Effective date: July 29, 2019
At BreachLock, Inc. (hereinafter referred to as “BreachLock”), we are committed to protecting and respecting the privacy of visitors to our website and customers of our products and services (collectively referred to as “services”). We take responsibility for complying with the UK Data Protection Act 1998 (DPA), the General Data Protection Regulation, the EU-US Privacy Shield Framework, and other relevant applicable laws.
This page informs you of our policies regarding the collection, use, and disclosure of personal data when you use our services and the choices and rights you have associated with that data.
However, rights given under the EU-US Privacy Shield Framework can only be exercised by the individuals residing in the European Union.
2. Participation in the EU-US Privacy Shield Framework
BreachLock participates in the compliance of the EU-US Privacy Shield framework, and it is committed to subjecting all personal data received from the EU member countries except Switzerland (hereinafter referred to as “the EU”) to the Principles and Supplemental Principles (hereinafter referred to as “the Principles”) given in the Framework. To learn more about the Privacy Shield Program, and to view our certification, please visit https://www.privacyshield.gov/
BreachLock complies with the Privacy Shield Principles for onward transfer of personal data from the EU to the US, including the provisions dealing with onward transfer liabilities. Under those provisions of the framework and certain circumstances specified therein, BreachLock is responsible for the processing of personal data received under the Privacy Shield Framework and further transferred to a third party acting as an agent of BreachLock.
With respect to personal data received or transferred from the EU under the Privacy Shield Framework, BreachLock is subject to the regulatory enforcement powers of the US Federal Trade Commission (FTC). As detailed in the Principles, BreachLock may be required to disclose personal information of an individual without taking consent from an individual in response to lawful requests made by the public authorities, including to meet law enforcement or national security requirements.
You have a right to invoke binding arbitration under certain circumstances when other dispute resolution mechanisms have been exhausted. These circumstances have been detailed on the framework website.
3. Information Collection and Use
We collect several different types of information for various purposes to provide and improve our services.
3.1 Non-HR Data
Considering the nature of our services, BreachLock majorly collects business-related data. However, it receives personal information of individuals either representing a business or in their personal capacity which includes –
- Phone Number
- Email Address
3.1.1 Who is responsible for your Information?
BreachLock and its affiliates are responsible for your personal information. We may also retain the services of external suppliers to help meet our business needs and may share your data with these suppliers. These suppliers have been selected after a rigorous evaluation process and chosen for their security, reliability, and competence. They will process your data only under our instructions. Some of these suppliers may be based in non-EU countries. Where this is the case, the transfer of your personal information to these countries is carried out in compliance with the guarantees provided by law. Please contact us on the details given in the Contact section if you wish to receive information about these suppliers.
3.2 Usage Data
We may also collect information on how our services are accessed and used (herein after referred to as “Usage Data”). This usage data may include information such as your computer’s IP address, browser type, browser version, the pages of our services that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.
You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some parts of our services.
Below are the examples of cookies we use on our site, and why we use them:
- Session Cookies: We use session cookies to operate our services.
- Preference Cookies: We use preference cookies to remember your preferences and various settings.
- Security Cookies: We use security cookies to implement security controls on the website.
- Google Analytics Cookies: We use these cookies to collect information about how visitors use our website, including details of the site where the visitor has come from and the total number of times a visitor has been to our website. We use this information to improve our website and enhance the experience of the visitors. For more information on what kind of cookies being collected by www.breachlock.com and BreachLock, please visit our Cookie declaration page. If you have any issues with the cookies being collected, please write to us at the contact details given in the Contact section.
3.4 Use of Data
BreachLock uses the collected data for various purposes:
- To communicate with the prospective clients,
- o provide and maintain our services,
- To notify you about changes to our services,
- To allow you to participate in interactive features of our services when you choose to do so,
- To provide customer care and support,
- To monitor the usage of our services,
- To detect, prevent and address technical issues,
- To analyze and improve our services and communications
- To monitor compliance with our policies and standards, and
- Any other marketing-related activities that fall under legitimate business purposes.
We will provide you with marketing-related information (including newsletters and/or promotional materials) only after you have, where legally required to do so, opted-in to receive those communications and have provided the opportunity for you to opt-out at any time.
BreachLock will not use your personal information for taking any automated decisions affecting or creating profiles other than as described above. We will not share your personal information with third parties without your consent, except our service providers or parties acting as an agent of BreachLock under a legally binding contract.
3.5 Transfer of Data
Your information, including personal data, may be transferred to — and maintained on — computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction.
If you are located outside the United States and choose to provide information to us, please note that we transfer the data, including personal data, to the United States and process it here.
We transfer personal information to other countries only when it is essential for the services we provide you, or it is required for the verification or proof of legal claims or subject to protect that assure the protection of your personal information, such as European Commission approved standard contractual clauses.
3.6 Disclosure of Data
BreachLock may disclose your personal data in the good faith belief that such action is necessary to:
- To comply with a legal obligation
- To protect and defend the rights or property of BreachLock
- To prevent or investigate possible wrongdoing in connection with the Service
- To protect the personal safety of users of our services or the public at large
- To protect against legal liability
BreachLock shares the collected data with its affiliates, which process this data on behalf of BreachLock. It also shares data with other third parties to fulfill various obligations and as required or permitted by law.
With respect to marketing emails, you can opt-out of receiving such emails from BreachLock by writing to us at the contact details given in the Contact section or using the ‘’Unsubscribe” option given in all the emails sent from BreachLock. Notwithstanding the contents of this Policy, BreachLock may disclose personal data in the circumstances as specified in the Principles.
3.7 Security of Data
Security of your data is important to us, but do remember that no method of transmission over the Internet or method of electronic storage is 100% secure, i.e., absolutely secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee its absolute security.
3.8 Service Providers
We may employ third party companies and individuals to facilitate our services (hereinafter referred to as “Service Providers”), to provide our service on our behalf, to perform service-related services or to assist us in analyzing how our services are used. These third parties have access to your personal data only to perform these tasks on our behalf and are obligated under the law to not to disclose or use it for any other purpose.
We may use third-party service providers to monitor and analyze the use of our services.
18.104.22.168 Google Analytics
Google Analytics is a web analytics service offered by Google that tracks and reports website traffic. Google uses the data collected to track and monitor the use of our services. This data is shared with other Google services. Google may use the collected data to contextualize and personalize the ads of its own advertising network.
22.214.171.124 Lucky Orange Web Analytics Service
BreachLock uses the Lucky Orange analytics system to help improve usability and customer experience. Lucky Orange may record mouse clicks, mouse movements, and scrolling activity. Lucky Orange may record keystroke information that you voluntarily enter on this website. Lucky Orange does not track this activity on any site that does not use the Lucky Orange system. You can opt-out of having made your activity on our services available to Lucky Orange by visiting their privacy page and click on the privacy opt-out button. For more information on the privacy practices of Lucky Orange, please visit the Lucky Orange Privacy web page.
3.9 Links to Other Sites
4. Rights of EU Residents under the EU-US Privacy Shield Framework
An individual residing in the EU has a right to access his personal information stored with BreachLock. An individual may request to update, correct, or delete his data. To submit such requests to exercise your right or raise any questions, please contact BreachLock as per the Contact section given below. As per the provisions of the framework, BreachLock reserves the right to authenticate an applicant’s identity, charge a minimum amount of fee, and deny or provide access.
5. Compliance and Certification
BreachLock complies with the EU-US Privacy Shield framework and has self-certified to the Department of Commerce that it adheres to the Principles laid down in the Framework. If there is any conflict or vagueness in this Privacy Statement and the Privacy Shield Framework, the Privacy Shield Framework shall govern. To learn more about the framework, please visit the framework website.
Address: BreachLock, Inc.
3 Germany Dr,
Unit 4 #1354
Wilmington DE 19804
In case there is an unresolved issue, and we have not answered satisfactorily, please contact our independent dispute resolution provider – The EU DPAs – here. For individuals, this process is free of cost.
7. Changes to this Policy
This Privacy reflects our information security and data protection practices. If any material changes are made in the contents of this policy, BreachLock will also let you know via email and/or a prominent notice on our services, prior the changes coming into effect and updating the “Effective Date” at the top of this Policy. Changes to this Policy are effective when they are published on this page.