Fortress Information Security Privacy Policy

Effective Date: August 30, 2016

This site (together with any successor site(s), computer systems, cloud-based storage accounts, and all Services, as defined below, hereinafter collectively referred to as the "Site") is operated by Fortress Information Security LLC ("we," "us," “Fortress”).
We are concerned about privacy issues and want you to be familiar with how we collect, use and disclose information, so that you can make educated and informed decisions. This Privacy Policy describes our practices in connection with information that we collect through our website located at www.fortressis.com (the "Website"), any of our mobile applications (the "Apps"), as well as HTML-formatted email messages that we send to you, or any other websites or content, that link to this Privacy Policy (collectively, including the Website, the Apps, and any other content or messages, the "Services"). Please note that the Privacy Policy applies only to our online information-gathering and dissemination practices in connection with the Services, and does not apply to any of our practices conducted offline. If you have any questions or comments about the Privacy Policy or our privacy practices, please contact us at privacy@fortressinfosec.com.
Your use of any of the Services (or download of the Apps), signifies that you agree with all the terms of this Privacy Policy. Do not use the Services or download any Apps if you disagree with any part of this Privacy Policy.
This Privacy Policy is written in the English language. We do not guarantee the accuracy of any translated versions of this Privacy Policy. To the extent any translated versions of this Privacy Policy conflict with the English language version, the English language version of this Privacy Policy shall control.

Personal Information We May Collect

"Personal Information" is information that identifies you as an individual, such as: name, physical mailing address, telephone number, and email address.

How We May Collect Personal Information

We and our service providers may collect Personal Information in a variety of ways, including:
    ● Through the Services: We may collect Personal Information through the Services, such as when you fill out a form, access our Website, or download one of our Apps.
    ● From Other Sources: We may receive your Personal Information from other sources, such as public databases; joint marketing partners; social media platforms; from people with whom you are friends or otherwise connected on social media platforms, as well as from other third parties.

How We May Use Personal Information

We may use Personal Information:
    ● To respond to your inquiries and fulfill your requests, such as to send you newsletters or publications that you request or to register you for events.
    ● To send you updates and mailings relating to our services or events that we think may be of interest to you.
    ● To keep a record of your contact information and correspondence, and use it to respond to you, if you contact us through the Services.
    ● To send administrative information, for example, information regarding the Services and changes to our terms, conditions, and policies.
    ● To provide services, including the provision of seminars and other events.
    ● To allow you to send Services-related content to a friend through the Services. By using this functionality, you are telling us that you are entitled to use and provide us with your friend's name and email address.
    ● For our business purposes, such as data analysis, audits, fraud monitoring and prevention, enhancing, improving or modifying our Services, identifying usage trends, determining the effectiveness of our promotional campaigns and operating and expanding our business activities.
    ● As we believe to be necessary or appropriate to comply with legal process, respond to requests from public and government authorities including public and government authorities outside your country of residence, enforce our terms and conditions, protect our operations or those of any of our affiliates, protect our rights, privacy, safety or property, or that of our affiliates, you or others, and to allow us to pursue available remedies or limit the damages that we may sustain.

OTHER INFORAMTION

Other Information We May Collect

"Other Information" is any information that does not reveal your specific identity or does not directly relate to an individual, such as:
    ● browser and device information;
    ● usage data;
    ● Internet Protocol (IP) addresses;
    ● information collected through cookies, pixel tags and other technologies;
    ● demographic information and other information provided by you;
    ● aggregated or anonymized information.

How We May Collect Other Information

We and our third party service providers may collect Other Information in a variety of ways, including:
    ● Through your browser or device: Certain information is collected by most browsers or automatically through your device, such as your Media Access Control (MAC) address, computer type, screen resolution, operating system name and version, device manufacturer and model, language, Internet browser type and version and the name and version of the Services (such as the App) you are using. We use this information to ensure that the Services function properly.
    ● Through your use of any App: When you download and use any App, we and our service providers may track and collect App usage data, such as the date and time the App on your iPhone, iPad or iPod Touch accesses our servers and what information and files have been downloaded to the App based on your iPhone's, iPad or iPod Touch's device number.
    ● Using cookies: Cookies are pieces of information stored directly on the computer that you are using. We may use cookies in connection with the Services. There are two main types of cookies: Session cookies: these are temporary cookies that expire when you close your browser. Session cookies allow the Services to recognize your computer as you navigate between pages during a single browser session, allowing you to use the Services most efficiently, and (ii) Persistent cookies: these are stored on your computer between browsing sessions until they expire or are deleted. They allow the Services to remember your preferences and tailor services to you. We may use both session and persistent cookies in connection with the Services. These cookies are used for security purposes, to facilitate navigation, to display information more effectively, and to personalize your experience while visiting the Services, as well as for online tracking purposes. Cookies permit us to recognize your computer to assist your use of the Services. We may also use cookies to gather statistical information about the usage of the Services in order to continually improve the design and functionality, to understand how users use the Services and to assist us with resolving questions regarding the Services. In addition to cookies which send information to us, we may also use cookies which collect information and send it to our service providers. Please check the relevant service provider’s website for more information about their use of cookies. Further, where the Services allow you to access other websites from the Services using the links provided, the operators of those websites may use cookies in accordance with their own cookies policy, which may differ from ours.
    ● Using pixel tags and other similar technologies: Pixel tags (also known as web beacons and clear GIFs) may be used in connection with some Services to, among other things, track the actions of users of the Services (including email recipients), measure the success of our marketing campaigns and compile statistics about usage of the Services and response rates.
    ● IP Address: Your "IP Address" is a number that is automatically assigned to the computer that you are using by your Internet Service Provider (ISP). An IP Address may be identified and logged automatically in our server log files whenever a user accesses the Services, along with the time of the visit and the page(s) that were visited. Collecting IP Addresses is standard practice and is done automatically by many websites and applications. We use IP Addresses for purposes such as calculating usage levels of the Services, helping diagnose server problems, and administering the Services.
    ● From you: Information such as your location, as well as other information, such as your preferred means of communication, is collected when you voluntarily provide this information. Unless combined with Personal Information, this information does not personally identify you or any other user of the Services.
    ● By aggregating information: Aggregated Personal Information does not personally identify you or any other user of the Services, (for example, we may aggregate Personal Information to calculate the percentage of our users who have a particular telephone area code).

How We May Use and Disclose Other Information

Please note that we may use and disclose Other Information for any purpose, except where we are required to do otherwise under applicable law. If we are required to treat Other Information as Personal Information under applicable law, then we may use it as described in "How We May Collect Other Information" section above, as well as for all the purposes for which we use and disclose Personal Information. In some instances, we may combine Other Information with Personal Information (such as combining your name with your geographical location). If we combine any Other Information with Personal Information, the combined information will be treated by us as Personal Information as long as it is combined.

THIRD PARTY SERVICES

This Privacy Policy does not address, and we are not responsible for, the privacy, information or other practices of any third parties, including any third party operating any site or service to which the Services link. The inclusion of a link on the Services does not imply endorsement of the linked site or service by us or by our affiliates. Please note that we are not responsible for the collection, usage and disclosure policies and practices (including the data security practices) of other organizations, such as any app, social media platform, or wireless service provider, including any Personal Information you disclose to other organizations through or in connection with the Services, Apps, or our Facebook Page.

SECURITY

We seek to use reasonable organizational, technical and administrative measures to protect Personal Information within our organization. Unfortunately, no data transmission or storage system can be guaranteed to be 100% secure. If you have reason to believe that your interaction with us is no longer secure (for example, if you feel that the security of any account you might have with us has been compromised), please immediately notify us of the problem by contacting us via email privacy@fortressinfosec.com.

CHOICES AND ACCESS

Your choices regarding our use of your Personal Information for marketing purposes

If you no longer want to receive marketing-related emails from us on a going-forward basis, you may opt-out of receiving these marketing-related emails by following the unsubscribe instructions in any such message or by contacting us by email at privacy@fortressinfosec.com. We will try to comply with your request as soon as reasonably practicable. Please note that if you do opt-out of receiving marketing-related emails from us, we may still send you important administrative messages, and you cannot opt-out from receiving administrative messages.

How you can access, change or suppress your Personal Information

You may request to review, correct, update, delete, or otherwise modify any of your Personal Information that you have previously provided to us through the Services, or object to the use or processing of such Personal Information by us. You may exercise these rights by contacting us via email at privacy@fortressinfosec.com. In your request, please make clear what Personal Information you would like to have changed, whether you would like to have your Personal Information that you have provided to us removed from our database or otherwise let us know what limitations you would like to put on our use of your Personal Information that you have provided to us. For your protection, we may only implement requests with respect to the Personal Information associated with the particular email address that you use to send us your request, and we may need to verify your identity before implementing your request. We will try to comply with your request as soon as reasonably practicable. Please note that we may need to retain certain information for recordkeeping purposes, and there may also be residual information that will remain within our databases and other records, which will not be removed.

SPECIAL NOTIFICATION FOR INDIVIDUAL CALIFORNIA USERS

California residents who have provided us with their Personal Information during the creation of or during the course of an established legal services relationship that is primarily for personal, family, or household purposes ("Individual California Users") may request information about our disclosures of certain categories of Personal Information to third parties (i.e., our affiliates) for such third parties' direct marketing purposes. Such requests may be submitted via email to privacy@fortressinfosec.com. We will provide a list of the categories of Personal Information disclosed to third parties, if any, for their direct marketing purposes during the immediately preceding calendar year, along with the names and addresses of these third parties. This request may be made no more than once per calendar year. We reserve our right not to respond to requests submitted other than to the email or mailing addresses specified in this section.

RETENTION PERIOD

We will retain your Personal Information for the period necessary to fulfill the purposes outlined in this Privacy Policy unless a longer retention period is required or permitted by law.

USE OF SERVICES BY MINORS

The Services are not directed to individuals under the age of thirteen (13), and we request that these individuals not provide Personal Information through the Services.

CROSS-BORDER TRANSFER

The Services are controlled and operated by us from the United States, and are not intended to subject us to the laws or jurisdiction of any state, country or territory other than that of the United States. Your Personal Information may be stored and processed in any country where we have facilities or in which we engage service providers, and by using the Services you consent to the transfer of information to countries outside of your country of residence, including the United States, which may have different data protection rules than those of your country.

SENSITIVE INFORMATION

We ask that you not send us, and you not disclose, any sensitive Personal Information, such as Social Security numbers, credit card or other payment card information, information related to racial or ethnic origin, political opinions, religion or other beliefs, health, criminal background or trade union membership, on or through the Services or otherwise to us.

UPDATES TO THIS PRIVACY POLICY

We may change this Privacy Policy. Please review the “LAST UPDATED” legend at the top of this page to see when this Privacy Policy was last revised. Any changes to this Privacy Policy will become effective when we post the revised Privacy Policy on the Services. Your use of the Services following these changes means that you accept the revised Privacy Policy.

DO NOT TRACK SIGNALS

At this time, we do not respond to browser “do not track” or “DNT” signals.

CONTACTING US

If you have any questions about this Privacy Policy, please contact us by email at privacy@fortressinfosec.com. Please note that email communications are not always secure; so please do not include credit card information or sensitive information in your emails to us.