materials (as set forth above) and other information collected pursuant to this Privacy Policy to respond to general inquiries, solicit feedback regarding our Services, provide relevant content on our Site, and to communicate with you via email regarding our current and future Services.

Onward Transfer to Third Parties

Like many businesses, we hire other companies to perform certain business-related services. We may disclose personal information to certain types of third party companies but only to the extent needed to enable them to provide such services. The types of companies that may receive personal information and their functions are: hosting services; and payment processors. All such third parties function as our agents, performing services at our instruction and on our behalf pursuant to contracts which require they provide at least the same level of privacy protection as is required by this Privacy Policy and implemented by Corax.  You may opt out of having your personal information transferred to any or all of our categories of agents by contacting us at privacy@coraxcyber.com. Please allow us a reasonable time to process your request.

Opt-In to Certain Onward Transfers

We will not transfer your personal information to a third party controller without first providing you with information regarding the identity of such controller or the nature of such controller’s business, and obtaining your opt-in consent.

We will not disclose your sensitive personal information to any third party without first obtaining your opt-in consent. You may grant such consent by contacting us at privacy@coraxcyber.com.

In each instance, please allow us a reasonable time to process your response.

Business Transfers

In the event of a merger, dissolution or similar corporate event, or the sale of all or substantially all of our assets, we expect that the information that we have collected, including personal information, would be transferred to the surviving entity in a merger or the acquiring entity. All such transfers shall be subject to our commitments with respect to the privacy and confidentiality of such personal information as set forth in this Privacy Policy.

Disclosures to Public Authorities

We are required to disclose personal information in response to lawful requests by public authorities, including for the purpose of meeting national security or law enforcement requirements. We may also disclose personal information to other third parties when compelled to do so by government authorities or required by law or regulation including, but not limited to, in response to court orders and subpoenas.

Opt-Out for Direct Marketing

You may opt out at any time from the use of your personal information for direct marketing purposes by contacting us at privacy@coraxcyber.com.  Please allow us a reasonable time to process your request.

How We Protect Your Information

We are committed to ensuring that your information is secure. Corax implements reasonable and appropriate security measures to protect your personal information from loss, misuse and unauthorized access, disclosure, alteration and destruction, taking into account the risks involved in processing and the nature of such data, and comply with applicable laws and regulations. Corax uses industry best practice controls to secure information about you and your company as set forth in Corax Security Policy available here.

Access to Personal Information

Upon request to privacy@coraxcyber.com, we will provide you with confirmation as to whether we are processing your personal information, and have the data communicated to you within a reasonable time. You have the right to correct, amend or delete your personal information where it is inaccurate or has been processed in violation of this Privacy Policy. We may require payment of a non-excessive fee to defray our expenses in this regard. Please allow us a reasonable time to respond to your inquiries and requests.

Retention of Personal Information

We will retain your personal information in a form that identifies you only for as long as it serves the purpose(s) for which it was initially collected as stated in this Privacy Policy, or subsequently authorized. We may continue processing your personal information for longer periods, but only for the time and to the extent such processing reasonably serves the purposes of archiving in the public interest, journalism, literature and art, scientific or historical research and statistical analysis, and subject to the protection of this Privacy Policy. After such time periods have expired, we may either delete your personal information or retain it in a form such that it does not identify you personally.

Your Choices

If you wish to stop receiving e-mails from us, please send us a message at privacy@coraxcyber.com. You may also choose to unsubscribe from our emails by following the instructions in the bottom of the email.

The Website and the Services may contain content, services, advertising and other materials that link to External Sites.  Corax does not endorse and is not responsible for the content of any such External Sites. Please refer to the terms of use and privacy policies of the External Sites for more information.

Children

We do not knowingly collect personal information from children under the age of 13 through the Website and/or the Services.  If you are under 13, please do not give us any personal information.  We encourage parents and legal guardians to monitor their children’s Internet usage and to help enforce our Privacy Policy by instructing their children to never provide personal information through any website without their permission.  If you have reason to believe that a child under the age of 13 has provided personal information to us, please contact us, and we will endeavor to delete that information from our databases.

California Privacy Rights

Under California Civil Code Section 1798.83, California residents who have an established business relationship with Corax may choose to opt out of our sharing your personal information with third parties for direct marketing purposes.  If you are a California resident and (1) you wish to opt out; or (2) you wish to request certain information regarding our disclosure of your Personal Information to third parties for the direct marketing purposes, please send an e-mail to [insert email address] with “Privacy Policy” in the subject line or write to us at:

Corax Cyber Security Inc., 535 Mission Street, San Francisco, CA 94105

In addition, Corax does not monitor, recognize, or honor any opt-out or do not track mechanisms, including general web browser “Do Not Track” settings and/or signals.

Important Notice to All Non-US Residents

Our servers are located in the US. If you are located outside of the US, please be aware that any information provided to us, including personal information, will be transferred from your country of origin to the US. Except in the case of data transfers under the EU-US Privacy Shield, your decision to provide such data to us, or allow us to collect such data it through our Website or the Services, constitutes your consent to this data transfer.

Important Notice for Residents of the European Economic Area

Corax complies with the EU-US Privacy Shield Framework as set forth by the US Department of Commerce regarding the collection, use, and retention of personal information from the European Union member countries (including Iceland, Liechtenstein and Norway). Corax has certified that it adheres to the Privacy Shield principles of Notice, Choice, Accountability for Onward Transfer, Security, Data Integrity and Purpose Limitation, Access, and Recourse, Enforcement and Liability (the “Privacy Shield Principles”). If there is a conflict between this Privacy Policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. With regard to the Principle of Accountability for Onward Transfer, for example, we remain liable if our agent processes such personal information in a manner inconsistent with the Privacy Shield Principles, unless we prove that we are not responsible for the event giving rise to the damage. To learn more about the Privacy Shield program, and to view our certification page, please visit https://www.privacyshield.gov/.

Corax is subject to the investigatory and enforcement powers of the Federal Trade Commission.

In compliance with the EU-US Privacy Shield Principles, Corax commits to resolve complaints about your privacy and our collection or use of your personal information.  EU individuals with inquiries or complaints regarding this Privacy Policy should first contact Corax at privacy@coraxcyber.com.

Corax has further committed to refer unresolved privacy complaints under the EU-US Privacy Shield Principles to BBB PRIVACY SHIELD, a non-profit alternative dispute resolution provider located in the United States and operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed by Corax, please visit www.bbb.org/EU-privacy-shield/for-eu-consumers/ for more information and to file a complaint. If these processes do not result in a resolution, you may also contact your local data protection authority, the US Department of Commerce, and/or the Federal Trade Commission for assistance. If your complaint still remains unresolved, then you have the right to invoke binding arbitration by the Privacy Shield Panel upon written notice to Corax at privacy@coraxcyber.com.

Changes to This Privacy Policy

This Privacy Policy is effective as of the date stated at the top of this Privacy Policy.  We may change this Privacy Policy from time to time.  Any such changes will be posted on the Website. By accessing the Website and/or using the Services after we make any such changes to this Privacy Policy, you are deemed to have accepted such changes.  Please refer back to this Privacy Policy on a regular basis.

How to Contact Us

If you have questions about this Privacy Policy, please send us a message at privacy@coraxcyber.com.