This policy outlines CXO Security’s ongoing obligations regarding management of your personal information. Personal information is information or an opinion about an identified individual, or an individual who is directly or indirectly identifiable from that information or opinion, whether the information or opinion is true or not and whether the information or opinion is recorded in a material form or not.
We collect your personal information so that we can carry out our usual business activities related to the development and commercialisation of CXO Security’s services. The personal information we collect from you is your business contact information including your name, job title, employer name, work email address and work telephone number.
Your personal information is normally collected directly from you as follows:
We may also collect your personal information from a third party, such as a public website or a supplier of lead generation services.
If you register on our website to receive our restricted materials, we may ask you questions about your business. Such questions are designed to help us to tailor information to your needs and provide you with useful information about cyber security.
You may unsubscribe from our mailing lists at any time by using the ‘unsubscribe’ option located at the end of each email.
The consequences of not providing your personal information could be varied, depending on your relationship with CXO Security. For example, if you wish to register for a CXO Security seminar, without your personal information, CXO Security will not be able to register your attendance at the seminar. If you do not want to provide CXO Security with your personal information, you can contact CXO Security’s CEO to discuss the specific consequences of not doing so.
Our use or processing of your personal information may be on the basis of your consent or on the basis that the use or processing is necessary for CXO Security’s legitimate business interests, depending on our relationship with you.
If you have opted in to receiving marketing communications from us, our processing of your personal information for marketing purposes is based on that consent. Alternatively, your consent may be inferred when that is a lawful basis for our use of your personal information for marketing communications.
For other purposes, the basis of our using or processing your personal information is that it is necessary for CXO Security’s legitimate business interests. These legitimate interests may be any or all of the following, depending on our relationship with you:
CXO Security does not disclose your personal information to third parties without your consent other than in the following circumstances:
We collect statistical information about visits to our website via log files and services such as Google Analytics and Hubspot, which track pages visited, geography and the browsers used. We also leave a cookie on your computer so that, when you return to our website, you do not need to re-enter your information to download resources available through our website. If you do not want us to leave a cookie on your computer, please disable cookies before you submit your personal information through our website.
You have certain rights in relation to our collection, use, disclosure and storage of your personal information. These rights include those listed below.
Local law in other countries may provide you with legal rights in addition to or in substitute of those listed above in which case CXO Security will comply with those laws.
If you wish to submit a request to us to access or rectify your personal information, please contact our Privacy Officer.
We will respond to your request (unless a statutory exception or limitation applies) within the time required by applicable law. We will not charge you for responding to your request unless your request is manifestly unfounded or excessive, in which case we may charge a reasonable administration fee or refuse the request.
In processing your personal information, CXO Security employs appropriate technical and organisational measures to ensure a level of security appropriate to the risk presented by the processing of your personal information. In doing so, your personal information is processed in a manner that reasonably protects it from misuse, loss and from unauthorised access, modification or disclosure. Whilst these efforts are made, factors beyond our control could result in unauthorised access to or disclosure of data.
When your personal information is no longer needed for the purposes identified above, we will take steps to destroy or permanently de-identify your personal information. However, some personal information may be stored in documents that we are required to keep by law for the minimum periods imposed by law.
If you are dissatisfied with our handling of your personal information, including any breach of applicable privacy and data protection laws, please lodge a complaint in writing with the Privacy Officer. We will respond to your complaint within 30 days.
Alternatively (or if you do not receive a satisfactory response from us), you may be entitled to refer the matter to your local privacy or data protection authority for assistance, such as the Office of the Australian Information Commissioner.
Changes may be made to this policy from time to time. Notification of substantial changes to this policy will be handled by posting an announcement on the CXO Security website.
If you have any questions about this policy, wish to lodge a complaint or submit a request to access or rectify your personal information (or to exercise any of your other rights under applicable law) please contact the Privacy Officer at firstname.lastname@example.org.