This website is operated by Otorio Ltd.
Important notice to Visitors interested in registering to and / or using our services:
We provide cyber security services to our clients through our proprietary software and / or hardware solutions, as well as cyber-related consulting services. Please note that this policy applies only to Processing of Personal Data on our website. For information regarding our privacy practices for Processing Personal Data within the provision of our services and the operation of our solutions, please contact your account manager at Otorio.
"EEA" shall mean the European Economic Area.
"GDPR" shall mean Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95 / 46 / EC (General Data Protection Regulation), and as amended, replaced or superseded from time to time.
"Applicable Laws" shall mean (i) the GDPR, European Union Member State laws, rules and guidelines implementing or supplementing the GDPR, as amended from time to time and to the extent applicable to Otorio; and (ii) the Israeli Privacy Protection Law 5741-1981, and any other applicable privacy or other law, to the extent applicable to Otorio.
"Personal Data" shall have the meaning ascribed to it in the GDPR. To put it simply, Personal Data means individually identifiable information, namely information that identifies an individual or may with reasonable efforts cause the identification of an individual.
"Non-Personal Data" means information that does not personally identify you and does not reveal your specific identity as an individual, such as anonymized information.
The terms "controller", "processor", "processing", "European Commission", "International Organization", "Supervisory Authority" and "Personal Data Breach" shall have the meanings ascribed to them in the GDPR.
"Subprocessor" shall mean any entity appointed by us or by one of our Processors / Subprocessors, to Process Personal Data on our behalf or on behalf of that Processor / Subprocessor; excluding any employee of Otorio or of Otorio's Processor / Subprocessor or of any such appointed person but including any contractor or affiliate of the foregoing.
"Visitor" or "you" means visitors of our website.
"Website" means our public website available at www.otorio.com providing information regarding the services we provide to clients.
This Policy was originally written in English. If you are reading a translation and it conflicts with the English version, please note that the English version prevails.
3.1. Personal Data That You Provide To Us
3.2. The Personal Data That We Collect Or Generate
4.1. In addition to the categories of Personal Data described above, we will also process further anonymized information and data that is not processed by reference to a specific individual. We may collect this Non-Personal Data through the Website in the following ways:
5.1. Personal Data is used for the following primary purposes (as may be updated from time to time):
5.2. We may use your email address you provided us to contact you when necessary, including in order to send you reminders, offers and to provide you information and notices about the website. At any time, you may choose (opt out) whether your Personal Data is to be used for sending such marketing materials which are not an essential part of the usage of the Website. You may exercise your choice by contacting us at: [email protected]
6.1. We may use information that is Non Personal Data for the same purposes we use Personal Data (where applicable) and in addition in order to:
6.2. We may use analytics tools to help us understand Visitors' behavior on our website, including by tracking page content, and click / touch, movements, scrolls and keystroke activities. The privacy practices of these tools are subject to their own policies and they may use their own cookies to provide their services. Further information about your option to opt-out of these analytics tools is available at: [email protected]
6.3. From time to time, we may use additional or alternative analytics services. We will provide a notice of these changes on our website.
6.4. We use anonymous, statistical or aggregated information, which may be based on extracts of your Personal Data, for legitimate business purposes including for testing, development, improvement, control and operation of the Website. We may share such information with our third party providers. It has no effect on your privacy, because there is no reasonable way to extract data from the aggregated information that can be associated with you. We will share your Personal Data only subject to the terms of this Policy, or subject to your prior informed consent.
7.1. We will only process your Personal Data where we have a legal basis to do so. The legal basis will depend on the reason or reasons we collected and need to use your Personal Data. In almost all cases the legal basis will be:
7.2. More information on the basis of processing:
7.3. It is hereby clarified that the legal bases detailed above are the legal bases for actions to process Personal Data, carried out by us in accordance with the GDPR. If processing of Personal Data is subject to other Applicable Laws, then the legal basis for processing Personal Data may differ according to those Applicable Laws.
For more information, see Section "Your Rights" below.
8.1. We do not sell, rent or lease your personal data. We may share your Personal Data with service providers and other third parties, if necessary to fulfill the purposes for collecting and Processing the information, such as cloud vendors, subcontractors providing us Processing services, etc. provided that any such third party will commit to protect your privacy as required under the Applicable Laws and this Policy, in accordance with that third party's obligations as Controller, Processor of Subprocessor of the information we share with it.
8.2. Additionally, a merger, acquisition or any other structural change may require us to transfer your Personal Data to another entity, provided that the receiving entity will comply with this Policy.
8.3. We may need to disclose Personal Data in response to lawful requests by public authorities or law enforcement officials, including meeting national security or law enforcement requirements. We cooperate with government and law enforcement officials to enforce and comply with the law.
9.1. We may store, process or maintain information in various sites worldwide, including through cloud based service providers worldwide. If you are a Data Subject in the EU, and we envisage transferring your Personal Data to a third country outside the EEA or to an International Organization, we will ensure that it is protected and transferred in a manner consistent with legal requirements. Personal Data may be transferred outside of the EEA or to an International Organization, in one of the following ways:
9.2. You can obtain more details of the protection given to your Personal Data when it is transferred outside the EEA (including a copy of the standard data protection clauses which we have entered into with recipients of your Personal Data) by contacting us as at [email protected]
9.3. If you are located in a jurisdiction where transfer of your Personal Data to another jurisdiction requires your consent, then you provide us your express and unambiguous consent to such transfer or the storage, processing or maintenance of the information in other jurisdictions by using the Website.
10.1. In all of the above cases in which we collect, use or store your Personal Data, you may have the following rights and, in most cases, you can exercise them free of charge. At any time, you may contact us at: [email protected] and request to know what Personal Data we keep about you. We will make good-faith efforts to locate the data that you request to access.
10.2. When you ask us to exercise any of your rights under this Policy and the applicable law, we may need to ask you to provide us certain credentials to make sure that you are who you claim you are, to avoid disclosure to you of Personal Data related to others and to ask you questions to better understand the nature and scope of data that you request to access.
10.3. We may redact from the data which we will make available to you, any Personal Data related to others. In addition, we may delete information
Note to our Data Subjects in the EU:
We hereby inform Visitors from the EU (in this section "You", "Your"), of the following rights (by virtue of the GDPR, to the extent applicable) with respect to the Processing of your Personal Data:
If you are a Data Subject in another jurisdiction - other rights may apply and not all of the rights mentioned above may be applicable to you.
To exercise these rights, where applicable, please contact us as detailed in Section 17 "Contact Us" of this Policy.
A cookie is a small data file that we transfer to your computer's hard disk for record-keeping purposes.
11.1. A cookie is a small data file that we transfer to your computer's hard disk for record-keeping purposes. When you access or use our website, Otorio uses industry-standard technologies such as "cookies", other tracking technologies and other local files, which store certain information on the browser or hard drive of your computer and / or your mobile telephone device (" Local Storage ") and which will allow us to distinguish you from other users, track your click-stream to assess performance of the Website, gather information about your approximate geo-location, store your preferences, enable automatic activation of certain features and improve Your user experience and other capabilities.
11.2. Most devices and browsers will allow you to erase cookies from your device's hard drive, block acceptance of cookies, or receive a warning before a cookie is stored. Please note that unless you block the acceptance of cookies, the Website will utilize cookies upon your use of the Website (all unless it is required by Applicable Laws to provide a separate consent to use such cookies, and in which case We will use such cookies only after we receive your separate consent to such use and subject to your right to withdraw such consent at any time).
12.1. We take the safeguarding of the Personal and Non Personal Data very seriously, and use a variety of industry standard systems, applications and procedures to protect the information from loss, theft, damage or unauthorized use or access. However, although we make efforts to protect your privacy, we cannot guarantee that the website will be immune from any wrongdoings, malfunctions, unlawful interceptions or access, or other kinds of abuse and misuse.
12.2. We also regularly monitor our systems for possible vulnerabilities and attacks, and regularly seek new ways and for further enhancing the security of our website and protection of our visitors' privacy.
12.3. You should take steps to protect against unauthorized access to your password, phone, and computer by, among other things, signing off after using a shared computer, choosing a robust password that nobody else knows or can easily guess, and keeping your log-in and password private. In addition, you should take steps to protect against unauthorized access to Personal Data stored on your premises as well as defining limited access rights to such information on a need to know basis.
12.4. If you receive an e-mail asking you to update your information with respect to the Website, do not reply and please contact us at [email protected]
13.1. We retain different types of information for different periods, depending on the purposes for processing the data. We may retain Personal Data for as long as necessary in order to support our legitimate business purposes, for example, for storing data, for documentation, for cyber-security management purposes, legal proceedings and tax issues.
13.2. We may store aggregated Non Personal Data without time limit. In any case, as long as you use the website, we will keep information about you, unless we are legally required to delete it, or if you exercise your rights to delete the information.
Our website is not meant to be used by or for persons under 18, as such, we do not knowingly collect Personal Data from minors younger than 18. Insofar as Personal Data may be collected based on your consent, the data subject must be above the age of 16 (or above the age of 13 if this is the legal requirement in your country). If these age requirements are not met, you are required to obtain the consent of the parent or guardian to provide and process information in accordance with this Policy; lacking such consent, please do not use the website.
15.2. If we need to adapt the Policy to legal requirements, the amended Policy will become effective immediately or as required.
15.3. Your continued use of the Website following such notice shall constitute your consent to any changes made and a waiver of any claim or demand in relation to such changes. If you do not agree to the new or different terms, you should not use and are free to discontinue using the Website.
For further information about this Policy, please contact us at [email protected]
If you have any concerns relating to this Policy, please contact us and we will make good-faith efforts to address your concerns. We are usually able to resolve privacy questions or concerns promptly and effectively. If you are not satisfied with the response you receive from us, you may escalate concerns to the applicable privacy regulator in your jurisdiction. Upon request, we will provide you with the contact information for that regulator.
Copyright © 2019, Otorio All rights reserved.
Last Updated: February 26, 2019