Privacy Policy

Effective date: June 1st, 2022

This Privacy Policy (the “Policy”) explains how Strato Security, LLC (“us,” “our,” “we,” or “Strato”) collects, uses, discloses, and protects personal information that we collect from you through our website, https://stratosecurity.io, or other services that we operate and that refer or link to this Privacy Policy (collectively, the “Services”).

Information We Collect and Receive

When you use or access the Services, we may collect or receive personal information. The types of personal information we collect depend on the product or service you use. This information may include the following:

Information about you: You may provide us with information about you when you use the Services. This information may include the following:

Contact Information: Contact information, such as name, alias, email address, phone number, and mailing address.
Payment Information: Payment information, such as payment card number and related information used to process payment card transactions.
Business Information: Business contact information, if applicable, such as name, phone number, or website and any contact information for your identified business representative.
Account Access Credentials: When you create an account through the Services, you may be asked to provide account access credentials such as a username, password, and email address.
Other: Any other information you choose to provide when you contact us or otherwise engage with us through the Services.

Information About Others: In some circumstances, we may ask you to provide, or we may otherwise collect, information about other individuals in order to support the services you have requested, such as name, username, email address, phone number, and information about others who are referred to the website through a referral link. You should not provide us with information about other individuals without their permission.

Information we collect automatically: We also may collect certain other information automatically when you use or access the Services, such as the following:

Browser and Device Information: Certain information is automatically collected by most websites and other online services, such as information about your device and your browser. For example, we may receive device identifiers such as IP address and MAC address, operating system type and version, and Internet browser type and version.
Search Engine and Other Referrals: When a third party refers you to our Services, such as clicking on a link to our page from a Google search, or clicking on an online ad for our Services, we will receive some information about your device and your interaction with the referring site or content.
Activity Reporting and Log Data: We may receive log information related to your activities while using the Services, such as websites you visit. We may also use cookies to track your use of referral codes relating to the Services. In addition, Google Analytics uses cookies to help us analyze how visitors use the Services. The information generated by the cookies about your use of the Services includes your IP address. If you so choose, you may be able to opt out by turning off cookies in the preferences settings in your browser. For more information on Google Analytics, including how Google Analytics collects, uses, and discloses information, refer to the following page: https://policies.google.com/technologies/partner-sites.
Location Information: We may receive your approximate location or data that indicates your approximate location, such as your IP address.
Email Analytics: To help us gauge the effectiveness of our communications, we use common digital tools that allow us to see if you opened an email we sent or visited a link in those emails.

In connection with our provision of managed cybersecurity Services, we may receive access to all data transmitted to or from or stored or otherwise processed on devices and systems that are being monitored in connection with the provision of the Services. We may also receive administrator access to devices and systems that are being monitored. Similarly, as part of the managed cybersecurity Services, we enable your use of services provided by certain third-party information technology providers that may also receive access to some or all data transmitted to or from or stored or otherwise processed on devices and systems that are being monitored in connection with the provision of the Services (“third-party IT providers”). These third-party IT providers may also receive administrator access to devices and systems that are being monitored.

Why We Use and Disclose Personal Information

We may use personal information that we collect about you for purposes that include the following:

Providing the Services and supporting the features available to you.
Personalizing your digital experience with us, such as enhancing features and designing relevant alerts, products, or services.
Understanding how you and others use our Services and to determine what features and services may interest you and others.
Operating and improving our organization and our services.
Verifying your identity.
To communicate with you and others, including responding to requests and providing promotional content.
Troubleshooting, debugging, and otherwise addressing issues that may arise with the functionality of the Services.
Protecting the legal rights, property, safety, and security of records or information, our Service users, our organization, and others, including detecting and preventing fraud, misuse of the Services, and other unauthorized activity.
Complying with industry standards, applicable law, judicial or legal process, any properly authorized civil, criminal, or regulatory investigation, or any subpoena, court order, or summons issued by a competent authority, including responding to any government or regulatory request, and consistent with other purposes authorized by law.
Enforcing our policies, terms of use, or rights arising from contracts.
For such purposes as we may separately describe when or prior to collecting personal information or in notices that are presented to you through your use of the Services. We also may disclose personal information for such purposes that you otherwise authorize.

We also may aggregate or de-identify personal information. Aggregated or de-identified information will not be subject to this Policy and will be used to the extent permissible under applicable law.

With Whom We Share Your Information

We may disclose personal information:

To our affiliates.
To our business partners.
To our contractors, service providers, and other third parties we use to support our organization and the Services, including third-party IT providers.
To government agencies or others as necessary to comply with any court order, law, or legal process, including to respond to any government or regulatory request, and consistent with other purposes authorized by law.
To other organizations, such as a buyer or other successor in interest, in the event of an actual or potential merger, divestiture, restructuring, reorganization, dissolution, or other sale, exchange, or transfer of some or all of our assets, including as part of bankruptcy, liquidation, or similar proceeding.
We also will disclose information for any purpose or to any organization as separately described when or prior to collecting personal information or that we identify in privacy notices that are presented to you through your use of the Website. We also may disclose personal information to organizations with your authorization or permission, such as when we request your consent to share information and you agree.

Your Choices

We respect your privacy and offer choices regarding our collection and use of your personal information.

You may choose not to provide the personal information we request. However, not providing information we request may restrict your ability to use certain features of the Services. For example, we will not be able to provide you with most of the features available through our Services if you do not create an account or provide us with information necessary to facilitate the monitoring of your systems and devices.
You may opt out of promotional emails and text messages using the opt-out mechanism provided with those messages.
You may be able to restrict the collection of personal information or functionality through your device’s operating system or by disabling cookies but doing so may prevent you from using the functionality of the Services. Some Internet browsers have a “do-not-track” feature that let you tell websites that you do not want to have your online activities tracked. At this time the Services do not respond to browser “do not track” signals. We may allow third parties to use the Services to collect personal information about your online activities over time and across different websites, applications, and other online products or services.

Security

We maintain safeguards intended to protect the personal information collected through the Services. The security of your personal information also depends on you. You should keep your access credentials confidential and make sure your devices and software are up-to-date to ensure the latest security measures are installed. If you have created an account, please safeguard and do not share your access credentials.

We use payment card processors during order processing. Your payment data is delivered directly from the browser to the payment card processors, who handle your payment card data subject to industry standards regarding security. It is important for you to protect against unauthorized access to your account, purchase history, and device.

Links to Other Websites and Services

We may provide links to other websites and services for your convenience. For example, we may provide links to websites and services offered by our contractors, service providers, and other third parties we use to support our organization and the Services. Those websites and services are not subject to this Policy. The operators of the linked websites and services may have posted their own privacy policies that you should review to learn more about their privacy practices.

Changes to this Policy

We may update this Policy to reflect changes in our privacy practices at any time and without prior notice to you. When we do so, we will update the Effective Date of the Policy, above. We encourage you to periodically review this Policy for the latest information on our privacy practices.

Contacting Us

If you have any questions or comments about this Policy or our privacy practices, please contact us at: support@stratosecurity.io.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.