Privacy Policy
Last Updated: July 31, 2024
Who we are
This Statement of Privacy (“Statement”) relates to Hoplon Infosec LLC of Chicago, IL 60601 and its affiliates (“Hoplon”, “we”, “our”, “us”). Hoplon is committed to protecting your personal information, and this Statement explains how and why we process your personal information.
This Statement governs the data collection, processing, and usage practices of Hoplon on its Website and its services, software, and/or appliances (each, a “Solution”, and collectively, the “Solutions”), and the websites and Solutions of its affiliates and subsidiaries and in the other contexts outlined below. In many cases, Hoplon shares the various categories of personal information identified below with its affiliate and subsidiaries for a variety of purposes (as outlined below).
If you have any questions about this privacy Statement or want to exercise any of your data protection rights as described in this privacy Statement, please contact us at[email protected]. Please note we may update this privacy Statement from time to time.
Your personal information
Data protection law requires us to have a lawful basis to process your personal information. The purposes for which we use your personal information and the lawful basis on which we rely is as follows.
Purpose of processing
Types of Personal Information
Lawful Basis
Account registration
Types of Personal Information
We may process personal information including your name, home and/or work address, company affiliation, telephone number, email, username and password.
Other account information may be collected as well, such as account credentials, demographic data, and payment data.
Lawful Basis
Necessary for the performance of our contract with you
Necessary for our legitimate interest of providing effective and efficient Solutions
Marketing communications
Types of Personal Information
We may process personal information including your name, email, phone number and address
Lawful Basis
Necessary for our legitimate interest of promoting our business
Consent (if applicable). If so, you may withdraw your consent at any time by contacting us at [email protected]
Partner Promotion
Types of Personal Information
We may process personal information including your name, email, phone number and address
Lawful Basis
Necessary for our legitimate interest of promoting our business
Provision of our Solutions
Types of Personal Information
We may process personal information including your name, email, phone number, address, payment details, company name and job title
Lawful Basis
Necessary for our legitimate interest of providing effective and efficient Solutions
Responding to your enquiries
Types of Personal Information
We may process personal information including your name, email, phone number and enquiry details
Lawful Basis
Necessary for our legitimate interest of responding to your enquiry
Testimonials
Types of Personal Information
We may process personal information including your name and testimonial
Lawful Basis
Necessary for our legitimate interest of promoting our business
Surveys or Contests
Types of Personal Information
We may process personal information including your name and opinion
Lawful Basis
Necessary for our legitimate interests of satisfying our customers and generating more business
Cookies and similar technologies
Types of Personal Information
We may process personal information such as your name, email, IP address and usage data (e.g. number of website visits, pages visited, average time spent, number of clicks, pages referred from the landing page, etc.)
Lawful Basis
Consent
Use of data analytics to improve our Solutions
Types of Personal Information
We may process personal information including your name, usage data, customer history and company details
Lawful Basis
Necessary for our legitimate interests of satisfying our customers and generating more business
Trade shows and events
Types of Personal Information
We may process personal information including your name and contact details
Lawful Basis
Necessary for our legitimate interests of generating more business
Fraud prevention
Types of Personal Information
We may process personal information including your name and customer history
Lawful Basis
Necessary for our legitimate interests of preventing fraud
Establishment and defense of legal claims
Types of Personal Information
We may process personal information including your name and customer history
Lawful Basis
Necessary for our legitimate interests of dealing with legal claims
Requests/Support
Types of Personal Information
We may process personal information including your name, e-mail address, company affiliation, telephone number, state, and country, as well as any other content that you send to us, in order to contact you or process your request.
Lawful Basis
Necessary for the performance of our contract with you
Necessary for our legitimate interest of providing effective and efficient Solutions
Necessary for our legitimate interests of satisfying our customers and generating more business
Device and Usage Information
We may collect information about your computer or device and Internet or other electronic network activity information. This includes:
- Device identifiers, such as IP address, WIFI MAC address, and Bluetooth address;
- Geolocation information such as your mobile device’s GPS technology, other technologies (such as wireless transmitters known as beacons), and information about your contacts, depending on your device settings;
- Information about your online activity, including data collected through standard Internet technologies such as cookies, pixels, web beacons, logs, and others, as detailed in our Cookie Statement, as well as your offline activity including visits to our resorts or properties;
- Through Google Analytics, information about the use of our Site such as frequency of visits, pages visited, and referral sites (see the “Web Analytics” section below).
Solution-Specific Information
Purpose of processing
Types of Personal Information
Lawful Basis
Agari Phishing Defense
Email Information
Types of Personal Information
When using Agari Phishing Defense, email information such as “mail from” header, Friendly From header, “rcpt to”/Email Friendly To header, subject, and IP addresses are collected.
Additional information may be collected if attachment analysis or Uniform Resource Identifier URI) analysis is enabled, such as attachment filename, URI, attachment metadata, and attachment hash.
Lawful Basis
Necessary for the performance of our contract with you
Necessary for our legitimate interest of providing effective and efficient Solutions
Agari DMARC Protection
Email Information
Types of Personal Information
When using Agari DMARC Protection, email information such as Email From and Email To addresses, Email subject, URI, and Sender IP are collected.
Lawful Basis
Necessary for the performance of our contract with you
Necessary for our legitimate interest of providing effective and efficient Solutions
Hoplon VM
Company and User information
Types of Personal Information
When using Hoplon VM, company name and address, and user information including username and password is collected.
Lawful Basis
Necessary for the performance of our contract with you
Necessary for our legitimate interest of providing effective and efficient Solutions
Scanning Information
Types of Personal Information
When using Hoplon VM, infrastructure information, such as network configuration, IP addresses, scanning configuration settings, asset names, host names, and file share listings, vulnerabilities, and results, including malware findings, are collected. Additional binary information may be collected if Active Threat Scanning Autosubmit is enabled.
Lawful Basis
Necessary for the performance of our contract with you
Necessary for our legitimate interest of providing effective and efficient Solutions
Reports
Types of Personal Information
External reports can be uploaded into Hoplon VM, these include information such as usernames, passwords, phishing results, physical site reviews, domain services reports, and vulnerabilities.
Lawful Basis
Necessary for the performance of our contract with you
Necessary for our legitimate interest of providing effective and efficient Solutions
PhishLabs Web App
User information
Types of Personal Information
When using PhishLabs, user information including first and last name, email address, and company affiliation is collected.
Lawful Basis
Necessary for the performance of our contract with you
Necessary for our legitimate interest of providing effective and efficient Solutions
PhishLabs Suspicious Email Analysis (SEA)
Email Information
Types of Personal Information
When using PhishLabs SEA, email information such as “mail from” header, Friendly From header, “rcpt to”/Email Friendly To header, subject, and IP addresses are collected. Additional information may be collected if attachment analysis or Uniform Resource Identifier URI) analysis is enabled, such as attachment filename, URI, attachment metadata, and attachment hash.
Lawful Basis
Necessary for the performance of our contract with you
Necessary for our legitimate interest of providing effective and efficient Solutions
Terranova Security’s Phish Submitter add-on for Gmail use and transfer of information received from Google APIs to any other app will adhere to Google API Services User Data Policy, including the Limited Use requirements.
Additionally, we may process your personal information to comply with our legal or regulatory obligations.
In addition to the purposes and uses described above, we may use personal information in the following ways:
- to identify you when you visit our Website
- to provide our Solutions
- to provide access to our Solutions
- to improve our Solutions
- to conduct analytics;
- to verify the accuracy of data that we hold about you
- to manage the security of your information and our network and, more specifically, in relation to any steps we may take to protect your information against loss, damage, theft or unauthorized access or disclosure
- for the prevention of fraud and other criminal activities
- for the establishment and defense of our legal rights
- to respond to inquiries related to support, or other requests and more generally correspond or communicate with you
- to send marketing and promotional materials, including information relating to our Services, sales, or promotions
- for internal administrative purposes, as well as to manage our relationships
- for other purposes that are not incompatible with the purposes we have disclosed to you (such as archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes) if and where this is permitted by applicable data protection laws.
Although the sections above describe our primary purpose in collecting and using your personal information, in many situations we have more than one purpose. For example, if you complete an online purchase, we may collect your information to perform our contract with you, but we also collect your information as we have a legitimate interest in maintaining your information after your transaction is complete so that we can quickly and easily respond to any questions about your order. As a result, our collection and processing of your information is based in different contexts upon your consent, our need to perform a contract, our obligations under law, and/or our legitimate interest in conducting our business.
Public Forums and Comment Sections
Our Website offers publicly accessible message boards, blogs, and community forums. Please keep in mind that if you directly disclose personally identifiable information or personally sensitive data through Hoplon public message boards, blogs, or forums, this information may be collected and used by others. Note: Hoplon does not share your private online communications with others.
Who we share your personal information with
We may share your personal information with the following affiliates, subsidiaries, and business partners:
- Hoplon: We share personal information with Hoplon affiliates and subsidiaries who may assist us in providing certain aspects of our Solutions, or, where you use our websites to enquire about a particular Solution, we may share your personal information with the affiliate responsible for providing that particular Solution.
- Business partners: We may partner with other companies to provide you with products and services. Additionally, we may allow third-party partners to recognize you when you visit a particular website or app, or to recognize you as one of their customers when you visit our websites or apps...
- Third-party service providers: These include IT providers, CRM providers, marketing agencies, research companies, cloud service providers, security services, advertising agencies, and administrative services. In particular, we use Gong and Drift for sales communication management.
- Web analytics: We use tools such as Google Analytics and FullStory to collect usage data without identifying you personally.
- Social media platforms: We may use personal information for personalized advertising.
- Professional advisors: Such as lawyers, accountants, and insurers, where legally required or in our legitimate interest.
- Law enforcement/government bodies: Where required by law, to protect rights, safety, or investigate illegal activities.
- Third parties in case of mergers, acquisitions, or business sales.
Where we store your personal information
Hoplon is a global business. Your personal information is subject to the EU GDPR and/or UK GDPR. If we transfer your personal information outside the EU or UK, we do so in compliance with applicable data protection laws.
How long we keep your personal information
We keep your personal information for as long as your account is active or as needed to provide our Solutions, unless legally required to retain it longer.
If no longer needed, personal information may be retained for up to 12 months. To cancel your account, contact [email protected].
Security
Hoplon has implemented appropriate technical and organizational measures to protect your personal information from unauthorized access, use, or disclosure. Information is stored on secure servers in a controlled environment.
Cookies
We may collect personal information about your devices and their location, and your use across our websites, including through cookies, pixels, web beacons, logs, and other technologies.
For details, see our Cookie Statement.
Your data protection rights
EU / UK
If you are located in the EU or UK, you have certain rights under applicable data protection laws, available in certain circumstances. To exercise these rights, contact[email protected].
Your Rights
Further Information
Right of rectification
You have the right to have any incomplete or inaccurate personal information corrected.
Right of objection
You have the right to object to us processing your personal information, depending on our lawful basis for processing your personal information. However, you do have the absolute right to object to the processing of your personal information for direct marketing purposes.
Right to withdraw consent
Where we rely on your consent as the lawful basis for processing your personal information, you have the right to withdraw your consent at any time.
Right of restriction
You have the right to limit the way that we use your personal information.
Right of erasure
You have the right to ask us to delete your personal information. Unless there is a reason that the law allows us to use your personal information for longer, we will make reasonable efforts to comply with your request.
Right of access
You have the right to ask us for a copy of the personal information that we hold about you. We may not provide you with a copy of your personal information if this concerns other individuals or we have another lawful reason to withhold that information.
Right of portability
You have the right to ask us to send you your personal information in a structured, commonly used and machine-readable format and the right to ask us to send your personal information directly to another controller.
Rights relating to automated decision making, including profiling
You have the right to contest a decision made about you based purely on automated processing.
Right to complain to a data protection authority
You have the right to complain to a data protection authority. In the UK this is the Information Commissioner’s Office and, in the EU, as set out here: https://www.edpb.europa.eu/about-edpb/aboutedpb/members_en
US
A number of US States afford certain rights to residents of those states with respect to their personal information.
In particular, for residents of California, please see additional information about your rights in the “California Residents – Your California Privacy Rights” section below.
For residents of Nevada, you have the right to opt-out of the sale of your personal information, but please note that Hoplon does not “sell” your personal information as that term is defined under Nevada law.
For residents of Iowa your rights include (i) the right to know whether Hoplon holds or processes your personal information, (ii) the right to access your personal information, (iii) the right to have your personal information deleted and, if applicable, (v) the right to opt out of the sale of personal information.
For residents of Colorado, Connecticut, Indiana, Virginia or Utah, your rights include (i) the right to know whether Hoplon holds or processes your personal information, (ii) the right to receive a copy of your personal information in a readily usable format, (iii) the right to request correction of your personal information, (iv) the right to have your personal information deleted and, if applicable, (v) the right to opt out of targeted advertising, the sale of personal information, or certain profiling (if the profiling is in furtherance of decisions that produce legal or similarly significant effects on you). If you are a resident of one of these states, please contact us at [email protected].
If, after reviewing your request, we determine that we cannot honor it, we will notify you of that decision via email. If you wish to appeal any such decision, please respond to the emailed decision.
We do not sell your personal information for financial benefit. If you are a resident of California, Colorado or Connecticut, however, please note that some of our data transfers do constitute a “sale” under California, Colorado and Connecticut law.
“Do Not Track”
If you have enabled the feature, your web browser may transmit “do-not-track” signals to our websites and other online services with which your browser communicates. We currently do not take any action in response to these signals.
Third Party Links
Our website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy policy of every website you visit.
Children’s Privacy
We do not knowingly collect personal information from children under 13.
Contact Us
If you have any questions or comments regarding this Statement, please contact us at [email protected] or at the physical addresses set out in the list of global entities at the top of this Statement.
Changes to this Statement
Hoplon will occasionally update this Statement. Hoplon encourages you to periodically review this Statement to be informed of how Hoplon is protecting your information. When such a change is made, we will update the “Last Updated” date above. If we make any material changes, we will notify you or our Client by email (sent to the email address specified in your account) or by means of a notice on this Site prior to the change becoming effective. To the extent that our policy changes in a material way, the Statement that was in place at the time that you submitted personal information to us will generally govern that information unless we receive your consent to the new Statement. We encourage you to periodically review this page for the latest information on our privacy practices.
Copyright Terms and Conditions
The content on this website is protected by the Copyright Laws of the United States of America and other countries worldwide. The unauthorized use and/or duplication of this material without express and written permission from Hoplon is strictly prohibited.
For purposes of applicable data protection laws, the data controller of your personal information is Hoplon Infosec, LLC and its affiliates and subsidiaries.
We're Here to Secure Your
Hard Work
Protect your system from cyber attacks by utilizing our comprehensive range of services. Safeguard your data and network infrastructure with our advanced security measures, tailored to meet your specific needs. With our expertise and cutting-edge technology, you can rest assured that your system is fortified against any potential threats. Don't leave your security to chance – trust our proven solutions to keep your system safe and secure.
Share this :